Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/IJ4LzfN0Oe34KIG3GPZ8niQwUOI.roa
File: IJ4LzfN0Oe34KIG3GPZ8niQwUOI.roa (raw, json)
Hash identifier: DaxBkg86KowV2UCvrCmdT+60LI30W4zES2jk93fJdLU=
Subject key identifier: 20:9E:0B:CD:F3:74:39:ED:F8:28:81:B7:18:F6:7C:9E:24:30:50:E2
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 019277AD7FA440E9BF7E9FFF7A2D94AA7E11
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/IJ4LzfN0Oe34KIG3GPZ8niQwUOI.roa
Signing time: Thu 10 Oct 2024 18:25:11 +0000
ROA not before: Thu 10 Oct 2024 18:25:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.150.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 19:56:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:77:ad:7f:a4:40:e9:bf:7e:9f:ff:7a:2d:94:aa:7e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 10 18:25:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=209e0bcdf37439edf82881b718f67c9e243050e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:21:69:7e:f3:66:d4:5f:8e:55:fd:97:28:09:
98:fa:17:71:6f:83:f2:f8:02:98:c5:c6:2d:a2:f9:
25:ee:8b:f1:2b:17:8a:3b:8d:31:4c:0c:67:d4:44:
10:be:c8:4a:6b:38:91:32:44:a1:ed:b1:bb:e7:fa:
81:2d:79:2a:2c:d9:57:7c:9c:1f:a2:d9:ea:ff:40:
a8:f9:7f:d6:e8:d0:8e:fb:c8:f9:44:ef:1b:82:ef:
7d:f9:fd:fa:4c:e3:5b:73:f5:df:0d:b3:e6:76:c8:
83:84:e5:41:59:10:09:0c:3a:84:c2:1f:fd:37:8f:
0d:3e:1e:ae:d2:48:c4:7a:db:d1:61:a6:f9:b7:52:
3f:27:1d:f6:7d:ba:aa:7c:bc:0e:bf:8f:a1:a5:97:
4a:3c:18:15:b7:fb:ee:c0:b8:4a:48:38:a2:4b:0d:
48:61:37:b9:30:08:33:c9:27:b7:8e:7d:99:d0:86:
b8:c6:e5:98:1c:45:4d:a6:3b:f9:1c:da:ed:9b:17:
e4:26:4a:f9:98:bf:30:73:bf:6c:fa:1d:9d:d9:5e:
e8:f6:44:01:d1:26:91:44:67:c9:80:8d:2e:49:d9:
20:8c:74:3a:da:bb:d4:d0:6b:3c:8a:02:4c:48:fa:
6c:a5:22:7a:a5:ca:8f:17:53:06:2e:43:8e:4b:42:
4f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9E:0B:CD:F3:74:39:ED:F8:28:81:B7:18:F6:7C:9E:24:30:50:E2
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/IJ4LzfN0Oe34KIG3GPZ8niQwUOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.172.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d0:fa:5e:cb:92:f9:7a:79:ad:07:d9:ff:af:7a:20:51:9f:
7d:4d:38:36:d4:a2:4d:bf:14:44:55:18:46:4b:33:42:b1:9c:
48:4e:2e:43:a5:e5:04:a3:57:75:06:f1:ba:a2:e7:29:59:5b:
18:84:f1:0c:d3:c3:c9:cb:48:e8:ce:0a:0c:b6:13:24:60:1b:
08:f0:2c:36:5f:60:af:7f:68:a6:04:0d:d5:2e:90:51:ac:24:
98:b1:37:2a:79:53:96:16:7a:ee:53:99:b4:2c:66:d4:90:ba:
32:77:ef:83:b3:7e:1a:91:e3:43:2d:02:0e:04:17:9b:ae:f8:
6d:b9:c5:e2:8a:5c:82:e5:de:aa:2e:fb:ba:f1:c7:0c:df:c5:
0d:81:93:3d:11:4b:8e:13:68:83:5c:03:cb:27:02:bb:8d:4f:
9f:e7:26:b4:23:7f:ad:7e:14:45:56:84:db:db:6c:42:20:76:
89:f8:52:6a:f3:ac:a5:aa:c4:ef:08:22:cc:ec:81:96:26:f2:
6a:f3:c6:df:14:66:f5:68:97:d6:c1:8d:4b:19:e0:e3:54:ee:
15:72:2e:63:da:07:79:30:a8:fb:62:bd:bf:bb:8d:3d:65:41:
f2:db:7d:e3:3f:5b:dc:c3:3b:b2:dc:2e:ef:c0:0e:38:71:9a:
c2:0c:7b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 21:51:48 2024 by rpki-client on console-ams.rpki-client.org