Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/DuCVbMwhx50txsHmHOgJRk7_Vj4.roa
File: DuCVbMwhx50txsHmHOgJRk7_Vj4.roa (raw, json)
Hash identifier: 9e1ajcyFS/FmhwyaU1a7K2KW17Q3OxZWl78572T4fu8=
Subject key identifier: 0E:E0:95:6C:CC:21:C7:9D:2D:C6:C1:E6:1C:E8:09:46:4E:FF:56:3E
Certificate issuer: /CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Certificate serial: 018CC56DF55BDFAA021069DE697AA6E0FC69
Authority key identifier: 51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/DuCVbMwhx50txsHmHOgJRk7_Vj4.roa
Signing time: Mon 01 Jan 2024 14:29:26 +0000
ROA not before: Mon 01 Jan 2024 14:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60592
IP address blocks: 45.142.223.0/24 maxlen: 24
2a0e:dbc0:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 07 May 2024 14:27:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f5:5b:df:aa:02:10:69:de:69:7a:a6:e0:fc:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5188dedacdc240b4b2f786f12342e0a83d8ae80f
Validity
Not Before: Jan 1 14:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ee0956ccc21c79d2dc6c1e61ce809464eff563e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e8:17:30:80:50:88:43:37:95:53:88:bb:c9:
06:92:a5:98:1b:34:e0:ea:a8:7d:8f:86:b4:1e:7d:
25:c9:1f:65:be:a4:2f:44:5b:5e:12:05:e8:a6:6e:
4f:b9:00:0d:93:d9:9e:22:44:68:9f:f7:19:32:22:
80:0e:26:b4:c0:8f:29:98:37:fd:1e:7b:13:de:7d:
c3:3b:4d:51:dc:2c:84:cf:66:18:dc:f3:45:a4:68:
94:59:c5:46:70:9a:43:fe:57:1d:4c:46:fa:90:e7:
38:ec:4f:75:ae:fd:56:9b:57:38:d5:bb:25:7f:b4:
d1:ab:86:f4:f9:ed:dd:a5:08:28:40:f0:07:b7:9f:
d4:4b:be:c7:1f:9f:33:94:fd:0f:24:46:87:93:f2:
84:93:71:8c:91:43:49:e0:8c:a4:94:36:62:69:4b:
45:56:56:17:a9:41:8b:bb:8d:59:b5:03:e5:60:88:
4a:c3:89:b1:22:f6:7d:e9:80:a0:33:38:3f:5a:63:
87:b9:0f:e4:9e:ff:d6:da:d4:b2:8e:09:1f:4a:20:
16:16:de:0a:94:5c:41:84:f1:15:fc:b3:28:8b:eb:
2c:bd:98:7f:24:ae:28:cc:4b:a2:22:93:1c:51:e2:
b5:14:9a:4a:55:a4:0f:d8:ff:04:58:db:88:28:2f:
1d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E0:95:6C:CC:21:C7:9D:2D:C6:C1:E6:1C:E8:09:46:4E:FF:56:3E
X509v3 Authority Key Identifier:
keyid:51:88:DE:DA:CD:C2:40:B4:B2:F7:86:F1:23:42:E0:A8:3D:8A:E8:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYje2s3CQLSy94bxI0LgqD2K6A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/DuCVbMwhx50txsHmHOgJRk7_Vj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1faa3e-884c-445f-845d-79b3db659dfc/1/UYje2s3CQLSy94bxI0LgqD2K6A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.223.0/24
IPv6:
2a0e:dbc0:3::/48
Signature Algorithm: sha256WithRSAEncryption
4c:f8:96:33:ad:d7:e3:d1:a3:41:40:9f:de:96:fe:00:28:ef:
e3:a6:ad:df:7c:10:f4:72:b9:96:5d:ab:c2:36:5e:00:c3:03:
37:eb:cd:d6:d9:a7:16:bc:52:69:1f:4b:b3:32:8a:da:e9:a9:
a5:35:c4:71:9a:3a:15:3a:20:b7:9c:3b:b5:38:1f:b7:c3:b2:
32:b4:c0:98:90:92:d4:2b:f1:a4:f8:54:cc:bf:fd:85:16:fc:
71:12:21:f4:43:19:d1:3e:43:c3:f2:6d:1d:ef:ff:3b:5b:45:
bf:01:e6:33:6e:dd:d6:39:25:78:5b:e1:22:e7:1f:97:68:6d:
d5:b4:2c:e9:d2:ec:66:ee:43:d7:90:8d:6c:99:01:51:26:3a:
b9:c8:b8:6e:74:ef:d9:2e:bf:78:c8:36:22:c5:75:0c:03:86:
a4:7d:68:21:93:f3:45:55:4c:1b:39:77:5f:2e:d9:b1:75:40:
88:f2:e2:68:62:76:4a:35:d6:df:c4:8c:1b:0f:68:87:97:f1:
4e:fa:f7:a6:ca:13:76:86:36:bd:28:37:59:ac:3c:06:10:81:
7d:fc:41:77:13:6f:a2:31:f4:44:4f:15:65:8d:ff:0a:38:95:
04:db:af:06:58:5d:27:20:62:94:3b:dc:36:d2:59:35:77:f0:
29:a4:d6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:20 2025 by rpki-client