Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/nYezn8MQnjafSOewdDIS3LWcHMs.roa
File: nYezn8MQnjafSOewdDIS3LWcHMs.roa (raw, json)
Hash identifier: Zd/Zr7rAEQXUKi7GkAKAn1nG3GcWWIZtC5W4F9xPt4c=
Subject key identifier: 9D:87:B3:9F:C3:10:9E:36:9F:48:E7:B0:74:32:12:DC:B5:9C:1C:CB
Certificate issuer: /CN=4eca105ce4af6c21cd429e992d06ea7d06d8a56d
Certificate serial: 0193B37E0C84E234D13819EDD5E6FBC5D5C4
Authority key identifier: 4E:CA:10:5C:E4:AF:6C:21:CD:42:9E:99:2D:06:EA:7D:06:D8:A5:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/nYezn8MQnjafSOewdDIS3LWcHMs.roa
Signing time: Wed 11 Dec 2024 02:13:22 +0000
ROA not before: Wed 11 Dec 2024 02:13:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47169
IP address blocks: 45.10.92.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 16 Dec 2024 08:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b3:7e:0c:84:e2:34:d1:38:19:ed:d5:e6:fb:c5:d5:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eca105ce4af6c21cd429e992d06ea7d06d8a56d
Validity
Not Before: Dec 11 02:13:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d87b39fc3109e369f48e7b0743212dcb59c1ccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:07:d7:31:9e:4d:90:4e:f9:ae:50:1e:4f:
9c:83:70:46:6c:3e:09:a5:0e:0b:f5:d8:4a:a7:5f:
e0:8f:0c:5c:f5:0b:e5:c2:ab:d3:95:48:4e:04:2c:
12:01:8b:26:7f:82:c8:eb:c4:b4:ce:6d:c0:61:56:
37:f6:08:bc:87:3d:d0:6c:68:52:60:4b:48:86:1f:
eb:33:6c:06:cf:81:85:23:4d:49:e7:75:74:8d:a5:
ef:cf:11:ae:32:7c:88:f1:db:bf:7b:53:91:d9:4e:
fb:ac:4b:de:15:10:c6:b7:33:12:b1:20:ed:e7:37:
90:7d:b1:3b:74:5f:0e:ca:55:5a:f4:b8:4b:ea:e4:
d2:2f:d8:5b:09:9c:4d:1b:df:e1:aa:30:24:39:be:
63:41:ff:db:13:58:cb:7b:8c:16:32:db:d2:49:a3:
1c:ef:3e:c2:b8:b7:57:6b:c3:ba:8d:b4:5e:ce:28:
b6:f4:95:99:94:2e:3a:69:32:e7:67:cb:a8:77:f5:
65:02:c2:61:a6:ca:74:79:1f:b5:7c:9b:14:b7:b6:
03:cc:b7:25:cc:44:d7:78:aa:22:c6:71:df:a4:cb:
a7:cb:6f:53:da:24:bd:40:cd:55:fe:24:a7:4e:16:
0b:7b:e7:dc:58:94:b7:a6:7a:ee:74:cf:d0:bb:f6:
1a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:87:B3:9F:C3:10:9E:36:9F:48:E7:B0:74:32:12:DC:B5:9C:1C:CB
X509v3 Authority Key Identifier:
keyid:4E:CA:10:5C:E4:AF:6C:21:CD:42:9E:99:2D:06:EA:7D:06:D8:A5:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/nYezn8MQnjafSOewdDIS3LWcHMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/c3a85d-9d0b-4562-9238-46ee0cd7fcba/1/TsoQXOSvbCHNQp6ZLQbqfQbYpW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.92.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:f8:23:c2:51:5d:cd:cd:61:32:b9:4d:b3:4b:e8:13:9a:5d:
29:dd:80:94:36:3e:87:fe:5f:14:53:dc:3c:ce:99:00:6e:01:
a9:b9:7a:0e:3e:42:16:3a:b5:fc:0b:64:77:20:ce:89:f2:fd:
2d:7f:a2:c4:5e:a4:3a:5c:e0:cb:47:5d:a0:e4:fc:5c:b9:0f:
91:fa:f7:36:58:80:87:35:92:7b:53:59:24:f9:ef:8f:ad:bd:
63:8f:19:e4:66:55:18:c7:1c:0a:96:0c:f2:09:e3:f7:fc:45:
ed:78:c0:88:20:b6:a0:91:89:67:df:8c:c6:4d:39:18:dc:28:
b4:8a:13:de:8e:b8:1f:7f:63:99:b7:5b:d2:a6:28:4e:81:bf:
15:08:ba:b0:2c:9d:18:2a:44:ed:4a:50:31:d9:c9:02:de:7b:
f6:0f:b9:6e:8d:d6:b0:8d:63:87:f0:12:2e:36:08:92:b3:30:
20:51:82:c6:3a:62:f8:15:52:a9:29:30:3e:89:f3:65:43:2c:
32:d5:a5:a8:9a:7c:84:ec:8e:10:78:11:34:c9:a6:b6:7d:0b:
00:d2:fb:9b:29:06:7a:05:1e:03:ca:6c:52:09:fb:c7:b5:31:
4b:ca:81:ed:e9:88:6f:c0:f7:fc:94:a7:c9:e9:88:41:e5:66:
d4:58:79:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:24:59 2025 by rpki-client