Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/fucgvF4J1JOa_khk7DvgG1EIqe4.roa
File: fucgvF4J1JOa_khk7DvgG1EIqe4.roa (raw, json)
Hash identifier: wwyZJjtysnY5o+fdcqmeKL89FkLzKoQwi8dlGHF5O1g=
Subject key identifier: 7E:E7:20:BC:5E:09:D4:93:9A:FE:48:64:EC:3B:E0:1B:51:08:A9:EE
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 018CC50124E37360B42CB7A139ACEDD26A24
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/fucgvF4J1JOa_khk7DvgG1EIqe4.roa
Signing time: Mon 01 Jan 2024 12:30:35 +0000
ROA not before: Mon 01 Jan 2024 12:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35197
IP address blocks: 45.159.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 08:17:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:24:e3:73:60:b4:2c:b7:a1:39:ac:ed:d2:6a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Jan 1 12:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ee720bc5e09d4939afe4864ec3be01b5108a9ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:73:66:8c:f3:17:76:8e:7c:35:ff:18:c1:5d:
8e:32:14:3e:f2:da:aa:87:b7:ae:17:4a:36:db:29:
2c:c8:1f:b7:fa:56:56:98:b0:ce:42:95:29:a0:d0:
4b:da:3a:92:10:ad:ac:44:bd:3f:7e:c4:e5:a7:ec:
29:6b:8c:00:47:35:23:15:3f:c8:ce:b2:9c:85:2d:
4a:4e:f0:cc:c9:3d:b1:4b:01:6f:a3:83:1f:99:ad:
9c:82:d8:33:4a:80:86:f3:c9:c9:2d:6d:d3:73:e4:
91:a1:2a:fe:91:0b:ed:05:70:79:83:16:c5:ae:e5:
1d:60:5d:63:8a:27:25:71:5a:9c:1f:48:52:86:d6:
0c:40:c9:9c:c3:87:ba:dd:97:9d:1f:4a:0f:03:6b:
ca:42:b3:2c:74:a3:4d:45:17:af:3f:16:41:ab:2e:
12:d2:6a:aa:29:fe:da:f3:c6:27:f4:dd:34:dd:59:
5e:a3:f0:3b:54:73:bf:c6:83:40:a6:81:5f:a5:f1:
1f:19:c5:e8:a3:cb:b9:69:a1:1c:80:1b:20:47:a8:
b8:81:d7:8f:43:e6:95:39:2b:90:04:aa:dd:6b:20:
2c:be:bf:0a:66:62:87:a6:12:cb:24:b4:26:4c:5a:
3b:d9:f7:6a:f0:c5:3e:00:ba:bb:bd:8e:2d:4a:b3:
a6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:E7:20:BC:5E:09:D4:93:9A:FE:48:64:EC:3B:E0:1B:51:08:A9:EE
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/fucgvF4J1JOa_khk7DvgG1EIqe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.187.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:16:a1:71:95:19:7c:0d:00:cc:86:1f:5e:b6:54:e1:a4:a6:
15:fe:c1:38:4e:50:87:8c:6f:9d:dc:d8:6f:52:61:3e:92:61:
51:dc:e4:f7:b4:a0:6c:cc:64:c8:33:44:f4:d3:d4:2e:84:e8:
0f:36:a9:0e:e4:7e:be:b1:27:96:53:9c:97:63:90:02:ee:88:
47:15:57:ad:b4:ff:61:7c:92:08:8c:f0:c5:a1:68:58:bc:6f:
fb:1d:8f:c6:df:fe:13:e3:0b:98:51:8b:b1:ff:02:4a:1d:89:
8e:f9:c5:5d:27:0b:aa:26:6a:63:f9:da:81:7a:57:59:65:ee:
d4:03:80:b7:3b:c6:4c:bd:6f:18:02:6f:05:b6:78:dd:fb:b1:
dc:bb:01:08:37:79:e7:06:32:c4:8b:58:dd:9d:ac:61:b1:11:
a0:52:d8:16:48:24:a3:5d:89:f4:88:72:64:bb:e6:23:f2:4e:
ff:3a:19:5b:10:9a:bf:35:c3:54:e3:21:ac:c7:a9:2e:77:e6:
84:dd:96:27:51:fa:33:77:43:76:fc:30:da:43:f1:57:3c:39:
3c:60:4f:cf:2e:b7:15:7a:30:93:8f:30:d5:78:9a:40:9b:e7:
a5:d9:c7:11:6f:8d:0c:28:57:ab:30:ab:86:a6:a0:8d:1f:dd:
5e:5f:b4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 08:19:44 2025 by rpki-client