Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7KaH6l3POeeU3yb9g1D2EZC3ryg.roa
File: 7KaH6l3POeeU3yb9g1D2EZC3ryg.roa (raw, json)
Hash identifier: dkptk43LgohCAZNIwOEhh8OrtXpqOWjfjnYEYxXObXY=
Subject key identifier: EC:A6:87:EA:5D:CF:39:E7:94:DF:26:FD:83:50:F6:11:90:B7:AF:28
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018DD00E827EDAACAC47E6C249F6F31D97D7
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7KaH6l3POeeU3yb9g1D2EZC3ryg.roa
Signing time: Thu 22 Feb 2024 09:03:48 +0000
ROA not before: Thu 22 Feb 2024 09:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45650
IP address blocks: 45.139.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 05:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:0e:82:7e:da:ac:ac:47:e6:c2:49:f6:f3:1d:97:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Feb 22 09:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eca687ea5dcf39e794df26fd8350f61190b7af28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1b:d9:5b:5e:d9:aa:da:66:0d:07:01:6a:18:
d2:43:0e:2d:d5:ce:8f:6c:22:20:4c:08:89:9b:c3:
11:7e:b4:ac:00:0b:55:7e:a4:6e:0a:c9:ed:e8:e1:
38:ba:9c:ff:d5:50:a6:d5:a2:95:f0:e7:b7:ff:4f:
d6:cf:aa:da:88:09:28:4f:97:25:97:cd:de:a0:1a:
79:f9:23:10:46:af:93:fc:fd:b7:58:12:23:24:e4:
0d:86:8d:5c:7d:d2:29:f2:49:d5:c1:13:15:12:70:
cd:84:fc:86:8b:55:41:64:50:95:06:60:c2:9e:80:
57:32:04:ef:7e:13:4b:66:85:d4:fe:cc:13:1d:c7:
92:ca:35:74:6c:de:5b:9b:82:70:64:bf:19:59:58:
ba:5c:39:1a:82:88:1c:b5:15:c1:21:ec:b3:cc:50:
9f:f1:da:fb:90:18:7c:6f:a1:6d:e3:2d:c0:cb:5c:
69:44:ea:c8:1f:c1:62:a0:7d:a5:6c:42:6e:e9:d2:
ef:2d:9b:31:98:81:a0:4d:ab:b3:f7:68:64:01:9f:
df:8e:e4:2a:1e:60:a1:83:9d:65:24:c7:2a:66:39:
2c:fb:43:b7:ab:80:3a:32:db:d9:e3:ce:9d:2d:9a:
5f:c8:6a:44:e7:05:ba:7d:36:05:9c:22:89:8d:ad:
c8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A6:87:EA:5D:CF:39:E7:94:DF:26:FD:83:50:F6:11:90:B7:AF:28
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/7KaH6l3POeeU3yb9g1D2EZC3ryg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.188.0/22
Signature Algorithm: sha256WithRSAEncryption
50:10:46:0e:7c:49:44:d3:e5:79:a9:d7:6a:94:83:11:e7:46:
72:d6:0d:04:65:92:3b:4d:32:f5:69:23:e1:98:1e:1f:9d:b2:
60:a7:c2:17:fd:34:0b:86:fe:b6:9f:b0:4c:17:65:d1:11:bd:
09:2b:eb:09:92:8f:ae:8b:0a:c7:50:c7:b5:57:5e:6c:94:ae:
ab:26:bc:a5:18:0d:dd:39:1b:25:fe:1c:1e:8c:d7:14:03:77:
5c:5c:2f:a5:b6:c8:95:f7:ab:4b:c8:df:89:4c:10:07:b0:e8:
04:39:a3:5d:05:9f:67:53:dc:d5:e9:ac:d4:a9:e4:57:3f:07:
69:39:dd:33:a7:e5:30:98:47:11:1f:75:f8:75:18:54:71:bb:
4e:f4:c2:60:69:60:d6:b8:25:7a:bc:d8:5e:28:4c:9c:c3:0d:
3e:7e:fd:29:d2:8f:4a:45:e8:4f:68:77:d0:ba:d2:87:c0:fd:
93:0c:5f:33:49:5e:c9:78:a4:ce:43:36:39:c6:c0:0e:6c:7d:
41:db:4e:e4:85:ae:85:38:3a:9d:c2:27:47:47:c6:0c:b9:d3:
13:e6:2d:86:9a:07:c4:8d:9c:58:13:04:25:4d:a3:ce:21:ee:
77:05:b7:b3:b8:67:9a:48:b1:32:79:95:7c:94:3d:17:5a:1e:
64:4e:bd:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:03 2024 by rpki-client on console-ams.rpki-client.org