Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NEUmDWzlRNleNFy7B1sCV6gl0g0.roa
File: NEUmDWzlRNleNFy7B1sCV6gl0g0.roa (raw, json)
Hash identifier: AH4VvXB7+YyOl40Gzc9T+PwgcaUkuDYuDhlXOQvjGn4=
Subject key identifier: 34:45:26:0D:6C:E5:44:D9:5E:34:5C:BB:07:5B:02:57:A8:25:D2:0D
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019042E52F44ACB5F5A5FE2682BBEE2CF592
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NEUmDWzlRNleNFy7B1sCV6gl0g0.roa
Signing time: Sun 23 Jun 2024 02:20:34 +0000
ROA not before: Sun 23 Jun 2024 02:20:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.156.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jul 2024 06:42:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:42:e5:2f:44:ac:b5:f5:a5:fe:26:82:bb:ee:2c:f5:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jun 23 02:20:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3445260d6ce544d95e345cbb075b0257a825d20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c4:38:95:ff:74:cc:eb:6d:73:90:c7:e3:d4:
a9:7a:5d:08:40:a4:0b:e4:a1:ac:a1:fd:ff:a0:45:
08:9b:2e:e9:e6:e4:9e:68:79:9e:af:fd:15:f5:b4:
5b:86:b5:61:01:a7:47:b3:f3:f4:c0:c1:fc:b5:d0:
e4:43:ad:e4:be:6b:33:17:08:97:fa:f7:d3:68:c9:
a9:83:ff:c5:15:2d:87:07:c2:df:9c:98:36:90:64:
9a:bf:59:b1:b4:76:14:b0:c3:af:30:08:93:5a:50:
ce:b0:87:7a:1d:08:93:6a:77:53:d6:4f:ac:aa:cf:
ab:20:89:a7:2a:14:56:28:76:5f:43:a3:5f:ef:d6:
6d:f6:1e:a9:01:f0:ad:3f:d9:97:b0:56:41:ec:a6:
24:91:aa:71:4e:21:58:3e:e9:0a:11:0a:c4:8f:97:
2d:5d:f5:79:77:6a:42:82:35:f5:91:c2:e3:88:d8:
e9:82:c6:2b:10:6a:7e:8f:d5:0d:4a:02:0a:08:10:
1f:28:9e:e5:c7:6f:99:75:fe:d6:0d:0a:58:40:97:
cf:63:71:e3:5a:94:6e:86:41:7a:4d:ff:d5:7a:c4:
e8:d4:61:a7:1d:cb:e3:52:d8:1f:3a:9b:90:a1:c6:
32:50:50:7f:ca:14:e6:7b:f7:d3:50:5c:d4:56:1c:
74:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:45:26:0D:6C:E5:44:D9:5E:34:5C:BB:07:5B:02:57:A8:25:D2:0D
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NEUmDWzlRNleNFy7B1sCV6gl0g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.220.0/24
Signature Algorithm: sha256WithRSAEncryption
19:06:9a:cb:5d:e2:55:46:c3:8e:36:14:66:13:c6:92:a7:30:
64:dd:76:84:d3:16:24:e6:a8:3e:f4:ed:3c:8c:4a:bb:57:88:
77:cc:ff:a9:e3:1a:8e:19:af:d4:4d:13:d5:1d:2d:62:93:92:
8a:dc:44:22:85:5a:9b:22:c2:dd:09:f0:12:0a:44:65:05:34:
06:61:ce:ef:87:30:d4:dd:36:0b:7a:1a:b0:7b:10:ea:dc:e4:
a0:66:e4:15:e4:82:56:58:3f:d2:77:69:7d:5e:3f:f5:8e:7a:
73:c2:33:58:a2:75:b4:fb:4d:2c:3d:9b:72:c0:cd:80:76:e5:
db:e7:6c:85:7e:f3:ee:c2:99:d1:ed:b1:00:1e:91:23:fc:4f:
dd:a9:5d:2d:d3:68:a5:35:7c:76:6e:ae:13:f0:d4:bc:05:64:
07:58:a1:f5:41:2c:52:35:a8:b5:7d:ae:89:fc:d8:1a:58:12:
9a:db:3d:a6:c1:72:bb:87:71:f0:e9:1b:33:2f:c6:3e:e3:f4:
73:c7:99:2c:dd:f2:86:43:04:32:a9:bc:1a:0e:e8:65:fe:36:
c5:f3:c2:b6:c1:11:5a:a4:b4:a8:e4:22:00:0e:57:33:5c:ab:
82:26:15:9c:5b:2a:5a:3c:c5:90:be:70:fa:69:df:36:9d:b3:
61:07:e5:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:26 2025 by rpki-client