Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YAxgXcGobdBtgQYCZ47pZLDKG6w.roa
File: YAxgXcGobdBtgQYCZ47pZLDKG6w.roa (raw, json)
Hash identifier: txryBITBFzakCqfZXPRIV3qCJQhOt1WaTu9fqnekgr8=
Subject key identifier: 60:0C:60:5D:C1:A8:6D:D0:6D:81:06:02:67:8E:E9:64:B0:CA:1B:AC
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018A726630B8DE55AD93BB7BF6D224ABBAF2
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YAxgXcGobdBtgQYCZ47pZLDKG6w.roa
Signing time: Fri 08 Sep 2023 01:26:54 +0000
ROA not before: Fri 08 Sep 2023 01:26:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43180
IP address blocks: 45.135.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:72:66:30:b8:de:55:ad:93:bb:7b:f6:d2:24:ab:ba:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Sep 8 01:26:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=600c605dc1a86dd06d810602678ee964b0ca1bac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8a:d7:59:c3:a8:ff:83:01:55:25:87:40:52:
7f:c1:d8:67:23:a8:6b:85:1f:63:6b:42:8f:72:19:
72:a2:53:68:16:7c:a1:47:69:00:69:74:b2:86:65:
8a:3d:73:4f:d7:86:04:01:6f:1c:2d:fb:05:05:33:
57:3f:0b:2b:e8:c9:2f:40:65:c9:53:ee:7d:40:62:
ee:e9:e4:a5:0a:c4:76:e9:a1:dc:a7:21:07:e3:a8:
34:84:ac:7f:77:02:28:e0:9b:36:5b:61:6b:6d:4f:
9d:e0:a9:f4:6f:12:e3:72:9a:bc:6f:87:e0:ee:81:
a3:dd:db:06:13:e9:85:a2:ad:c3:a5:bd:4b:b0:7e:
88:57:d8:39:6e:3a:22:21:cb:e5:f7:a2:c4:79:13:
01:df:d1:3e:20:0f:65:13:54:ed:9d:ec:ac:a7:1c:
ea:59:0a:99:12:37:17:99:d0:17:e2:98:b9:ba:60:
b6:19:29:32:01:bb:3d:f0:b4:9a:4f:4b:b9:33:12:
cd:eb:0b:7b:10:26:8b:f2:36:5b:36:f5:08:f5:1a:
06:73:5e:5a:c2:d4:4c:b7:30:cd:ac:5b:bf:21:24:
ff:c3:4d:09:5e:cb:d4:28:b8:1f:6f:bc:54:17:67:
88:1e:f3:07:2e:7c:22:33:ae:e2:09:b5:e8:e1:e6:
33:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:0C:60:5D:C1:A8:6D:D0:6D:81:06:02:67:8E:E9:64:B0:CA:1B:AC
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YAxgXcGobdBtgQYCZ47pZLDKG6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.236.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d9:b9:c0:6d:35:56:4b:3d:9a:8d:91:0f:75:86:c8:87:fe:
b6:d5:6d:9a:86:92:1a:f2:f1:fc:b6:48:e1:53:23:1d:7e:f3:
d7:80:cd:2f:49:7d:25:fe:7f:ca:88:c2:4c:5a:27:b7:fa:92:
56:81:e5:c5:54:33:fb:21:2a:e3:7d:6d:d2:99:f9:59:17:45:
99:84:c9:88:d3:b6:80:b1:85:2f:2b:27:42:12:1a:b7:93:6c:
58:6a:5d:25:32:0a:6f:4c:6c:86:9d:7c:c6:85:d3:96:b3:17:
bb:48:f3:08:99:17:63:4c:05:95:fe:61:19:ea:ff:92:48:e6:
69:17:ff:2b:b2:d6:9d:1c:42:2e:85:6a:31:ea:6b:6a:98:dd:
aa:a0:08:ad:47:34:7f:f7:b5:9e:53:93:b9:42:1b:f4:27:23:
23:3f:36:13:2d:cd:8f:8b:39:c6:16:8d:54:61:32:af:fa:dc:
c9:a2:42:09:fd:4b:e9:c3:3a:19:8c:f3:8d:f4:74:a1:c5:6b:
12:7e:27:38:26:16:8c:06:e2:a4:7a:cc:ee:6b:d7:62:3b:7e:
38:65:e8:b6:a8:93:08:96:52:00:54:f1:a9:de:86:a8:1f:37:
a1:76:e2:38:c5:76:d8:ca:8d:04:2c:b7:f6:d0:1f:4f:a1:b7:
48:21:7f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org