Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YC2v7peDLHAAPQmpLt29EkTxoag.roa
File: YC2v7peDLHAAPQmpLt29EkTxoag.roa (raw, json)
Hash identifier: S0xJwOqzCzu0NEBvEQ6cl5yn38j9FL0B2fLX0Bfxppc=
Subject key identifier: 60:2D:AF:EE:97:83:2C:70:00:3D:09:A9:2E:DD:BD:12:44:F1:A1:A8
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018571DE78AD8A079EC54F139363E5B7B2F6
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YC2v7peDLHAAPQmpLt29EkTxoag.roa
Signing time: Mon 02 Jan 2023 09:44:43 +0000
ROA not before: Mon 02 Jan 2023 09:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141759
IP address blocks: 45.134.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:78:ad:8a:07:9e:c5:4f:13:93:63:e5:b7:b2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 09:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=602dafee97832c70003d09a92eddbd1244f1a1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:57:de:98:87:5e:c1:f3:6d:ce:03:b0:8b:eb:
f7:20:4a:34:01:0d:e3:3d:83:65:b1:e4:8f:e2:e4:
11:70:56:ba:c0:4c:21:3f:02:68:fa:5a:f0:a6:80:
06:f0:f0:44:49:ad:9a:a6:8d:2e:6a:13:4a:03:68:
22:3f:3a:d0:ab:ee:63:f1:86:51:ec:84:58:97:3d:
52:18:d0:d3:84:d7:45:16:60:fb:55:e8:29:cb:6d:
81:25:69:47:33:f1:a0:41:a4:8c:04:75:b5:85:64:
16:a5:51:8a:4a:10:1f:ba:7c:ab:b2:81:2a:7f:bc:
ce:15:61:24:79:eb:4b:a4:85:50:a0:1b:f3:2a:9d:
45:a2:a7:97:44:b6:b5:16:73:e8:ee:c0:e4:cd:7d:
91:26:7f:3c:20:65:1f:af:ef:fd:76:c9:03:42:14:
4d:5d:b9:30:88:09:da:cb:89:6e:91:2f:f8:91:39:
1d:8f:9e:53:8d:05:ea:0f:dd:b7:ea:82:05:61:99:
1a:82:26:55:ab:f9:48:a9:8b:73:e0:71:8a:a0:b9:
ec:2d:96:e7:56:cb:94:0e:c3:3c:64:e2:eb:61:31:
78:72:3f:cb:67:4a:49:86:fe:9c:ed:c6:08:f3:fe:
13:ae:9a:03:63:80:9d:12:2d:4f:98:9e:86:d6:5a:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2D:AF:EE:97:83:2C:70:00:3D:09:A9:2E:DD:BD:12:44:F1:A1:A8
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YC2v7peDLHAAPQmpLt29EkTxoag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.145.0/24
Signature Algorithm: sha256WithRSAEncryption
91:af:22:a7:60:69:ad:18:cf:f9:53:6b:7d:20:c0:84:39:d1:
fe:da:c2:b4:52:fb:28:05:15:88:c2:50:1e:2b:bd:38:1c:4a:
4e:7f:9c:51:16:c1:3c:b1:7a:36:79:bc:be:8a:f4:d2:b0:a7:
b3:0d:98:86:c4:1b:71:ba:90:c6:72:57:bd:41:b9:f3:d1:23:
f9:97:a9:6e:b6:af:4b:9f:99:c3:3f:c0:09:d5:91:39:c1:ab:
8d:b0:46:58:78:7e:c3:ea:e0:d2:27:fe:df:d8:15:44:8f:74:
5e:4b:a4:50:2d:05:e9:f8:97:2d:6f:0b:68:a0:5e:af:da:bd:
8e:f9:53:26:a0:10:18:ad:91:ba:0e:c6:9b:44:13:7f:92:c2:
6d:1f:36:84:bb:53:c0:4c:da:d1:5f:53:22:be:64:c6:3d:e3:
01:c5:90:c1:d2:53:da:39:f2:be:da:03:0a:e7:cd:a6:c5:45:
56:26:db:e9:b9:28:b5:91:23:46:cb:dc:64:a6:bb:05:5b:1e:
9d:ce:6d:6d:81:27:39:3b:cd:b8:9d:60:91:62:71:0a:d0:bd:
ba:f4:05:64:bc:6f:29:7f:54:93:04:67:a1:82:2b:5e:b0:7b:
81:d2:fd:b5:5a:b9:5e:64:3a:b5:64:92:67:f0:c2:9c:4b:b3:
0a:38:fb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org