Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/iYyagKVMC6UgtlgA208kkYd2rqA.roa
File: iYyagKVMC6UgtlgA208kkYd2rqA.roa (raw, json)
Hash identifier: zizfLTB41e6ApH31G7TEBp82aGOd8eF4Qy080j44IdY=
Subject key identifier: 89:8C:9A:80:A5:4C:0B:A5:20:B6:58:00:DB:4F:24:91:87:76:AE:A0
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018D9CAACBE334E70899331CD04AB4E81B25
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/iYyagKVMC6UgtlgA208kkYd2rqA.roa
Signing time: Mon 12 Feb 2024 09:34:15 +0000
ROA not before: Mon 12 Feb 2024 09:34:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 150179
IP address blocks: 45.155.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 13:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9c:aa:cb:e3:34:e7:08:99:33:1c:d0:4a:b4:e8:1b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Feb 12 09:34:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=898c9a80a54c0ba520b65800db4f24918776aea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:13:f4:45:40:14:5a:3f:47:67:b5:aa:ba:
48:51:e6:02:83:16:ae:fd:e9:ae:9f:92:19:59:12:
1a:ce:38:92:dc:cf:bd:5f:05:ab:71:cc:d4:45:fb:
b5:8f:5b:9e:50:6e:7b:c2:98:eb:e8:32:0c:ed:fd:
d6:7c:6f:76:22:1b:d9:f7:e4:d2:a5:b9:e8:a1:c9:
de:cf:09:26:bc:b6:70:14:4b:f3:66:5d:5a:63:ce:
29:ed:55:44:ab:62:a4:33:c0:3d:b7:1c:53:1e:f1:
77:1c:8e:6a:41:03:e9:24:1e:38:76:2c:fc:09:5d:
5c:ef:84:ed:f7:2a:b0:fa:ac:e0:fd:1c:b2:28:fa:
d1:e9:2f:19:6b:85:83:98:b5:1f:62:4f:ef:25:7b:
51:eb:b4:78:1f:d7:fc:65:47:ae:f2:3b:5c:76:84:
6f:9b:2d:ab:c6:14:0e:df:a1:71:c9:1d:03:c4:52:
dc:f8:f2:38:ac:e9:f9:dc:74:97:c4:38:cd:0e:39:
eb:67:0c:ca:b0:02:17:9e:6f:17:0e:e0:da:ad:bd:
3e:15:05:1d:7f:68:20:39:d0:05:2e:52:b0:ed:bc:
16:93:77:67:2d:8e:17:45:0b:cc:25:9f:79:74:12:
ad:b5:b3:ea:99:db:bb:99:9e:07:ff:25:f8:d8:66:
b9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:8C:9A:80:A5:4C:0B:A5:20:B6:58:00:DB:4F:24:91:87:76:AE:A0
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/iYyagKVMC6UgtlgA208kkYd2rqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.227.0/24
Signature Algorithm: sha256WithRSAEncryption
36:9d:76:d1:09:4c:9d:68:ae:81:3a:52:c3:0d:22:39:b2:2b:
af:c0:6e:e3:b2:29:dd:a8:63:bf:53:35:74:5e:7a:70:82:25:
89:ac:ff:17:f2:2f:4f:f8:36:08:31:6d:e4:90:fe:95:5c:89:
dc:ea:d0:e7:41:bc:b5:34:b5:0a:c2:f0:38:01:7b:af:1b:ae:
45:f2:ed:3d:2f:96:a9:38:91:9d:45:17:1d:de:a3:64:71:d2:
4c:42:19:d5:6d:56:73:48:f0:f2:40:b6:b3:b8:f8:f5:d1:4d:
ef:df:8d:aa:bf:ca:16:fe:6a:52:e5:3c:8f:8c:a2:ef:fb:21:
20:52:78:f8:96:06:2d:88:ca:82:36:da:55:55:c3:a8:75:c5:
8b:4f:87:7b:98:c5:a2:a9:1d:97:18:92:5f:dd:d5:05:8a:bf:
bf:0e:d5:56:3c:49:76:57:f6:9c:70:7f:ec:9f:55:8f:ae:00:
a9:56:83:32:a4:99:d3:8e:54:e8:b5:79:91:c1:49:29:57:44:
4c:0b:c9:00:0e:d3:87:02:a9:62:ec:ab:33:bd:07:57:fa:86:
c0:e5:9d:00:7f:e8:e7:1f:19:60:41:53:dc:30:c5:1c:b6:d7:
b3:78:c4:d1:ba:50:50:52:df:06:50:9b:73:60:18:9f:c0:bd:
db:3f:46:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org