Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tNWqKXFGca7hRJRMCZQg9l5W7Uo.roa
File: tNWqKXFGca7hRJRMCZQg9l5W7Uo.roa (raw, json)
Hash identifier: JDzzEDLosCUpnuPiu6MkI+hn12FHsUncxNmTkqBB/68=
Subject key identifier: B4:D5:AA:29:71:46:71:AE:E1:44:94:4C:09:94:20:F6:5E:56:ED:4A
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018CC8DFAE10070648925BCAD55B7302A6BF
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tNWqKXFGca7hRJRMCZQg9l5W7Uo.roa
Signing time: Tue 02 Jan 2024 06:32:31 +0000
ROA not before: Tue 02 Jan 2024 06:32:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215938
IP address blocks: 45.134.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 11:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:ae:10:07:06:48:92:5b:ca:d5:5b:73:02:a6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 06:32:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4d5aa29714671aee144944c099420f65e56ed4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ca:23:f9:36:bb:1c:9b:f3:b6:5d:a4:b7:95:
d8:09:48:b5:9d:14:b0:98:46:15:84:0e:81:c8:f5:
6e:25:e1:d8:a9:ce:3d:99:09:df:f3:b2:2c:1c:17:
e0:d0:23:c9:e7:18:df:02:88:b6:a9:52:b0:d3:22:
ce:c0:55:02:d1:e9:72:bd:5f:03:87:01:b2:80:0b:
84:fa:e7:35:99:79:cc:12:9d:bf:0d:fd:c9:0f:fb:
12:cc:c1:49:37:ba:27:6e:64:b4:b8:3f:a1:bc:1a:
9b:9b:9a:21:87:85:12:3d:fb:ce:03:b0:5d:7c:06:
b6:b8:bc:79:c4:83:00:6f:cd:35:5d:c7:4d:43:1a:
4f:bb:09:df:41:4e:d7:ae:f0:92:8f:18:77:15:53:
bf:df:6e:69:0c:74:a1:81:0e:db:8b:5c:fd:06:c7:
e6:dd:03:23:9a:bf:a8:1b:31:2c:74:dd:39:6d:5f:
95:53:f5:30:44:74:bf:2b:72:40:84:fa:90:03:3c:
9d:8e:48:1a:fd:5a:d1:0c:32:74:27:5f:ca:19:fd:
f2:0c:ea:0f:58:e2:62:07:d2:98:91:80:5d:56:77:
bb:fa:77:6e:53:d3:d7:0a:24:e4:bf:ac:98:ef:b5:
1a:f0:b8:c7:d7:77:2f:a2:6b:ab:c0:9b:96:46:46:
77:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D5:AA:29:71:46:71:AE:E1:44:94:4C:09:94:20:F6:5E:56:ED:4A
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tNWqKXFGca7hRJRMCZQg9l5W7Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.144.0/24
Signature Algorithm: sha256WithRSAEncryption
62:f4:26:e2:fc:8f:4e:53:5a:62:42:40:b3:8d:4f:a9:39:d8:
7f:0a:e4:2a:41:93:59:45:45:42:1b:cc:49:3a:b9:5d:c4:80:
08:8e:ee:35:f5:ed:cc:65:c5:1d:20:e8:3f:f7:00:46:5d:b9:
bc:83:92:8c:42:ad:87:8c:e2:80:1b:68:e3:2a:99:6e:a5:73:
c4:e5:78:6c:0c:30:39:7c:5f:9d:ff:36:02:09:0b:1e:05:e4:
61:fc:5e:13:7b:61:25:c7:1d:b9:4d:cc:d8:92:92:12:64:93:
ef:27:2a:a5:bb:ac:62:1b:7f:18:f2:24:ba:f5:7b:b8:9e:df:
86:1d:f4:e5:07:55:73:56:a9:24:52:50:d3:f2:11:ea:8e:6e:
21:5e:3e:dd:a6:49:42:fb:8c:d4:f0:da:bf:7c:9f:c4:5f:48:
51:7c:bf:a3:f1:ca:64:2f:d1:3a:cb:c2:14:ae:39:66:ee:23:
1c:c9:b8:38:2f:4a:8a:58:ea:d1:ea:3b:1e:f2:2f:48:b2:e0:
74:c6:92:bc:24:ca:5b:40:c3:37:bd:21:62:8e:de:c1:29:ed:
57:2d:f4:99:dc:dd:9c:fb:9d:bf:6e:79:c0:c6:44:81:f7:d7:
fd:5e:9e:e5:de:17:6f:65:cb:fa:19:9f:23:5f:55:d2:11:2e:
37:4a:c1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org