Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tyeNX6VKFeK35jxrDyfnsLhr-U4.roa
File: tyeNX6VKFeK35jxrDyfnsLhr-U4.roa (raw, json)
Hash identifier: aukkVdTZDEZbWwZJnggbAZlnm9nJWb6fzUkOXoEoAgU=
Subject key identifier: B7:27:8D:5F:A5:4A:15:E2:B7:E6:3C:6B:0F:27:E7:B0:B8:6B:F9:4E
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018E7E115C13C93592A831544D395EEF3DD8
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tyeNX6VKFeK35jxrDyfnsLhr-U4.roa
Signing time: Wed 27 Mar 2024 04:00:50 +0000
ROA not before: Wed 27 Mar 2024 04:00:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 141759
IP address blocks: 45.155.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 01:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7e:11:5c:13:c9:35:92:a8:31:54:4d:39:5e:ef:3d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Mar 27 04:00:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7278d5fa54a15e2b7e63c6b0f27e7b0b86bf94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f8:25:35:d5:7f:de:7f:9f:09:f4:0e:8d:1a:
b0:48:44:15:f7:ed:8f:a0:e4:b3:3b:ba:df:f2:d0:
61:37:f7:8f:36:dd:ae:90:55:10:77:42:d7:50:0a:
ce:cf:41:22:d8:dc:83:4e:57:51:f3:2f:8c:53:f3:
22:c8:46:41:3f:6b:cd:a9:c8:9d:22:9b:8b:9b:05:
47:af:05:4b:bf:69:84:a0:4f:3c:33:2f:87:ec:1c:
00:bf:b6:d1:0a:68:b4:8b:84:44:75:5d:93:4f:03:
58:2e:91:f7:13:c3:b5:7e:33:8e:b8:4f:65:ef:22:
22:f2:84:b0:63:ca:8a:86:7b:f8:c6:61:97:a6:1c:
73:13:b7:a5:d3:1e:7e:7c:50:7c:d2:c1:8c:57:03:
8a:00:3a:f5:c4:2e:66:f1:9a:48:9a:d6:6c:af:b7:
2e:1d:57:b7:e5:9a:7c:28:70:b7:18:d0:c8:11:29:
0f:25:99:03:46:25:4f:27:1b:27:d3:bd:5c:44:f4:
50:dd:ea:06:f3:69:51:c6:12:4b:e4:99:2a:49:87:
01:35:06:7f:da:7f:30:77:d3:07:ac:57:28:53:bd:
7a:64:d7:20:b7:f9:69:e3:50:06:50:49:57:42:7d:
8b:68:c8:06:04:3c:0c:a8:b6:a3:46:07:99:cd:cd:
27:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:27:8D:5F:A5:4A:15:E2:B7:E6:3C:6B:0F:27:E7:B0:B8:6B:F9:4E
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/tyeNX6VKFeK35jxrDyfnsLhr-U4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.224.0/24
Signature Algorithm: sha256WithRSAEncryption
36:80:b8:c1:dc:16:c0:03:6a:a7:e5:f7:60:4a:ff:fd:de:09:
7f:12:3e:a3:41:ad:e2:a6:2b:22:02:ae:22:20:f7:85:a3:ac:
43:18:2a:37:76:cb:40:42:bd:e9:f6:b2:21:a4:8a:fc:94:32:
ba:4a:ad:9b:2e:aa:89:7e:95:79:1e:f9:38:64:4f:bc:58:55:
6b:6e:5d:b5:c0:9b:b6:b3:c8:6e:59:ff:21:75:69:b8:68:32:
9c:e8:a1:13:69:84:09:81:2f:5b:86:a4:37:42:02:2a:97:3f:
b8:a0:3f:b9:1e:d1:b5:de:f3:cb:63:fc:e8:41:39:0a:fb:9c:
72:5f:bd:fe:a3:31:c5:a4:f6:71:2b:db:a9:d6:59:8a:8d:13:
14:d2:dc:eb:44:d8:13:a5:f1:90:e1:ba:d2:c0:50:47:9a:cf:
31:8d:2e:4a:36:f2:2f:61:ad:9a:ff:81:4b:be:7f:72:9b:67:
a1:88:cf:a1:8b:cc:6d:6c:d4:62:19:2a:a0:0b:2d:f8:91:57:
75:c8:72:f9:1f:2d:e2:ed:0a:2b:19:14:11:cf:ae:14:d4:26:
8c:c8:aa:51:c3:96:88:f6:4f:a2:c7:a1:80:da:ea:c9:7a:23:
74:79:16:b8:af:44:99:0a:c0:dd:f3:e7:c1:45:8b:a0:12:79:
a8:88:eb:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 30 04:21:41 2024 by rpki-client on console-fra.rpki-client.org