Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/ra8YoU8mimQvtctgB5uxg0wDz6w.roa
File: ra8YoU8mimQvtctgB5uxg0wDz6w.roa (raw, json)
Hash identifier: pbtVkNNcyXx9yh96hhTw9iIGrr/4+CgSrfztgNdJaqM=
Subject key identifier: AD:AF:18:A1:4F:26:8A:64:2F:B5:CB:60:07:9B:B1:83:4C:03:CF:AC
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 0190F5E10BB2E52BA0D99EC17490917F4591
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/ra8YoU8mimQvtctgB5uxg0wDz6w.roa
Signing time: Sat 27 Jul 2024 20:28:04 +0000
ROA not before: Sat 27 Jul 2024 20:28:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47436
IP address blocks: 45.89.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f5:e1:0b:b2:e5:2b:a0:d9:9e:c1:74:90:91:7f:45:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Jul 27 20:28:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adaf18a14f268a642fb5cb60079bb1834c03cfac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:61:6a:8a:35:96:3b:14:98:93:b6:c5:61:3a:
4a:3f:e4:c4:7d:dc:66:9b:b7:6a:dd:af:b7:4e:ed:
8a:58:58:70:91:9a:d1:dc:5d:22:e6:ff:c3:5e:bf:
a1:aa:ca:a6:d9:9e:7a:50:36:9b:a3:31:22:20:b4:
29:4b:71:80:75:5c:bf:e3:15:31:d6:89:fc:07:ea:
dc:6d:4b:09:4b:d1:98:af:d7:30:cf:30:f1:4a:4c:
82:8c:9d:c8:c1:60:d4:f4:2a:fa:40:25:b4:04:6a:
93:9d:61:22:78:7f:f2:a1:bd:1c:60:b7:ef:fb:99:
0a:2d:17:09:1c:61:32:31:41:da:88:1c:6d:ff:cd:
84:e8:5f:3e:92:72:7e:59:a8:e1:82:30:57:76:e5:
cc:54:39:9e:16:21:b0:a7:69:b4:4b:9c:8e:40:06:
5e:56:2b:d4:e2:ca:6b:6c:15:9e:20:42:83:4a:0d:
64:8a:ef:07:28:35:c7:e0:98:00:f9:aa:86:d1:70:
f4:de:bb:4d:4a:01:c6:c8:5e:bc:cd:93:af:76:49:
da:ea:f7:99:55:01:09:57:7d:48:ba:59:de:14:2e:
a9:93:b4:7e:e3:d1:44:cb:da:89:46:c1:60:7f:c5:
2b:05:bd:f3:16:84:97:0a:58:00:98:8c:30:48:c9:
ab:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AF:18:A1:4F:26:8A:64:2F:B5:CB:60:07:9B:B1:83:4C:03:CF:AC
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/ra8YoU8mimQvtctgB5uxg0wDz6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.28.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:46:0b:3c:ef:3b:7a:63:4e:47:10:4f:b7:23:3f:8f:a9:25:
07:1b:87:44:1f:a1:eb:5a:9f:95:d2:d4:79:39:1f:e4:21:8a:
c1:43:53:94:de:b5:38:55:43:83:d6:11:28:68:89:03:1b:cd:
83:de:7e:3c:6d:1a:48:8d:db:76:58:d7:e0:81:24:c4:72:7a:
0a:74:83:59:dc:46:b0:be:b1:a9:e6:d8:c2:23:e7:e5:26:44:
26:7e:83:24:19:e0:52:2d:cb:d5:c4:1e:5b:90:3c:20:5e:fb:
6e:59:63:95:e9:23:94:7c:e0:e4:56:74:74:39:b4:71:3a:05:
c7:d2:1b:7a:fa:fa:92:05:fc:dc:0d:19:dc:b3:4a:ba:ce:3a:
e2:3f:cf:5c:35:5f:ed:c8:94:33:38:8c:0e:f3:7d:f6:85:8a:
c8:54:5b:5a:5b:55:e8:21:cd:01:26:a0:d3:34:28:1f:f0:1f:
f8:c7:d6:4a:e9:81:8c:18:98:d7:47:ec:6b:20:bf:e5:8d:ed:
0a:82:67:05:2c:d4:5a:7a:b2:b1:99:af:d8:c8:37:a6:77:ca:
d9:0c:c6:e6:7b:f6:ea:ea:28:3e:17:b4:d6:91:08:47:22:bd:
4a:7a:19:7f:93:4a:0a:67:5e:16:16:ce:d5:f1:d3:5c:6a:07:
9e:99:30:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:13:16 2025 by rpki-client