Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/YV4Hp8PT3oZCnU00AJrPIAmOhQo.roa
File: YV4Hp8PT3oZCnU00AJrPIAmOhQo.roa (raw, json)
Hash identifier: vkOsVRwAervLhHZDhO7dTqKfFWoLTsq5HqidN8TAgT0=
Subject key identifier: 61:5E:07:A7:C3:D3:DE:86:42:9D:4D:34:00:9A:CF:20:09:8E:85:0A
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 018D79381822FB160E1D8528BD9543A654B7
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/YV4Hp8PT3oZCnU00AJrPIAmOhQo.roa
Signing time: Mon 05 Feb 2024 12:22:15 +0000
ROA not before: Mon 05 Feb 2024 12:22:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.143.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 09:17:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:79:38:18:22:fb:16:0e:1d:85:28:bd:95:43:a6:54:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Feb 5 12:22:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=615e07a7c3d3de86429d4d34009acf20098e850a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ea:f0:6a:27:9d:3a:7e:43:4b:b7:e0:10:40:
93:b5:92:42:77:c7:4e:1b:48:cc:f7:6f:14:b0:32:
6f:53:50:af:cf:53:74:71:5f:11:4d:38:d4:32:d8:
3f:90:33:8c:3a:9a:3a:e4:b4:f9:8e:cf:de:fd:7d:
a5:5d:94:88:06:51:e2:fe:1d:73:60:6a:e9:92:05:
c4:3c:fb:4a:74:09:df:35:e0:95:f7:a0:da:e0:e6:
25:bd:4a:36:51:53:5e:0d:52:56:21:cf:0f:d2:13:
91:49:bc:16:a2:ce:6a:74:51:44:b8:f6:6e:d2:e5:
e2:f8:2c:90:9b:2f:74:ae:36:54:f3:81:50:39:5e:
0d:a9:9f:5a:32:40:37:7e:77:74:04:1c:25:22:28:
ef:8f:da:e6:98:f1:b2:fa:d6:f5:fd:bc:59:20:95:
f5:b5:c5:b7:f4:3a:c1:45:01:d5:c3:94:ee:f0:f6:
54:fb:3a:d0:86:36:1b:d8:a2:10:01:f0:0c:67:04:
09:7e:e1:c2:2c:20:5a:53:32:79:d1:d8:1f:7f:07:
6f:4f:3c:bc:2d:e6:e0:28:17:18:fb:e5:5f:a2:eb:
74:cd:6a:3d:50:aa:43:eb:0a:28:a7:9c:94:16:04:
89:34:c0:78:c7:4a:f2:f0:39:d7:4b:8c:7f:ee:80:
19:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5E:07:A7:C3:D3:DE:86:42:9D:4D:34:00:9A:CF:20:09:8E:85:0A
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/YV4Hp8PT3oZCnU00AJrPIAmOhQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.10.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:84:3c:d6:31:c8:a2:c5:e5:4f:bd:ed:81:d4:c6:78:32:82:
91:31:61:26:c6:0a:dd:9e:96:dc:d1:bf:df:5f:6e:91:96:c8:
aa:57:0e:8c:ea:d7:3c:9d:a2:12:ff:29:9e:bc:76:1d:69:9b:
3f:43:e0:65:6e:a4:d1:6f:5b:6f:c1:79:ad:fb:29:a4:25:3c:
e6:7f:66:b4:3f:44:7a:ba:3a:91:12:33:7f:93:eb:56:f6:a0:
47:53:b9:b6:e4:1c:bf:57:2b:46:2f:67:8d:72:40:7c:f8:66:
32:11:9a:f2:36:28:73:7f:7e:e6:50:88:20:c9:8a:31:99:67:
2f:90:ab:3b:09:50:9f:c3:b0:cf:a8:c7:3c:7d:f4:15:c7:8e:
e3:14:2b:b5:5c:1d:04:05:28:55:29:ab:69:a3:09:0a:22:ec:
67:41:93:7e:c2:72:8c:66:c1:ec:c9:0c:f3:69:d2:11:e8:42:
f4:d4:24:5e:b3:75:06:6e:34:32:44:bd:81:27:08:1e:46:1b:
12:5b:ef:73:db:9c:bb:60:03:cd:a6:60:6e:93:42:ab:c2:8a:
46:af:69:9b:f7:74:6e:ca:8a:c4:13:a9:03:d5:82:89:e0:3e:
d9:6d:1a:3e:29:21:fd:eb:7e:9d:27:33:9c:74:1d:96:f4:54:
6b:36:67:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 12:22:08 2024 by rpki-client on console-fra.rpki-client.org