Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/21a4fd-bd8a-4aa4-8c45-5710305439ec/1/ODybBjkIyvwQ7cgyiiqe92P94Xs.roa
File: ODybBjkIyvwQ7cgyiiqe92P94Xs.roa (raw, json)
Hash identifier: qTxzhlkcNGNvErB+CGgod7qk/zUx9XUhonofAfWURUE=
Subject key identifier: 38:3C:9B:06:39:08:CA:FC:10:ED:C8:32:8A:2A:9E:F7:63:FD:E1:7B
Certificate issuer: /CN=25292652a9ecd9c6bdc8264b9948df6212207624
Certificate serial: 0190117F010BE2E296524DD61C529878DC88
Authority key identifier: 25:29:26:52:A9:EC:D9:C6:BD:C8:26:4B:99:48:DF:62:12:20:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSkmUqns2ca9yCZLmUjfYhIgdiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/21a4fd-bd8a-4aa4-8c45-5710305439ec/1/ODybBjkIyvwQ7cgyiiqe92P94Xs.roa
Signing time: Thu 13 Jun 2024 12:07:34 +0000
ROA not before: Thu 13 Jun 2024 12:07:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 45.156.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jun 2024 08:13:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:7f:01:0b:e2:e2:96:52:4d:d6:1c:52:98:78:dc:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25292652a9ecd9c6bdc8264b9948df6212207624
Validity
Not Before: Jun 13 12:07:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=383c9b063908cafc10edc8328a2a9ef763fde17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:18:8d:92:2d:0f:86:6e:c1:de:60:90:b2:93:
ff:36:21:d6:72:36:21:e7:8d:d4:52:e0:0c:c3:30:
31:27:10:ba:1d:43:63:7e:84:d9:8c:8e:16:7b:a3:
9c:20:4d:20:e6:85:64:a3:47:40:83:9a:59:87:a3:
bc:dc:79:de:dc:f8:99:ab:c8:03:75:67:29:52:f2:
51:0f:77:19:99:75:80:77:82:e7:b3:d2:d3:11:fe:
c3:ed:df:fc:e6:95:c6:14:3b:0e:c2:f1:9f:a6:41:
a5:96:89:12:ce:d9:de:99:f3:dc:ca:8c:da:d1:5c:
91:15:a1:26:bb:ce:46:58:c7:3a:42:20:c5:b3:74:
05:af:e7:60:a1:b2:ba:6a:0a:26:d3:9f:9f:1d:8d:
4e:8e:90:6d:f5:23:de:f0:24:39:d7:82:06:1b:83:
e9:cf:dd:c6:39:cf:8c:cd:33:37:19:5e:54:13:d4:
dd:e7:6b:0a:86:1d:4f:9c:b9:6b:8c:43:14:b6:0e:
6a:0c:8b:a1:20:e7:e3:44:7e:f3:32:42:da:4d:23:
42:61:b7:71:5b:e0:96:6b:bb:d8:fc:23:d5:2e:14:
3d:e4:6a:92:67:77:ac:bd:25:73:f2:08:92:b4:7d:
d2:19:1b:fd:f0:85:9b:3f:7d:03:ac:40:83:d5:ef:
da:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3C:9B:06:39:08:CA:FC:10:ED:C8:32:8A:2A:9E:F7:63:FD:E1:7B
X509v3 Authority Key Identifier:
keyid:25:29:26:52:A9:EC:D9:C6:BD:C8:26:4B:99:48:DF:62:12:20:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSkmUqns2ca9yCZLmUjfYhIgdiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/21a4fd-bd8a-4aa4-8c45-5710305439ec/1/ODybBjkIyvwQ7cgyiiqe92P94Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/21a4fd-bd8a-4aa4-8c45-5710305439ec/1/JSkmUqns2ca9yCZLmUjfYhIgdiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.164.0/24
Signature Algorithm: sha256WithRSAEncryption
05:94:a3:d2:c6:dd:0f:46:c7:d8:33:1b:ac:3b:95:76:5b:9a:
d9:c1:10:33:ea:d8:17:69:f9:e5:ef:57:55:7d:cf:8c:14:50:
f3:c2:26:49:1d:0e:6c:13:ad:43:c8:a7:9f:ce:f0:ef:b7:30:
f5:34:4c:92:91:40:ac:7d:c9:da:4f:c5:82:ed:2c:fd:27:dc:
c6:e7:12:c5:c4:d8:d2:6a:f8:68:36:7d:28:99:4b:e9:da:ba:
00:b4:fe:1d:20:8e:f9:93:5c:6c:7f:9f:5d:08:30:f3:96:ae:
db:8b:40:85:3c:21:d1:fa:12:14:1f:43:b5:d4:3d:89:b3:96:
5f:e5:43:91:b9:e7:b6:6e:6c:7d:08:d0:d5:dc:dd:cd:49:c2:
79:51:8e:e6:c0:60:fb:a0:ef:fc:b5:c7:3c:dd:2e:0e:33:7b:
e0:19:93:cf:ff:17:f9:44:56:87:61:c2:6d:30:66:98:79:59:
97:4b:2e:fc:93:fe:ff:a8:54:df:8d:7f:1a:02:8d:e5:fc:16:
3a:3d:da:3b:7d:79:37:bf:c2:60:e3:4d:f3:7c:25:65:99:40:
de:d9:3e:77:84:0b:0e:1b:e9:dd:84:40:6f:82:82:e6:03:7c:
0a:0a:dd:0d:84:97:26:32:3c:cb:f9:09:00:fa:e6:60:f5:a3:
d6:11:4a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 11:23:04 2024 by rpki-client on console-fra.rpki-client.org