Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/dUiHDzeR9Azut2S1om-1OuuT6jk.roa
File: dUiHDzeR9Azut2S1om-1OuuT6jk.roa (raw, json)
Hash identifier: XP3EIKaNri4NLFcOaXNUMUqWLp+oryeZ1y3NpalXuBc=
Subject key identifier: 75:48:87:0F:37:91:F4:0C:EE:B7:64:B5:A2:6F:B5:3A:EB:93:EA:39
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 018D605FEF6EB821C217CEA04AED86358FA2
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/dUiHDzeR9Azut2S1om-1OuuT6jk.roa
Signing time: Wed 31 Jan 2024 16:35:16 +0000
ROA not before: Wed 31 Jan 2024 16:35:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6698
IP address blocks: 45.93.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 13:52:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:60:5f:ef:6e:b8:21:c2:17:ce:a0:4a:ed:86:35:8f:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jan 31 16:35:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7548870f3791f40ceeb764b5a26fb53aeb93ea39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:bc:78:3b:0d:be:e4:a7:bc:c2:da:a8:95:98:
cc:f1:fc:da:71:e0:a2:84:cb:70:4d:84:1c:c7:07:
95:4c:82:34:20:84:54:a2:0e:54:47:3b:f8:90:47:
fe:3e:15:33:31:f2:37:b8:88:27:c5:3f:c9:e1:8a:
04:0a:52:73:33:bc:e2:49:20:49:f6:36:20:33:a6:
1a:25:00:f9:ec:7d:61:e6:0f:1c:07:a1:4d:0f:20:
3e:de:92:70:88:7e:00:21:12:b4:53:d9:00:88:11:
34:79:c2:6d:d9:c1:ae:76:08:51:9f:b3:d4:4c:23:
83:e1:82:86:f0:1a:d3:d3:74:dd:19:6f:0e:cb:68:
2d:5f:2c:4e:35:ea:06:19:e4:b4:01:4b:c0:7b:47:
48:08:20:44:c3:1a:87:10:38:3b:5a:54:99:02:94:
91:66:8b:ec:2c:2b:ae:a9:27:ff:10:4d:16:fe:53:
a9:76:94:82:c5:0d:89:72:95:ff:2f:cb:52:b4:58:
e3:fb:23:e3:e8:91:26:8e:33:a6:09:c7:6c:d9:4f:
ea:b3:8b:d0:b3:fa:e6:18:14:ea:db:bd:a0:07:7d:
59:34:67:1f:48:57:cc:d6:76:2b:81:d9:9d:0c:a0:
a6:21:fb:e9:e4:6b:19:b1:5c:10:22:c6:a2:6f:78:
3b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:48:87:0F:37:91:F4:0C:EE:B7:64:B5:A2:6F:B5:3A:EB:93:EA:39
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/dUiHDzeR9Azut2S1om-1OuuT6jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.63.0/24
Signature Algorithm: sha256WithRSAEncryption
04:94:f3:93:9b:47:ab:cd:40:36:6b:4d:7d:8a:d8:e8:93:c8:
7d:f9:1f:c4:00:d2:81:76:cf:93:9c:35:bd:34:1a:7d:14:25:
b1:db:3b:a3:f8:1b:98:12:b6:2b:b8:b0:e9:8d:54:42:d0:3c:
70:97:2a:e6:8d:53:bf:8d:ad:3f:e3:f5:e6:0c:62:cb:fe:3c:
25:5c:d8:1c:d7:2d:b7:6b:05:bd:91:70:d8:2e:d7:39:8f:24:
5b:30:78:20:38:7c:78:1a:ef:bd:48:ef:23:94:20:2c:a0:36:
3c:bc:c0:71:89:df:4d:c2:a1:b2:d6:bb:6f:d1:e7:43:6b:77:
1d:88:cc:65:f4:6b:9f:43:66:b6:51:c8:5a:69:48:4e:3e:8c:
c3:78:74:97:e0:60:24:b8:00:de:e0:23:22:da:f3:02:ca:90:
10:8a:61:c5:d5:b1:f7:c8:90:4d:a1:8a:14:0f:75:01:ed:a5:
ca:16:ad:86:bd:5f:98:30:f5:38:6a:46:fc:dc:99:78:8f:42:
f6:f2:69:a8:1b:1e:0b:78:50:80:bf:35:f1:eb:08:b4:88:85:
9f:2e:2c:b8:19:04:6b:96:e1:eb:bd:3e:65:d9:b3:b5:64:2f:
3b:45:0b:05:f3:a9:d6:a8:00:ee:1e:8b:09:d9:74:c2:16:de:
5c:7b:06:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:31 2025 by rpki-client