Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HXYamLlhzz_wvbdOMeh8ZNZ7Abs.roa
File: HXYamLlhzz_wvbdOMeh8ZNZ7Abs.roa (raw, json)
Hash identifier: f7hnTtDBEDnqXOQapdkYRCFv1re9pe0QeB5Ftu4h7f0=
Subject key identifier: 1D:76:1A:98:B9:61:CF:3F:F0:BD:B7:4E:31:E8:7C:64:D6:7B:01:BB
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018FA5D35A4FBAABF2144EAC19BAD4AF5E89
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HXYamLlhzz_wvbdOMeh8ZNZ7Abs.roa
Signing time: Thu 23 May 2024 14:20:42 +0000
ROA not before: Thu 23 May 2024 14:20:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214833
IP address blocks: 45.131.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:d3:5a:4f:ba:ab:f2:14:4e:ac:19:ba:d4:af:5e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: May 23 14:20:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d761a98b961cf3ff0bdb74e31e87c64d67b01bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e0:4e:df:22:23:9a:3a:36:7b:7a:9a:f1:fa:
b4:c1:60:ff:05:b9:5d:c0:d3:7e:1d:04:e7:c5:bb:
63:c7:15:3c:4a:7c:bd:8a:65:02:04:bd:11:6e:20:
40:df:82:0d:2e:56:b7:1b:a4:4a:62:98:f7:85:d9:
8e:e8:bb:51:70:41:bb:d6:69:bb:f3:12:cb:93:17:
d8:ad:82:2e:cc:5a:f8:c5:60:04:86:f7:87:b4:e9:
b8:71:b5:63:65:47:ee:fc:b2:cc:14:4f:28:d7:da:
73:ef:33:2c:85:60:9c:9a:82:ba:5c:5b:73:69:cf:
8a:fd:b6:40:c7:bd:87:5d:1c:a2:0e:24:12:aa:6e:
ad:17:ff:e6:36:1b:a8:a3:f0:ed:a1:b7:1a:05:27:
af:75:a9:0d:96:3e:8a:30:90:b4:c5:ff:0c:66:24:
5c:1e:dc:bf:12:ec:cf:ba:bc:5a:ed:51:87:5e:ac:
9c:dc:5f:25:f6:87:01:fa:8c:f3:cb:d9:9e:cc:b6:
e6:d9:98:16:ce:fe:30:ce:13:7e:e2:36:96:1e:67:
30:30:0c:73:83:68:bb:e1:30:b9:10:4e:84:03:cd:
90:1b:a2:ca:63:3f:34:30:5f:05:91:5e:dd:d8:7f:
07:f7:d9:bf:f5:0e:8c:d1:42:24:b1:74:ee:53:c8:
9d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:76:1A:98:B9:61:CF:3F:F0:BD:B7:4E:31:E8:7C:64:D6:7B:01:BB
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HXYamLlhzz_wvbdOMeh8ZNZ7Abs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.163.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:1b:d2:e4:5b:19:b4:10:09:49:09:f2:cf:13:ce:81:59:52:
db:2e:61:f4:2a:6c:7c:e5:f2:82:d4:70:d4:ea:6e:b1:ec:e8:
1d:39:0d:e4:b1:bf:ca:01:1a:dd:c5:61:56:09:fb:63:92:74:
7a:53:0f:f6:a4:09:6d:f9:e7:0e:7b:33:7f:b3:8d:2c:e2:f0:
8a:ec:59:d7:95:bd:67:f0:75:23:da:2c:46:35:dd:16:8d:35:
83:6a:84:6b:5c:2e:d7:ac:8d:ce:55:25:ed:cd:ea:07:15:2a:
51:da:07:1b:d8:fe:d8:6b:6f:90:2f:92:cb:42:40:a7:8c:0d:
4f:a2:b9:08:1b:3e:27:e5:f0:52:a6:89:ea:be:9e:04:9d:b1:
2e:3f:71:a6:42:93:c4:ae:8a:10:fb:55:9a:76:02:fe:fc:da:
fe:a0:5c:3c:b6:67:1b:77:a0:c5:7f:55:e8:da:78:6a:fc:2b:
0e:bc:f8:a8:ff:ec:f1:5c:61:ef:74:64:91:71:59:9c:25:a5:
b0:c5:8e:9e:fb:37:b1:fb:21:97:2c:a1:45:4e:47:ef:da:4e:
81:5e:94:b3:38:c8:2c:6d:4a:71:fe:37:92:f3:4d:e6:30:49:
2f:f2:c5:69:8c:52:b0:80:3a:84:15:3a:2e:01:57:c7:ed:dd:
c3:dc:7e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:44 2025 by rpki-client