Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/F679iayl7JUiVrG8H8LGKC-1WRY.roa
File: F679iayl7JUiVrG8H8LGKC-1WRY.roa (raw, json)
Hash identifier: MnhZL4Nh418X8PJo8M8qSnghqMYSE/clPtD8TL5smJ8=
Subject key identifier: 17:AE:FD:89:AC:A5:EC:95:22:56:B1:BC:1F:C2:C6:28:2F:B5:59:16
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0191FE6309B1425763C52230E9943D16CA2F
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/F679iayl7JUiVrG8H8LGKC-1WRY.roa
Signing time: Tue 17 Sep 2024 05:09:48 +0000
ROA not before: Tue 17 Sep 2024 05:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55410
IP address blocks: 45.116.105.0/24 maxlen: 24
45.116.106.0/23 maxlen: 24
110.172.180.0/22 maxlen: 24
114.69.236.0/22 maxlen: 24
118.91.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Sep 2024 07:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fe:63:09:b1:42:57:63:c5:22:30:e9:94:3d:16:ca:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Sep 17 05:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17aefd89aca5ec952256b1bc1fc2c6282fb55916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cf:e6:6e:47:a5:82:4a:e9:c0:7a:6d:eb:ca:
36:e0:75:11:47:12:6e:2c:d7:7d:8c:bd:5f:37:02:
ce:a8:3e:e6:2e:8e:42:fa:37:49:7a:ab:2a:f9:2f:
32:17:b3:5d:8d:33:6e:9e:b5:8d:7c:4a:3c:c9:fd:
7c:fd:52:a1:e4:2b:67:10:70:11:8e:81:da:cd:ba:
e9:20:e6:f4:99:ee:de:ea:81:03:cb:8a:15:75:55:
e6:4b:73:b1:d2:62:f8:7a:95:ca:c4:5a:fb:50:58:
40:30:5d:49:00:bd:46:40:0c:57:07:68:23:20:8f:
7e:a1:03:50:27:46:af:68:ec:82:db:6d:03:31:02:
da:75:c3:3f:46:a1:ef:ff:0d:d5:40:28:f3:2f:2a:
c4:53:47:b2:ba:e8:f6:84:fe:a6:60:5a:f3:34:5c:
84:c6:97:db:56:87:ed:40:8c:65:b2:4c:5d:64:2a:
23:f6:24:42:de:68:3e:a4:b0:5a:e5:db:ba:37:be:
8a:80:9a:60:42:4b:ef:9e:01:c6:4a:e1:93:71:89:
a3:f7:19:96:b3:e6:f9:7c:1a:3c:62:76:2d:fc:d7:
a7:9e:db:63:b8:d1:e1:5e:01:1f:1e:1c:1a:2f:cd:
81:4b:da:5c:3c:35:c8:f6:ed:4e:b2:4a:df:53:1a:
0e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AE:FD:89:AC:A5:EC:95:22:56:B1:BC:1F:C2:C6:28:2F:B5:59:16
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/F679iayl7JUiVrG8H8LGKC-1WRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.116.105.0-45.116.107.255
110.172.180.0/22
114.69.236.0/22
118.91.180.0/22
Signature Algorithm: sha256WithRSAEncryption
df:21:96:39:e5:ff:a9:c7:1d:b4:02:eb:19:a1:39:a9:3a:43:
e7:44:cc:d3:c9:ba:04:1a:f9:09:16:a5:23:ec:2f:d2:db:45:
b0:5f:4f:e5:7e:1b:1d:72:36:95:22:f0:23:5e:dc:46:a7:63:
c4:07:ae:7a:a9:17:81:c5:ae:d9:47:ef:ad:4b:2a:a1:51:46:
36:32:5a:80:9c:57:ad:98:28:9a:fe:a3:07:72:9a:f6:85:a3:
f0:db:d5:ac:84:61:a8:42:71:21:8c:a2:48:7a:e4:0d:f5:11:
e8:81:f4:78:f6:1b:07:16:54:bb:e1:bb:8d:c4:f8:97:dd:23:
3c:65:09:94:02:df:87:99:10:f0:db:b6:86:34:c1:18:d6:37:
41:70:98:30:56:69:54:e9:9d:f0:37:fe:e8:da:e0:68:c1:93:
2a:9b:79:7d:94:14:f5:b7:dc:5d:75:56:84:5d:0d:d0:d1:70:
63:3b:1e:ac:a0:c2:74:14:ae:98:a9:f1:bb:53:e2:bf:79:6b:
52:89:76:83:ef:f8:36:7e:b7:4c:47:89:2d:ae:9b:9a:8d:1e:
d1:1e:24:75:e4:cc:5f:0f:6d:bf:15:ea:13:d5:b9:58:9f:09:
72:2d:77:0b:b5:4f:8e:7d:08:91:71:ec:25:0c:e2:8a:75:ca:
ed:d5:e8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 21 09:13:57 2024 by rpki-client on console-fra.rpki-client.org