Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/tyQB4K-fmT0KKf445UqMDOSpX2I.roa
File: tyQB4K-fmT0KKf445UqMDOSpX2I.roa (raw, json)
Hash identifier: WGR5TPBo6imh46T742XZ86Gdrrrn5THlOQyNLVT/IeM=
Subject key identifier: B7:24:01:E0:AF:9F:99:3D:0A:29:FE:38:E5:4A:8C:0C:E4:A9:5F:62
Certificate issuer: /CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Certificate serial: 018E27D2CD55CDC88AAA5958EA73EFC830ED
Authority key identifier: 74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/tyQB4K-fmT0KKf445UqMDOSpX2I.roa
Signing time: Sun 10 Mar 2024 10:05:10 +0000
ROA not before: Sun 10 Mar 2024 10:05:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204650
IP address blocks: 45.144.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 09:51:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:27:d2:cd:55:cd:c8:8a:aa:59:58:ea:73:ef:c8:30:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Validity
Not Before: Mar 10 10:05:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b72401e0af9f993d0a29fe38e54a8c0ce4a95f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3b:54:7e:b6:1f:3f:45:10:4d:cd:38:2b:42:
25:fd:4e:c8:91:27:54:b2:59:55:c3:f3:dd:ae:3d:
75:b6:80:50:0c:2c:15:8a:c9:eb:f1:26:15:0f:97:
35:95:19:ea:f6:db:16:dc:bd:91:d9:83:ea:32:b7:
2e:47:21:43:44:a9:4c:1f:4d:3c:e6:38:f6:9c:cb:
c1:6b:6e:b9:fd:55:90:e4:7e:f3:6b:c6:45:6b:9f:
ac:c4:4a:b0:cf:d2:6b:77:53:fd:7f:cb:b1:9b:06:
86:11:b0:62:db:3e:c2:65:b9:cd:77:19:6b:6f:11:
c0:c6:9b:c3:64:33:7a:7e:c6:b4:ea:6c:19:ee:4b:
5f:ba:0c:ba:44:ec:70:ef:7b:42:e2:c4:35:a6:cd:
1c:cf:bb:d4:b4:72:ce:3d:f9:a1:3f:e1:82:8b:9c:
65:fd:76:0c:89:90:a0:ce:ca:f5:10:e2:24:f6:a2:
7e:63:90:82:84:2d:39:52:fe:36:92:29:21:af:78:
13:79:3d:35:51:e2:ae:9c:fa:26:04:ea:53:69:c1:
8d:cc:51:cb:6d:0e:a1:5a:2c:c4:df:70:94:99:ad:
60:33:68:2a:5f:4d:90:a4:91:3d:c5:dd:73:0b:c2:
e5:fd:ce:35:40:f9:37:34:d4:b6:89:58:3b:d5:9e:
bd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:24:01:E0:AF:9F:99:3D:0A:29:FE:38:E5:4A:8C:0C:E4:A9:5F:62
X509v3 Authority Key Identifier:
keyid:74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/tyQB4K-fmT0KKf445UqMDOSpX2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.18.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:3b:37:ab:e2:35:2e:c1:48:81:62:c0:9a:43:be:08:b6:23:
bc:dc:68:04:36:fe:d7:6e:e9:d3:37:40:62:b9:c4:1d:9e:f9:
29:77:fb:e6:f0:a7:e7:e7:2c:a9:c1:83:c4:fd:2b:53:d9:41:
63:5f:93:fc:fe:a3:98:a4:59:64:ce:a9:02:6e:93:b9:39:02:
5f:93:ce:9b:aa:a4:98:d0:e5:7d:9c:5b:b5:22:4a:88:88:88:
2f:f9:c0:2b:da:7f:88:ba:3b:79:df:f6:27:a4:8f:5e:ad:89:
0a:2c:9a:2f:ed:42:55:39:56:b7:30:ec:d0:67:f9:07:fa:ef:
01:2a:8d:96:ed:74:83:51:a9:c1:15:09:72:fa:3f:44:cb:82:
0e:72:f6:39:50:65:f4:8a:56:5b:9c:18:a6:df:2b:51:c8:95:
65:c8:01:d7:6e:cc:0c:8a:23:25:da:90:93:54:d1:87:3d:6c:
ba:4e:70:94:d1:02:11:5b:ed:85:e3:3c:b1:fd:7d:dd:a2:7e:
7e:55:a9:ac:9e:fc:fb:24:65:52:47:72:c8:f3:58:10:b3:3c:
aa:ab:95:e3:78:98:79:e8:e4:77:72:40:0b:89:b1:47:ea:d5:
88:55:bb:7b:d6:c6:3c:0b:91:cf:4a:2b:68:79:55:7d:e8:8b:
d5:fe:e5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:22 2024 by rpki-client on console-ams.rpki-client.org