Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/a06GZ7IPNi-DTpC-aU8-g1L-Eas.roa
File: a06GZ7IPNi-DTpC-aU8-g1L-Eas.roa (raw, json)
Hash identifier: 10P9c5zFBIZGX9HEbQ7llF83Ae8WiuF9zMuMvKJ3pg4=
Subject key identifier: 6B:4E:86:67:B2:0F:36:2F:83:4E:90:BE:69:4F:3E:83:52:FE:11:AB
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 0191AC176F633B9788253407603EE79B413A
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/a06GZ7IPNi-DTpC-aU8-g1L-Eas.roa
Signing time: Sun 01 Sep 2024 05:38:22 +0000
ROA not before: Sun 01 Sep 2024 05:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41789
IP address blocks: 45.82.14.0/23 maxlen: 23
185.142.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 14:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ac:17:6f:63:3b:97:88:25:34:07:60:3e:e7:9b:41:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Sep 1 05:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b4e8667b20f362f834e90be694f3e8352fe11ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fa:a3:25:c2:cf:d6:67:03:43:a1:f9:9d:2f:
71:26:f7:ae:12:89:f0:4f:f6:e3:7b:a7:9d:4c:1f:
cf:d7:e7:73:5f:46:ca:d3:72:8c:dd:c1:72:71:57:
03:06:85:ff:ca:60:c3:cc:de:a1:81:86:ca:4d:c7:
6a:ed:af:eb:c3:f6:56:57:fe:b4:32:5a:18:5f:cc:
6f:52:00:3e:4a:a1:69:f0:28:26:70:51:b5:37:77:
d2:48:21:0e:4d:56:49:73:23:96:f4:bc:bf:41:2d:
ed:98:58:a7:8b:8e:55:44:15:45:14:fb:78:2f:aa:
a2:0d:98:65:ff:89:e4:52:f3:a8:c7:36:bd:95:17:
b7:b5:12:03:c2:f4:b4:23:ee:df:31:e9:49:df:54:
6e:bf:96:7c:41:0d:03:e4:77:ff:6c:cc:61:c4:89:
f1:af:1d:d6:c0:39:61:de:26:4a:3b:dc:7e:fe:ef:
8d:76:91:51:16:dc:e3:bc:34:11:64:ed:59:9d:73:
28:92:0e:58:6a:9f:60:d6:b2:10:40:ae:46:b4:53:
47:4e:d7:33:7f:f9:52:c2:ec:85:2b:b6:51:c6:e5:
df:3a:d3:a4:80:fc:0c:65:a0:ad:e4:37:15:70:1e:
00:d8:02:80:17:33:f1:f9:5a:75:1e:79:00:36:a1:
1f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:4E:86:67:B2:0F:36:2F:83:4E:90:BE:69:4F:3E:83:52:FE:11:AB
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/a06GZ7IPNi-DTpC-aU8-g1L-Eas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.14.0/23
185.142.99.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:af:bd:e3:62:1c:10:ef:a0:e1:c7:d2:31:b4:ab:99:5f:6b:
b5:04:85:79:38:86:e1:07:0a:03:85:73:5a:21:68:4b:94:d5:
4f:19:7b:76:52:8d:63:21:fb:3d:52:5a:cd:53:38:a3:f6:1c:
9c:d7:7f:31:28:60:37:8b:9f:20:2d:31:8a:0b:8d:32:0e:37:
1f:78:da:19:87:8a:19:94:5a:22:10:6b:a5:91:17:8d:ce:5d:
0a:64:ec:74:5a:85:34:09:a8:93:01:11:c1:82:0e:69:c0:28:
cc:b5:1c:4b:eb:c7:ee:29:84:bd:bf:ba:20:f2:6e:cc:37:76:
f4:de:10:dc:c4:e9:4e:6b:06:a2:17:96:da:d6:f3:1b:01:72:
8a:46:80:23:8b:09:61:8d:53:5c:e7:7f:4c:1f:25:6d:6e:5d:
9c:af:61:84:5d:d4:b8:dc:0a:3e:48:b6:18:32:87:69:58:08:
01:1d:9b:cf:bc:13:6b:5b:77:1a:45:72:b4:ae:42:4e:1e:41:
f3:d8:76:28:32:2d:fe:a8:83:e6:87:aa:ed:67:d4:fa:a3:9d:
14:42:f8:f1:c0:14:e1:70:d3:11:5e:b2:1e:ee:e2:f5:1e:26:
71:53:f9:e9:f4:95:b5:24:79:dc:e7:90:fd:65:43:bd:b8:91:
fe:ae:11:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:49 2025 by rpki-client