Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/W25FpWO5irXCDmkUKvd4PKPj4f4.roa
File: W25FpWO5irXCDmkUKvd4PKPj4f4.roa (raw, json)
Hash identifier: kGq6Cihd+X4JkN4IRfPldWSa7gMaACl/oWtQyb864EA=
Subject key identifier: 5B:6E:45:A5:63:B9:8A:B5:C2:0E:69:14:2A:F7:78:3C:A3:E3:E1:FE
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 0191429CE6D6B7A8A78CEB1F7C53EA5ED6E2
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/W25FpWO5irXCDmkUKvd4PKPj4f4.roa
Signing time: Sun 11 Aug 2024 18:04:24 +0000
ROA not before: Sun 11 Aug 2024 18:04:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43641
IP address blocks: 45.81.149.0/24 maxlen: 24
185.202.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:42:9c:e6:d6:b7:a8:a7:8c:eb:1f:7c:53:ea:5e:d6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Aug 11 18:04:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b6e45a563b98ab5c20e69142af7783ca3e3e1fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e0:4c:2f:0b:41:bb:e6:f9:fe:34:52:38:8e:
ee:9b:c9:99:ab:9f:70:29:39:e9:6c:1e:47:5f:99:
3a:7e:db:41:4b:60:ac:ce:1f:5e:67:6c:c2:0a:16:
09:aa:bf:54:6a:04:9a:65:13:ab:1e:df:29:59:97:
be:05:49:59:44:db:eb:83:63:f8:70:a6:01:77:ca:
38:15:1b:1c:9a:e6:87:e1:5b:30:ac:39:a1:df:ad:
37:f1:c1:28:74:4f:e0:0b:6e:9f:76:01:75:0c:7e:
c0:ab:3b:db:53:6b:8a:2c:69:13:d2:01:67:ae:26:
f1:4f:91:32:7d:97:9e:6b:fd:a7:cb:04:6c:72:aa:
6a:b4:ea:a8:7a:4d:8b:1e:ef:70:56:27:d3:48:d6:
14:46:76:95:b5:63:01:48:47:33:ea:cf:83:d3:af:
d4:27:a8:62:49:45:40:84:15:b7:e6:b7:00:df:7c:
2b:92:1c:8e:d9:dc:6f:66:5a:06:d0:ff:b0:15:8c:
77:31:7e:68:40:62:00:3f:73:e0:c1:07:2b:12:90:
56:c2:fb:65:a2:28:22:25:41:54:7e:29:78:a9:85:
7a:eb:f3:d5:57:fc:16:14:7b:8a:4e:59:ca:76:d1:
c1:a8:20:14:d8:a5:3c:68:b1:36:de:85:f8:8a:a4:
af:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:6E:45:A5:63:B9:8A:B5:C2:0E:69:14:2A:F7:78:3C:A3:E3:E1:FE
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/W25FpWO5irXCDmkUKvd4PKPj4f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.149.0/24
185.202.175.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:85:bf:aa:22:58:56:8f:11:1e:3d:5b:68:a1:42:cf:a9:40:
a9:f4:11:f3:d9:f4:f2:39:ce:c5:ab:2c:90:3d:37:3d:f2:7e:
06:7f:0e:67:a9:f2:6d:e0:c0:d3:f1:5e:c1:f2:71:2b:61:59:
a3:18:bf:92:69:99:94:19:02:a4:43:85:9a:72:31:d4:be:1a:
e5:a5:38:92:23:a5:f4:97:6e:03:8e:7e:e1:5c:ea:f6:23:0b:
98:9d:51:fb:0b:35:c6:63:03:ad:05:b5:29:8a:c5:32:20:2c:
7d:a2:03:2d:f6:63:63:be:49:d4:cb:5c:0b:07:f5:4e:d3:5e:
e8:51:0f:84:1c:2d:db:b8:05:f9:5f:2c:f5:31:07:06:13:78:
e7:3a:a2:10:d5:d2:07:fb:09:e4:ff:54:5a:8e:b4:b6:c1:82:
1e:fe:ad:af:c3:30:1a:2b:7a:2e:fd:f2:81:fc:6b:03:d9:88:
b6:16:09:9e:7f:d5:8c:3c:2f:52:bd:de:4a:88:8d:2d:d6:8f:
b3:e0:64:ef:68:cb:db:7e:2f:5b:01:b3:2b:8a:27:32:4f:34:
ab:e8:9f:cf:be:d8:9b:27:d4:a1:d9:49:8b:33:bc:c0:06:08:
fe:1e:fe:6b:87:4f:02:a0:4d:ee:37:03:f3:69:3d:37:06:0c:
1f:0b:cf:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:05 2025 by rpki-client