Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/eb2k7zBNIvhZ6saLawIMGuApW7M.roa
File: eb2k7zBNIvhZ6saLawIMGuApW7M.roa (raw, json)
Hash identifier: //822LehvZ7ua38+XH0wKUtGKRjPk2SeIBGPTIHt1MI=
Subject key identifier: 79:BD:A4:EF:30:4D:22:F8:59:EA:C6:8B:6B:02:0C:1A:E0:29:5B:B3
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 0192D1D170F2359DB5FDC38651E9FAABAA15
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/eb2k7zBNIvhZ6saLawIMGuApW7M.roa
Signing time: Mon 28 Oct 2024 06:30:16 +0000
ROA not before: Mon 28 Oct 2024 06:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.146.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Nov 2024 07:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d1:d1:70:f2:35:9d:b5:fd:c3:86:51:e9:fa:ab:aa:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Oct 28 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79bda4ef304d22f859eac68b6b020c1ae0295bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:51:ec:a5:7f:dc:c5:d5:cf:ad:15:e1:23:49:
d9:f9:a3:09:0e:b4:38:6b:0e:98:38:90:96:17:95:
53:8e:de:04:52:ad:c6:62:92:30:6d:f7:e7:80:a4:
de:d1:76:10:c7:6f:8c:f2:e4:06:d5:08:11:f9:71:
f2:8e:89:f9:a4:9b:c6:f8:f1:74:60:c7:86:25:52:
7e:2a:75:48:1f:b9:96:90:54:21:38:5b:09:23:a6:
6f:ed:6b:8f:f0:9b:e0:d8:c7:92:fc:c9:8f:e8:94:
d2:b7:e0:a8:95:d6:5c:d1:a0:11:21:5b:4b:8f:2b:
ca:c0:4b:4c:b4:c9:2d:fa:a0:4c:bf:b1:1e:b7:84:
16:cc:3d:9f:bd:34:09:0c:69:c6:63:05:e4:b1:61:
cd:ae:15:34:83:d0:53:a9:3f:f1:e1:f7:93:b0:88:
1d:49:68:f5:94:48:77:a9:f3:d1:2b:12:31:e4:75:
15:dc:de:1e:a6:aa:9b:77:e2:78:83:36:dc:27:b7:
0f:0d:a4:8d:d7:52:8c:7d:3b:58:94:5d:67:f4:46:
60:e1:cc:b0:5d:dc:5a:ae:cc:ff:f8:27:2e:54:df:
9c:50:f2:79:de:08:a5:c4:52:3d:09:ba:54:47:d3:
9e:a5:6c:a4:9f:44:f8:ec:2a:2c:64:3e:cf:4d:63:
9e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BD:A4:EF:30:4D:22:F8:59:EA:C6:8B:6B:02:0C:1A:E0:29:5B:B3
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/eb2k7zBNIvhZ6saLawIMGuApW7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
76:c3:74:f6:8e:e3:59:b2:4a:66:da:c0:70:da:4d:77:4c:26:
6a:e4:fa:87:e5:2e:87:5d:91:14:4e:b6:e5:ac:f0:64:b3:b5:
4d:d0:9c:0f:1c:50:7a:ef:a8:ed:da:0d:1c:af:01:13:56:5c:
01:e8:74:f7:4e:75:d0:2f:90:32:b3:dd:be:f8:bf:4f:76:9b:
ae:40:5c:6c:3f:21:24:57:5a:7c:0d:94:01:d4:0c:57:ff:32:
3e:1d:f1:f5:94:93:a2:53:e7:06:db:72:ad:2b:ec:56:cc:4d:
a0:1f:29:e4:a1:f9:07:1d:39:5d:3d:9b:7c:ee:6b:ad:b6:51:
1d:d5:2d:57:5d:21:bb:79:ee:dc:7d:51:44:6d:bb:b1:c4:11:
94:42:d3:09:38:58:a7:27:82:f5:fd:6c:c8:9d:f9:b2:1c:ec:
b5:a1:42:b4:39:8a:07:a7:e1:45:e5:90:be:a2:20:fb:7c:d4:
88:45:56:a5:6b:0d:b9:64:fc:e9:76:f7:db:85:ad:8e:42:f5:
1e:5c:94:1b:0a:f0:90:2d:e3:36:9f:fa:47:d0:b5:4b:96:11:
8b:a0:b2:5b:0d:89:4d:d3:2c:07:f7:96:93:fe:3b:28:42:48:
16:89:e0:3c:41:d3:68:b7:20:29:52:ee:ad:e3:2e:3d:67:89:
31:b9:12:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:46:20 2025 by rpki-client