Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/KDsqy0tN53qTze1_HiADPAhTR1E.roa
File: KDsqy0tN53qTze1_HiADPAhTR1E.roa (raw, json)
Hash identifier: aVaWDNwyWuwFWteBdeCoR9lRfjU2WNJkE3A62cCr2Us=
Subject key identifier: 28:3B:2A:CB:4B:4D:E7:7A:93:CD:ED:7F:1E:20:03:3C:08:53:47:51
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01917E42F3D9FABBA353D3A311D787EE0164
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/KDsqy0tN53qTze1_HiADPAhTR1E.roa
Signing time: Fri 23 Aug 2024 08:03:22 +0000
ROA not before: Fri 23 Aug 2024 08:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214307
IP address blocks: 45.145.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7e:42:f3:d9:fa:bb:a3:53:d3:a3:11:d7:87:ee:01:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Aug 23 08:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=283b2acb4b4de77a93cded7f1e20033c08534751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ce:72:01:b5:6a:d8:f5:77:ce:31:3a:bf:87:
74:8d:42:53:1a:56:ea:17:be:26:7a:f5:a2:19:6b:
c0:20:ef:78:69:c6:65:b8:a2:6c:bc:b7:c7:7c:b6:
7e:ac:f7:70:11:0f:57:70:3f:2d:ac:87:00:ac:f4:
b8:38:71:f6:bc:3b:f4:9a:cc:c5:67:66:7f:67:6b:
f7:a4:95:28:6a:23:4f:90:53:74:da:37:c5:de:9b:
32:14:17:09:8b:1b:00:a9:19:a4:c8:93:ee:56:22:
50:93:56:46:1d:8c:93:8e:46:12:20:8e:ca:04:e1:
f6:a2:92:54:30:c3:d5:53:28:43:78:43:2d:a1:67:
42:a4:93:fa:e4:f1:8e:10:52:4f:5c:66:c5:ce:30:
97:4f:a7:7a:c6:28:0e:b3:b9:07:d5:30:dd:2a:13:
31:dd:85:4e:21:25:99:0c:d4:b4:95:1f:13:e8:c9:
5f:99:6d:0c:2b:51:39:dc:74:e8:01:88:f1:5a:68:
de:a7:bf:37:d4:eb:75:54:5b:84:86:0a:2d:ea:99:
b2:62:8d:58:11:9d:9f:e8:09:4d:f0:2a:d0:ae:d6:
67:e6:4b:e2:cd:86:41:66:51:50:ab:02:6a:5d:ca:
5e:b0:c8:27:28:13:c9:ea:58:58:3a:a5:35:35:b9:
de:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:3B:2A:CB:4B:4D:E7:7A:93:CD:ED:7F:1E:20:03:3C:08:53:47:51
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/KDsqy0tN53qTze1_HiADPAhTR1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.248.0/24
Signature Algorithm: sha256WithRSAEncryption
43:6f:ec:09:8f:91:3e:25:bb:e6:e6:e7:49:55:b4:1d:01:d9:
b8:d7:6a:85:0c:ad:3d:86:b2:24:86:37:ac:8f:71:eb:ed:db:
e9:21:0b:41:0c:d4:93:8e:2a:35:a6:f8:6d:ce:4e:09:a8:c1:
8e:24:30:97:36:7e:51:7b:47:62:05:89:b7:68:a5:5d:18:a5:
05:91:47:ec:c7:37:92:a8:8d:8f:82:8c:c8:b5:ae:bd:c4:7c:
aa:80:ef:cb:9d:37:3d:14:80:01:2e:fc:01:ac:9b:51:c0:bb:
ac:7f:9a:4d:a4:8d:48:28:07:fc:da:e8:8b:4f:c2:3d:9f:8a:
a5:95:a2:bb:54:6f:fd:3c:b3:a0:9d:e5:11:ec:23:de:85:e2:
be:a8:40:45:60:51:47:78:70:d7:a6:c4:14:2b:31:19:04:47:
e3:f5:bd:2c:48:73:4b:ee:9d:f5:0c:2d:d5:17:ed:53:48:12:
29:09:ce:db:14:48:9a:34:08:d0:72:a6:89:f9:66:50:d6:c8:
b8:7d:43:c7:33:07:f1:2c:90:b1:e0:dd:77:f5:b8:4d:19:38:
7c:17:a4:62:fa:61:cf:14:90:d6:6c:53:c6:86:1f:64:b0:72:
71:21:9c:f1:ce:0d:27:34:16:e2:b0:7a:5c:df:1b:ce:ab:e4:
8f:1b:f0:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:59 2025 by rpki-client