Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/l2TXq1KNmFrSSwOazhHtItJTLjM.roa
File: l2TXq1KNmFrSSwOazhHtItJTLjM.roa (raw, json)
Hash identifier: ftMD13MK7Gqen0mhz+dbMZERazljv3J+XbfS/GLbPoQ=
Subject key identifier: 97:64:D7:AB:52:8D:98:5A:D2:4B:03:9A:CE:11:ED:22:D2:53:2E:33
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0193D690A0264148FD5357BFE83EB189F3B1
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/l2TXq1KNmFrSSwOazhHtItJTLjM.roa
Signing time: Tue 17 Dec 2024 21:40:22 +0000
ROA not before: Tue 17 Dec 2024 21:40:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55286
IP address blocks: 45.91.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Dec 2024 07:11:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d6:90:a0:26:41:48:fd:53:57:bf:e8:3e:b1:89:f3:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Dec 17 21:40:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9764d7ab528d985ad24b039ace11ed22d2532e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:71:b1:5c:96:b2:b1:7f:01:c8:03:73:a3:2f:
ee:89:7a:d4:52:f2:49:0b:e1:17:bb:92:4a:be:c1:
4f:4d:eb:f9:e4:7e:74:d3:71:5e:ad:13:e3:2e:5a:
e2:00:02:01:26:27:ef:e2:cf:86:71:a8:f8:55:bf:
4b:ea:24:ae:ed:d5:47:94:64:9c:c4:37:7f:b9:58:
80:d9:17:cb:39:66:39:64:be:3c:45:e5:94:39:f7:
dc:20:30:b2:66:9f:00:ee:57:97:03:31:fe:f8:b1:
13:a0:ea:65:25:b3:43:1d:a7:c0:bb:68:bf:5c:8a:
c2:49:2d:8f:e1:ff:ba:80:89:9b:2d:56:c3:62:b9:
fe:2d:59:80:92:67:8b:44:ef:b3:a9:51:89:2a:82:
8d:67:be:72:58:e9:95:9e:1d:2e:5b:dd:98:26:0e:
62:2b:bf:8d:d2:85:73:8a:fd:ed:ef:c1:36:41:23:
a6:ad:00:4b:43:89:d7:bb:cc:dd:3b:b7:43:bf:77:
ed:b3:bf:17:4c:58:da:6e:bc:65:78:00:9b:7a:ea:
bd:93:dc:f4:55:43:7c:b2:03:13:e3:6b:c1:3e:d3:
45:77:23:3e:e9:70:f4:9a:e4:9d:9b:e7:cb:96:5d:
02:20:5b:05:36:f7:a5:4c:58:b7:67:37:0a:ba:c8:
27:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:64:D7:AB:52:8D:98:5A:D2:4B:03:9A:CE:11:ED:22:D2:53:2E:33
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/l2TXq1KNmFrSSwOazhHtItJTLjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.23.0/24
Signature Algorithm: sha256WithRSAEncryption
46:86:62:68:b7:bf:33:6b:72:da:d6:48:1d:a3:de:5a:2c:5e:
c2:97:2a:8e:ad:25:d6:a9:6c:0a:95:c5:53:97:c6:0f:05:13:
d0:1b:70:ee:d3:34:71:d4:52:88:e2:cb:27:1d:fb:c9:48:6c:
65:e1:b1:58:54:de:9a:15:4c:04:c8:7e:e8:eb:6d:87:31:86:
3f:de:1c:24:98:34:bb:96:d8:45:26:43:9b:23:48:bd:88:c4:
57:f3:29:0d:17:71:23:c3:2d:84:21:15:c4:fb:2c:44:0f:58:
71:0f:16:2d:09:5d:95:f9:8c:f7:89:5d:fe:02:0c:2a:f1:c1:
8f:cd:a5:8d:7c:fa:e0:2d:be:79:47:04:71:72:45:7a:67:01:
67:b2:7d:29:b2:9a:26:16:6e:1b:c6:c6:83:85:55:d5:0e:1e:
35:14:6f:24:ee:cb:26:31:f4:d0:fc:fe:57:89:88:9d:8f:54:
45:95:19:f5:69:7c:ac:ce:1b:e8:36:3e:23:54:32:43:57:50:
3d:7e:50:6d:9e:b0:13:df:ba:9a:83:a2:40:1e:58:c3:c4:1f:
da:9e:dc:5d:cd:f3:0a:32:5c:88:3a:c9:ee:f9:bd:8f:c8:65:
7d:09:6c:fd:0d:39:7c:54:95:de:cf:c8:55:82:9d:63:49:38:
85:38:ad:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:04:06 2025 by rpki-client