Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/pn_yHXXNO755XsoVT6eEMPyGeGg.roa
File: pn_yHXXNO755XsoVT6eEMPyGeGg.roa (raw, json)
Hash identifier: O+EQGpopUGJnPP2Ohb0M5Pb4bosirIbaIuBAWxXd3WM=
Subject key identifier: A6:7F:F2:1D:75:CD:3B:BE:79:5E:CA:15:4F:A7:84:30:FC:86:78:68
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 0190D99B67B0319865F21CDC56AA9286987C
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/pn_yHXXNO755XsoVT6eEMPyGeGg.roa
Signing time: Mon 22 Jul 2024 08:42:38 +0000
ROA not before: Mon 22 Jul 2024 08:42:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.158.125.0/24 maxlen: 24
45.158.126.0/24 maxlen: 24
45.158.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 22:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:9b:67:b0:31:98:65:f2:1c:dc:56:aa:92:86:98:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jul 22 08:42:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a67ff21d75cd3bbe795eca154fa78430fc867868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:82:d2:12:c4:65:54:ef:6d:e0:dc:de:56:
9e:e4:50:3d:0b:29:5e:46:b0:cb:29:c4:e2:cb:29:
02:69:4e:28:5b:5a:7b:29:80:67:5a:1d:35:69:52:
05:b6:5a:e5:86:98:ea:9a:6a:09:2e:ba:83:d4:97:
61:16:a5:73:0f:71:6b:0a:1b:c2:07:f2:bf:cb:ab:
a8:06:00:32:28:2e:58:28:fa:c1:71:2b:1d:e1:df:
4f:42:9b:37:b7:37:e3:d4:af:4b:f5:53:76:2a:12:
e5:fa:91:19:90:00:1c:1f:4e:1c:bf:fc:17:67:f5:
85:71:3e:28:34:d7:9e:17:03:85:82:ec:35:87:a1:
45:ff:f3:68:7e:b4:bc:e0:a6:a7:78:44:1c:35:6f:
bc:52:d6:1c:70:d0:1f:3f:e5:ff:2e:9c:12:2e:1b:
98:49:8e:c7:b9:b8:fc:93:52:35:39:70:1f:f6:cc:
4e:11:f5:b7:59:65:17:95:1f:83:06:32:47:53:12:
4c:df:c9:bd:74:6e:cf:d5:18:bb:3f:6c:92:25:a1:
d3:2d:e5:aa:20:bd:f9:e4:05:04:3c:50:f6:db:70:
4a:2e:dc:b1:07:a8:bd:01:be:87:be:aa:e4:66:2b:
ab:e2:73:12:a4:b0:30:b7:c8:6b:7f:3b:e4:2b:65:
2f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:7F:F2:1D:75:CD:3B:BE:79:5E:CA:15:4F:A7:84:30:FC:86:78:68
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/pn_yHXXNO755XsoVT6eEMPyGeGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0-45.158.127.255
Signature Algorithm: sha256WithRSAEncryption
96:c9:af:a7:59:dd:04:14:1d:3f:d4:c0:a3:d0:6b:24:3d:76:
bf:d5:73:6a:58:7d:57:dc:f4:a5:e8:50:c8:af:21:67:9f:bb:
36:b3:8b:97:68:34:44:6b:f8:3f:5f:23:89:0e:09:23:03:50:
a8:dc:9b:b8:19:2e:02:21:d8:09:23:71:fd:ec:f9:7a:d4:23:
60:9d:9f:0a:09:e0:ea:e1:0d:67:ad:61:17:a3:aa:93:cb:98:
ab:50:25:55:95:16:3d:a1:90:92:ce:4a:73:19:89:fc:88:9b:
c3:41:3f:db:fc:b1:11:3b:4c:15:db:3e:d9:51:92:e8:c8:7f:
11:e2:cd:1c:32:99:8f:f0:21:b8:c3:e5:d7:e5:08:c6:01:0f:
84:49:00:a8:c7:33:8e:d2:80:3e:25:f8:e5:2f:5f:77:7f:fd:
c2:b8:fb:b1:5b:ca:35:0e:27:f1:1f:0b:6d:81:1d:b0:9a:84:
c6:7c:7c:f0:13:5e:63:62:d2:e3:7a:bb:f0:da:7c:0b:09:11:
af:fc:7c:f8:5c:a9:7a:d7:c6:cd:ed:b6:43:1f:bc:fc:d4:33:
1a:f0:80:99:0f:13:b7:1d:f9:d9:19:1a:fa:28:28:09:b5:48:
10:e7:f2:29:a7:d8:a6:58:b4:be:64:f6:fc:9b:25:cf:2f:3c:
a6:67:35:e9
-----BEGIN CERTIFICATE-----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Generated at Tue Jul 23 02:02:11 2024 by rpki-client on console-ams.rpki-client.org