Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/WZuoeyoosKY4DdEikAJ74V18vAc.roa
File: WZuoeyoosKY4DdEikAJ74V18vAc.roa (raw, json)
Hash identifier: 6zJSBA9Dd740QEGSQJT4CGo6+VJB4Mb/ezZUCw/qKwA=
Subject key identifier: 59:9B:A8:7B:2A:28:B0:A6:38:0D:D1:22:90:02:7B:E1:5D:7C:BC:07
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 018FE83F3623FE19DE61DF13E93CA5A90EBC
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/WZuoeyoosKY4DdEikAJ74V18vAc.roa
Signing time: Wed 05 Jun 2024 11:53:27 +0000
ROA not before: Wed 05 Jun 2024 11:53:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.145.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:3f:36:23:fe:19:de:61:df:13:e9:3c:a5:a9:0e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Jun 5 11:53:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=599ba87b2a28b0a6380dd12290027be15d7cbc07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:16:34:29:fa:9a:7a:b6:f3:74:cd:a2:aa:
e6:67:ce:f8:80:5e:7c:4f:3d:6a:5f:cc:3d:6e:38:
44:34:6c:64:da:77:0f:ed:09:75:62:fa:bb:27:8a:
b7:40:e3:53:04:34:09:3a:15:52:1f:ed:03:1e:99:
b2:b1:f9:57:40:51:b2:32:a6:5e:da:ae:24:b1:36:
ea:7d:90:34:b2:78:69:1c:8c:3e:e3:5c:3c:81:e3:
30:62:78:7a:27:86:bf:5c:f2:38:89:c4:fd:a3:a4:
41:c0:0b:8f:9f:0e:ef:8b:9d:30:b8:f6:e4:0e:88:
4b:16:db:3c:ad:62:a3:c8:20:39:5f:47:b3:71:24:
da:48:67:df:93:e0:96:42:ac:a2:ae:ce:b7:0a:c0:
3a:dc:28:73:5c:c7:6a:5d:64:2d:dd:dc:6f:a5:e7:
1a:23:33:f3:b5:72:8a:50:c4:dd:7e:b4:52:7b:f7:
40:bd:18:46:2b:7d:de:8a:53:99:9f:56:c3:78:e5:
e6:3b:0c:a5:8d:f1:33:5d:91:29:42:7d:e3:42:55:
65:54:6a:9f:f2:57:0c:38:e3:8c:54:57:e1:c0:bb:
85:3a:70:f8:89:5e:b4:db:64:f3:3c:b8:8d:5a:fe:
ae:07:b2:20:27:63:33:4a:d8:c6:86:96:cc:6b:05:
d4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9B:A8:7B:2A:28:B0:A6:38:0D:D1:22:90:02:7B:E1:5D:7C:BC:07
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/WZuoeyoosKY4DdEikAJ74V18vAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.17.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ba:e1:e8:7a:12:15:e8:5c:85:6a:2b:9e:c3:88:70:7e:90:
00:58:af:c3:51:55:b0:f0:35:b3:11:bc:da:51:41:a6:d3:cf:
64:d3:2c:0e:f8:0b:12:6c:ab:42:31:07:9e:7e:12:f8:ca:f7:
70:58:c7:27:58:b6:00:7d:64:e4:30:c4:04:d5:b2:26:bf:08:
07:15:fb:50:1c:a3:89:71:e0:17:34:10:3e:69:98:c7:5a:b5:
da:af:66:05:bb:78:ff:a8:db:cd:5a:ed:91:b5:f4:e4:20:23:
8c:f5:0a:68:8c:0b:9c:e1:64:c7:da:52:16:20:42:98:1e:29:
2b:dc:b6:fe:70:d4:b7:1c:c3:0e:7e:93:2d:11:1a:ee:c8:df:
4a:8e:ea:f1:8b:9b:2c:23:98:51:64:ed:7e:04:20:ae:56:97:
a5:e4:c8:60:e9:5a:2f:83:81:24:fc:3b:63:46:7e:c6:d5:c2:
af:8d:76:2d:86:65:6a:39:05:3f:2e:59:ae:69:3d:08:22:2e:
1d:62:aa:7f:a9:7b:2f:cb:8f:58:34:1c:fa:db:c7:00:c9:8d:
39:39:37:8d:80:d9:ab:a3:2c:aa:ad:d2:db:c6:dc:19:93:1e:
b4:36:19:c2:8e:42:31:b7:91:e3:61:60:02:4e:fd:39:46:a8:
a9:e8:69:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:35 2025 by rpki-client