Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/EGFCm_YFdky9JL8sEpuXJ-D2998.roa
File: EGFCm_YFdky9JL8sEpuXJ-D2998.roa (raw, json)
Hash identifier: lWyfeuQy/4sqjDVKxxEB0r94P4aYJYzYu3Dql8Luy8w=
Subject key identifier: 10:61:42:9B:F6:05:76:4C:BD:24:BF:2C:12:9B:97:27:E0:F6:F7:DF
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018FC5BE6E9F1CCFCC3312F7600A578E4167
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/EGFCm_YFdky9JL8sEpuXJ-D2998.roa
Signing time: Wed 29 May 2024 19:05:42 +0000
ROA not before: Wed 29 May 2024 19:05:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 45.149.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jun 2024 11:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c5:be:6e:9f:1c:cf:cc:33:12:f7:60:0a:57:8e:41:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: May 29 19:05:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1061429bf605764cbd24bf2c129b9727e0f6f7df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ff:20:c4:c9:c3:6a:9e:b4:cb:fd:bc:6c:63:
9c:05:96:12:f9:49:e1:e5:73:3a:70:00:37:75:82:
c9:86:49:aa:28:52:23:ae:2c:b5:38:a7:bf:85:5a:
ed:33:63:9a:53:dc:7f:d2:3d:4a:df:5f:36:37:78:
37:4f:d7:02:a0:81:ee:e5:7b:b3:dc:0f:cf:2a:1a:
54:fb:75:12:8b:02:3b:c8:d6:84:f5:88:23:7f:d5:
e2:1f:51:d6:bd:2b:21:15:38:42:57:93:62:c5:bc:
d3:18:bf:d0:bd:1d:76:1e:90:f1:dc:8e:89:bd:85:
a7:0d:90:57:52:fa:7f:18:59:dd:7d:6f:3d:76:dc:
d9:62:f9:fa:0b:84:12:80:ae:d4:97:71:17:46:b3:
db:85:e3:6d:72:2e:53:a8:22:15:01:9b:55:57:e0:
4c:38:7d:1e:4d:f5:92:e4:6c:61:5f:51:d8:08:ac:
85:01:8c:e6:c2:da:ec:60:54:be:0c:c7:35:ab:c3:
a2:01:1a:55:c1:71:25:ff:e6:8e:d1:f9:35:2e:10:
e5:99:eb:2e:e6:b7:34:e7:fa:7b:17:ec:21:e8:11:
cf:22:34:48:dd:6a:6c:a0:93:aa:df:85:04:44:cc:
99:7a:1a:03:47:5c:51:fd:c9:20:0a:78:59:b6:56:
9c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:61:42:9B:F6:05:76:4C:BD:24:BF:2C:12:9B:97:27:E0:F6:F7:DF
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/EGFCm_YFdky9JL8sEpuXJ-D2998.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.94.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:51:15:c6:c8:4c:37:8c:13:16:6a:e6:98:e4:ca:ff:67:98:
4d:5e:1c:c3:9b:d6:d9:95:8e:73:05:04:a2:b4:8d:88:3b:c3:
09:5b:71:bd:80:69:eb:3e:ed:f4:29:a7:8b:a4:b7:e0:ed:10:
d1:90:22:b6:2f:d8:58:e2:5d:41:5b:27:b7:94:1d:75:0c:dd:
9e:a2:e8:0a:ae:2f:ce:c3:3e:fc:ef:41:ce:c7:a1:be:f8:cf:
1b:89:b0:36:83:a6:0c:12:2d:e7:f0:1e:fe:2d:c8:62:cb:5a:
43:53:21:fc:13:51:fe:03:74:88:a3:b3:c7:84:48:b0:c3:ed:
db:9f:9d:ab:ac:bd:16:62:64:50:35:a3:25:25:61:c5:8c:90:
d6:a7:1d:15:85:2f:ab:e7:a1:72:99:d1:aa:ab:ea:42:52:78:
87:10:11:1b:09:ed:23:1f:1c:98:3e:03:83:f4:53:f7:c3:11:
42:df:c6:7a:c3:93:b9:0f:05:46:2e:fb:23:82:6d:48:6e:9b:
8f:b8:8f:5e:f7:eb:0a:82:1c:a4:b8:db:9b:f0:2a:3a:64:14:
47:d3:ad:79:5a:a9:a0:ae:75:e6:78:5c:4e:c7:e3:67:8a:c8:
27:ae:90:34:2b:6e:76:80:ba:60:67:18:7f:2b:33:a4:c2:24:
ff:96:05:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 14:15:32 2024 by rpki-client on console-fra.rpki-client.org