Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/DhbYHik-1WJQF4BBgkxSr85y4uo.roa
File: DhbYHik-1WJQF4BBgkxSr85y4uo.roa (raw, json)
Hash identifier: IaqdU1cYKyUwxiS+tDzpUIdCZTcWtDtAbED6fqRhv7w=
Subject key identifier: 0E:16:D8:1E:29:3E:D5:62:50:17:80:41:82:4C:52:AF:CE:72:E2:EA
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018FB363070423021FB5EC072967ED4E8553
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/DhbYHik-1WJQF4BBgkxSr85y4uo.roa
Signing time: Sun 26 May 2024 05:32:42 +0000
ROA not before: Sun 26 May 2024 05:32:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.137.16.0/24 maxlen: 24
45.137.17.0/24 maxlen: 24
45.137.19.0/24 maxlen: 24
81.28.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 May 2024 18:53:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b3:63:07:04:23:02:1f:b5:ec:07:29:67:ed:4e:85:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: May 26 05:32:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e16d81e293ed56250178041824c52afce72e2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:70:b2:5a:95:10:4f:81:eb:5a:41:a0:68:6d:
3f:7c:e3:aa:40:38:4a:2d:42:35:83:4a:4a:e1:14:
4e:d6:b4:18:bf:a6:4f:dc:bf:18:07:73:62:9e:f1:
73:3b:d6:86:7c:85:02:18:bc:4c:f4:67:c9:6f:02:
30:0c:e6:39:10:6f:a4:78:82:43:25:2b:2b:d8:48:
5a:b1:68:39:27:40:f0:16:64:40:55:42:26:17:51:
f9:25:6e:2e:6e:1b:6e:49:25:c7:db:76:3b:00:4e:
cb:c6:bf:dc:c1:df:e8:a6:8e:47:64:c7:d2:1c:fc:
2e:a1:6c:1e:38:18:67:26:a5:5e:8f:f1:61:ec:ce:
27:1e:ed:53:1e:72:c1:d7:b1:c5:3f:50:cf:5a:91:
54:1a:7f:6b:51:e1:1f:e1:39:ac:51:0c:b2:09:03:
27:df:a3:9f:91:64:bc:68:aa:f3:82:13:dc:34:50:
cb:94:cb:8f:17:e3:cc:98:f3:88:42:2e:dd:d3:af:
6e:b7:21:5b:8a:ff:34:84:d6:bc:52:49:33:5f:9c:
fc:e3:ea:07:ab:22:59:35:8b:c8:95:c5:a4:40:26:
bf:e0:52:71:4c:6d:d2:71:1c:c3:13:a0:72:90:75:
c3:76:7a:28:74:60:66:71:9c:d0:4f:54:52:4c:97:
02:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:16:D8:1E:29:3E:D5:62:50:17:80:41:82:4C:52:AF:CE:72:E2:EA
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/DhbYHik-1WJQF4BBgkxSr85y4uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.16.0/23
45.137.19.0/24
81.28.252.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:45:9f:86:c8:9d:10:d8:86:f7:2d:0d:4e:3d:ca:9e:85:63:
ff:49:2b:7b:37:dd:04:dd:8f:3a:e0:ef:3e:0a:6a:96:90:d8:
07:4e:87:78:82:0f:63:53:2b:99:56:29:51:38:70:c6:e5:1f:
9b:05:42:a6:49:01:7f:68:28:66:49:1d:e5:33:47:a8:8c:a9:
95:d4:4f:b0:32:a5:2e:18:24:2b:92:6a:63:8d:79:fd:e8:5d:
91:e4:64:f6:c9:2a:dc:01:87:8f:1a:af:0e:17:fc:82:26:b7:
51:6f:d0:12:fa:ba:b9:b1:6e:a2:df:ea:95:00:01:a9:14:36:
24:ba:ca:15:23:f7:f0:60:bb:e6:16:89:2d:1a:4a:cf:00:80:
6d:aa:af:48:b9:da:af:40:c6:a0:82:e5:e0:60:18:fe:35:b4:
43:ad:c4:cc:1d:dc:ab:ca:a9:18:f8:6e:d6:1f:cb:53:46:0a:
47:8b:2c:61:44:34:53:93:1a:00:e2:49:01:a4:c8:99:33:62:
90:74:f7:96:2a:c7:0d:14:7b:c1:50:66:7c:ef:ff:2d:fa:47:
08:52:9d:15:ec:b6:b3:cb:64:fb:6a:83:4d:13:1a:c1:61:20:
82:00:d9:45:41:00:f6:70:89:fd:c9:6d:37:2f:2d:22:42:8c:
47:22:f0:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org