Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/YSAVUW68FsZUTw3NEn4oVTsDdqs.roa
File: YSAVUW68FsZUTw3NEn4oVTsDdqs.roa (raw, json)
Hash identifier: t7pPjk/cX1dURXH/aUDOqd2xp9MMU27o9T3HynnbcTw=
Subject key identifier: 61:20:15:51:6E:BC:16:C6:54:4F:0D:CD:12:7E:28:55:3B:03:76:AB
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018DD52638A84B3D2DC56666C7A151AB757D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/YSAVUW68FsZUTw3NEn4oVTsDdqs.roa
Signing time: Fri 23 Feb 2024 08:47:48 +0000
ROA not before: Fri 23 Feb 2024 08:47:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.8.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 20:35:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d5:26:38:a8:4b:3d:2d:c5:66:66:c7:a1:51:ab:75:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 23 08:47:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=612015516ebc16c6544f0dcd127e28553b0376ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b9:7c:b6:14:dd:6a:df:5d:1d:ee:75:cb:f2:
e4:df:cb:c6:55:ae:d2:7f:c4:37:2d:81:5c:05:12:
42:bd:57:c7:93:88:a4:58:b0:50:dd:af:54:46:bd:
c6:b2:5f:b9:95:d9:6b:20:0c:e8:33:f4:05:99:78:
f6:aa:13:6b:80:50:e4:5e:00:b0:bc:f1:d0:35:61:
25:79:13:09:3f:75:ad:14:e8:90:ce:ad:1a:7b:26:
6e:d9:95:3e:64:c8:64:4b:f9:49:2c:3f:99:d2:d7:
81:24:df:89:3e:7f:13:d3:aa:10:6c:4f:87:5a:bc:
d5:b3:30:31:04:cf:d9:51:d6:af:13:8a:13:1c:a1:
22:ec:d7:b0:99:8c:39:e1:a1:f2:fb:d3:2a:f7:ee:
98:47:b5:55:f8:c8:c6:a1:1e:64:a1:03:bd:95:a5:
cd:ff:21:e2:60:1d:cc:85:e0:93:51:d8:83:0d:2d:
fe:87:9e:c3:f9:46:03:b1:23:ad:fc:3f:cc:30:52:
d0:08:f6:65:4f:d0:af:ca:69:4f:a5:33:20:d8:cd:
99:04:e3:39:a5:fb:c5:af:f2:cb:1e:da:09:f0:be:
79:fb:8d:82:54:ec:92:66:62:61:dd:8d:8d:85:79:
80:da:d0:8b:91:58:e2:4d:04:9a:4d:db:58:45:8b:
36:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:20:15:51:6E:BC:16:C6:54:4F:0D:CD:12:7E:28:55:3B:03:76:AB
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/YSAVUW68FsZUTw3NEn4oVTsDdqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.187.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:86:34:ce:d7:11:a7:f1:65:ad:11:bb:db:94:25:61:ca:0c:
1a:2b:4e:e4:2f:ba:f7:f1:7c:16:d8:28:07:6f:ba:e2:c2:c7:
a0:9a:20:e7:1d:75:d7:2c:9e:b5:44:71:09:0a:5d:7f:b3:5d:
0c:0f:3d:e7:03:56:3a:0f:8e:c6:3f:26:f2:92:52:a7:74:21:
ef:ac:61:00:7e:05:79:62:5d:55:92:f3:ef:d0:b9:0e:f7:7f:
0f:a9:31:c6:08:bc:b0:ed:72:ac:6a:55:04:c3:71:c0:02:07:
49:65:b2:91:90:85:18:f9:d7:62:cf:7b:d2:a1:44:f7:59:93:
69:d9:13:f4:d6:53:60:51:6b:85:3a:a5:ec:94:31:0b:db:6e:
80:02:f8:f0:c1:0b:2c:46:00:74:59:f0:ad:cf:43:cf:de:40:
00:a8:71:d5:7b:6a:5f:40:7a:04:bd:e4:5a:92:e4:ce:32:5e:
7f:2f:b1:0b:82:f2:6f:b5:9f:ff:b0:fe:68:16:7e:89:99:55:
42:4f:f8:93:c7:0e:90:b0:a1:25:93:5f:6e:23:98:32:3c:8f:
e1:f2:3e:2e:a9:0a:ed:18:ec:b7:49:32:91:ce:18:9b:f9:47:
2c:d7:79:6b:9b:07:99:66:b8:9f:d5:1f:9f:cc:5c:b6:b7:08:
c2:c5:86:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:21 2025 by rpki-client