Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/yTG1HGe96lVROkg8NB6pCycCzNo.roa
File: yTG1HGe96lVROkg8NB6pCycCzNo.roa (raw, json)
Hash identifier: Uy2KuINZrZY9cFX9QCKS95rCI3vH9nbdSgMF7sU0uw4=
Subject key identifier: C9:31:B5:1C:67:BD:EA:55:51:3A:48:3C:34:1E:A9:0B:27:02:CC:DA
Certificate issuer: /CN=6228417361c1c406ae9a7257daa9fb0620782d35
Certificate serial: 018CC80158DC723CB6774826DEAAA375CB89
Authority key identifier: 62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/yTG1HGe96lVROkg8NB6pCycCzNo.roa
Signing time: Tue 02 Jan 2024 02:29:40 +0000
ROA not before: Tue 02 Jan 2024 02:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204856
IP address blocks: 45.129.93.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:48:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:58:dc:72:3c:b6:77:48:26:de:aa:a3:75:cb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228417361c1c406ae9a7257daa9fb0620782d35
Validity
Not Before: Jan 2 02:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c931b51c67bdea55513a483c341ea90b2702ccda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4b:08:62:d2:86:29:77:29:7b:96:4f:f5:9b:
63:c3:18:dd:05:13:ee:53:a9:a3:a4:5c:74:36:ef:
da:3e:77:e3:43:38:fa:8d:ec:ac:9c:88:bb:42:f9:
83:9d:ae:8d:c5:78:7b:97:f0:ff:ba:5a:9a:a8:a5:
72:44:4a:fd:d6:9c:7a:4a:e6:74:8b:db:5f:1b:f9:
6a:4e:30:cd:79:7e:31:2b:24:86:13:c6:27:43:0f:
20:56:32:af:64:4d:f9:d9:e5:e0:ed:74:42:0e:67:
24:21:1a:a1:c6:64:e2:4d:2b:f6:a7:63:36:cc:80:
3b:ca:df:75:fa:72:b3:ac:f8:e0:3f:6e:63:78:7c:
97:44:f7:69:18:50:ff:52:ae:53:42:99:7c:ff:ef:
dc:5e:14:fc:04:3c:d4:b3:c8:20:29:71:30:b8:05:
9a:88:9e:6d:15:a8:82:da:ab:ef:9a:fb:e0:7d:f7:
7d:77:75:eb:c3:0b:0b:c6:de:82:6c:ea:75:63:7c:
ee:d9:47:e0:40:42:41:70:56:6a:3a:a1:fd:bb:c1:
ce:b4:6f:d5:44:21:e7:3e:92:c7:9d:35:a0:c6:7e:
9a:78:83:80:9f:05:17:39:de:bf:4d:9a:1f:25:6b:
33:43:96:93:91:a7:37:3f:6c:e1:17:9b:8b:c3:57:
bf:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:31:B5:1C:67:BD:EA:55:51:3A:48:3C:34:1E:A9:0B:27:02:CC:DA
X509v3 Authority Key Identifier:
keyid:62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/yTG1HGe96lVROkg8NB6pCycCzNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.93.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:5d:9e:63:e1:47:6c:37:7e:48:6b:97:5d:47:98:aa:01:b3:
6c:07:63:2b:a3:d2:0d:fe:68:30:d0:06:89:65:83:99:97:61:
e9:9f:85:37:05:03:67:66:5b:f2:3e:2b:38:33:0f:4b:f0:af:
8e:70:2a:3e:01:e2:50:1f:27:bc:34:6e:fd:7d:71:17:29:a2:
e5:81:ec:bb:de:a5:1a:d0:98:90:e2:21:dd:78:30:b6:cf:46:
01:a4:43:9a:86:4e:1f:25:59:21:78:b1:66:76:3b:33:ec:80:
31:5f:68:ff:98:7e:f6:da:98:59:94:b3:c7:19:65:dd:85:e2:
05:be:e4:d7:61:bf:17:69:9b:22:a1:aa:43:8b:41:a3:bc:a5:
8a:d3:c1:fc:21:8c:4b:9a:db:24:f4:56:7a:68:dd:02:ca:ee:
da:98:95:22:1d:e5:f8:fb:0f:91:7e:aa:36:d6:fd:91:85:52:
86:47:d6:62:48:6e:44:17:98:07:43:cb:02:d1:5b:d7:18:aa:
62:dc:30:25:69:81:b6:28:90:66:ac:70:19:c5:66:95:21:45:
85:2f:ce:0e:9a:43:83:66:bb:25:b6:dd:83:e9:d6:1e:cb:f9:
90:73:78:73:b7:ae:7c:3a:86:32:2e:28:5b:ab:2f:c4:c7:eb:
87:51:37:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:20 2025 by rpki-client