Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/kPzjIUEf21SiAsbmdyBE9vGDg6c.roa
File: kPzjIUEf21SiAsbmdyBE9vGDg6c.roa (raw, json)
Hash identifier: Dz0DszAjghUNFpm1J311RWZBqKINJJo5pmY63Pfm3HA=
Subject key identifier: 90:FC:E3:21:41:1F:DB:54:A2:02:C6:E6:77:20:44:F6:F1:83:83:A7
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01904B304B3CB210D2A01F4E16BF63E3CADF
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/kPzjIUEf21SiAsbmdyBE9vGDg6c.roa
Signing time: Mon 24 Jun 2024 16:59:34 +0000
ROA not before: Mon 24 Jun 2024 16:59:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214787
IP address blocks: 45.142.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:30:4b:3c:b2:10:d2:a0:1f:4e:16:bf:63:e3:ca:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jun 24 16:59:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90fce321411fdb54a202c6e6772044f6f18383a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:61:17:7c:77:98:26:86:a6:ba:ec:98:aa:ac:
fd:11:07:27:73:3f:f3:cc:96:4d:68:ee:7c:64:8f:
fe:a1:2b:da:b5:68:48:3a:a8:4a:92:38:88:a9:4e:
0f:9b:16:93:cf:20:70:38:93:b0:bc:d6:2d:0d:fc:
29:81:e2:aa:3a:57:be:e0:1d:08:8e:3f:40:51:4f:
f3:46:fe:43:61:91:09:f8:77:48:56:9d:cc:d4:21:
84:d6:ab:e1:26:0a:c0:3b:8d:fb:61:c1:6c:62:9d:
a9:b8:a3:37:e7:49:8d:f8:fa:cd:6b:e1:57:10:48:
fc:51:76:f8:75:0b:11:78:fb:9d:7e:5c:04:af:20:
1b:a6:b7:9d:37:04:fd:24:45:72:29:66:33:22:eb:
01:c1:e7:e6:e6:bf:10:a7:1b:54:c2:30:ce:05:a4:
20:88:56:0b:1e:27:c2:92:a1:dc:8b:83:c1:76:51:
73:9b:f9:11:4a:19:9c:ec:47:ab:50:f2:8d:f1:c2:
b3:42:52:b0:2e:14:ab:a9:49:ee:d4:5e:07:78:d1:
50:04:9d:3f:20:7c:68:7a:d9:7a:79:f4:b3:9f:01:
a5:de:44:32:3c:c5:17:5d:38:65:41:15:f8:f7:7e:
0d:38:3b:98:81:84:27:b6:f5:0e:c7:a8:a4:66:48:
24:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FC:E3:21:41:1F:DB:54:A2:02:C6:E6:77:20:44:F6:F1:83:83:A7
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/kPzjIUEf21SiAsbmdyBE9vGDg6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.45.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:33:a4:cf:65:5a:29:a2:4e:aa:b9:a9:51:79:94:bf:56:16:
63:85:6a:eb:bd:7c:5e:d2:18:6e:79:fa:4c:5c:cb:99:61:73:
8a:fc:7f:c4:e1:c0:a9:54:5a:08:d3:99:a4:a7:ae:99:5f:b7:
3e:10:80:59:53:25:a9:3d:66:74:b9:b7:ff:b5:8d:bf:d6:d9:
0d:cc:a1:58:b8:76:d9:ba:20:5c:38:e8:c4:4e:8b:76:00:c1:
37:a5:3d:bf:cf:47:4d:55:a1:22:7e:fc:ca:de:57:ca:5e:d1:
8a:ab:3a:91:bd:19:ed:4b:f3:1e:9f:c5:be:fa:f1:e0:ef:da:
21:91:4a:20:7a:ac:a2:c3:79:7d:f4:10:50:e2:bb:e8:fc:45:
8d:a1:9c:32:8a:58:37:31:2f:ec:af:3b:77:68:cd:d6:e0:01:
04:c9:15:75:84:82:34:df:9d:6d:44:e2:4f:06:a8:89:a2:c0:
27:e7:b7:68:ea:39:1a:43:7c:b4:6b:2e:05:73:77:45:31:95:
3c:31:00:01:cf:df:bf:6e:89:e0:b6:21:55:80:23:bd:27:92:
97:d4:5c:9d:82:46:94:e3:dc:bc:28:58:dc:07:aa:da:7e:b8:
2f:30:94:08:20:10:8f:de:9c:48:f6:df:78:7a:e9:7e:f0:95:
f3:24:ba:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:39 2025 by rpki-client