Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TaUQ612wy-A74vTw1Vg0kxqOLX8.roa
File: TaUQ612wy-A74vTw1Vg0kxqOLX8.roa (raw, json)
Hash identifier: KCK1GL0C8BXhPX4uTzYLA7oEMCJtI7Kc+eNfy2q4+S4=
Subject key identifier: 4D:A5:10:EB:5D:B0:CB:E0:3B:E2:F4:F0:D5:58:34:93:1A:8E:2D:7F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01913BDB79018EFD5DA99F842273B7BCFA80
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TaUQ612wy-A74vTw1Vg0kxqOLX8.roa
Signing time: Sat 10 Aug 2024 10:35:24 +0000
ROA not before: Sat 10 Aug 2024 10:35:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 45.9.117.0/24 maxlen: 24
45.131.215.0/24 maxlen: 24
185.155.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Sep 2024 06:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3b:db:79:01:8e:fd:5d:a9:9f:84:22:73:b7:bc:fa:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 10 10:35:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4da510eb5db0cbe03be2f4f0d55834931a8e2d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ed:9a:14:de:a5:7a:24:bc:1a:ab:6c:30:fb:
ea:94:82:17:84:2d:6f:0a:09:f3:cf:cc:8f:5e:0c:
54:3e:94:60:82:8b:8d:98:d6:e7:64:15:3d:d5:f9:
a0:ad:c6:b2:24:d7:32:0c:47:fe:12:25:cb:92:59:
30:33:4f:25:37:df:50:8b:cd:02:81:d5:1a:6a:03:
f0:13:cc:89:ff:73:f7:0e:99:7b:d2:bb:e0:9c:7e:
73:43:04:42:90:cf:16:5d:ff:fd:e8:bc:89:5f:34:
5f:01:05:d2:61:e2:4d:b1:5b:da:b7:5d:7c:4b:99:
3f:56:61:1c:58:3b:bf:06:27:85:d3:b3:81:fb:5a:
00:73:cd:16:cc:c1:75:f6:d5:76:89:09:49:ff:90:
94:8e:61:24:3a:83:34:0e:a3:01:e1:75:6e:60:d0:
51:81:62:5c:0b:b2:31:2e:f6:9c:aa:a8:45:38:a0:
cd:ee:e1:90:cf:c5:8b:ee:86:4c:2e:41:02:23:dd:
fc:6c:3f:ad:dd:d0:ce:1d:fe:d6:9b:32:2d:94:37:
65:a4:62:d1:95:09:28:50:c9:05:ec:21:34:d8:1c:
43:e8:55:58:28:b0:a4:ca:ad:56:15:89:45:1e:a7:
ad:0f:d4:05:db:b3:88:eb:ed:fa:fa:2d:fc:02:b5:
d0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A5:10:EB:5D:B0:CB:E0:3B:E2:F4:F0:D5:58:34:93:1A:8E:2D:7F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TaUQ612wy-A74vTw1Vg0kxqOLX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.117.0/24
45.131.215.0/24
185.155.200.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:bd:f4:98:dc:6b:3f:14:b1:f5:f5:eb:7c:d7:6a:41:61:0f:
f7:24:8c:b1:08:62:fd:e7:05:18:23:88:28:d8:a5:fb:45:f8:
d4:29:e6:6b:7f:aa:1f:67:69:b1:bf:4d:49:f8:05:5c:aa:e5:
f0:85:40:c9:d4:d7:10:59:b6:d8:24:70:82:8f:7c:96:df:52:
68:60:ce:51:7f:52:5f:13:dc:fb:db:5a:d5:09:03:a1:ed:f0:
ca:10:db:a4:ed:fb:d2:f2:06:5c:da:31:bb:f5:71:73:c3:e2:
6c:a3:fe:66:78:f1:9a:f1:e4:a2:99:61:d2:27:54:12:ef:78:
9c:60:82:18:d1:6e:9a:45:10:66:aa:b7:35:0f:c0:7e:45:e3:
c4:9d:e4:e3:b9:07:b5:71:79:a7:2d:ec:ba:f4:a4:34:31:47:
2e:84:c2:14:25:17:34:25:65:a7:b6:45:77:a8:fb:a4:0e:b7:
a1:e3:87:71:fa:86:db:5c:78:88:5f:dd:79:9e:42:e4:71:53:
ac:a6:90:cc:1d:6d:a4:58:40:46:13:e4:6e:22:40:e8:38:bd:
82:98:e5:70:90:b5:24:e6:98:df:23:ee:27:a1:8c:9b:aa:e0:
a7:a5:ab:0e:27:4d:01:46:1c:03:ed:1f:26:7e:13:aa:12:46:
71:1b:89:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:56:27 2025 by rpki-client