Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ojwR1hoZ3lTr0ec_29o8d9Glo2Y.roa
File: ojwR1hoZ3lTr0ec_29o8d9Glo2Y.roa (raw, json)
Hash identifier: XgKTkK8yiuFUuJmaH/nLfJ7Z9sbZV1DYz8COyWt3MvU=
Subject key identifier: A2:3C:11:D6:1A:19:DE:54:EB:D1:E7:3F:DB:DA:3C:77:D1:A5:A3:66
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018F70F9E9505174962DE9E2F7CC006E2A29
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ojwR1hoZ3lTr0ec_29o8d9Glo2Y.roa
Signing time: Mon 13 May 2024 08:02:57 +0000
ROA not before: Mon 13 May 2024 08:02:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 131642
IP address blocks: 45.12.62.0/23 maxlen: 23
45.12.62.0/24 maxlen: 24
45.12.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 08:36:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:70:f9:e9:50:51:74:96:2d:e9:e2:f7:cc:00:6e:2a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 13 08:02:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a23c11d61a19de54ebd1e73fdbda3c77d1a5a366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ee:d8:82:5d:8b:c4:93:c5:a5:55:a5:6e:08:
5c:68:81:e0:7a:35:c1:69:99:42:e5:d7:c5:76:d0:
6a:f0:4b:8a:3c:16:d0:ae:04:ee:27:35:f4:bc:0f:
ea:5b:9d:3d:de:d5:5d:16:d0:ad:7b:39:54:0a:ca:
3d:66:a4:90:b9:c2:95:99:29:b1:3c:04:db:40:f7:
20:e3:d2:7b:44:42:cb:c0:09:8f:27:4a:e1:29:3d:
09:c1:34:1c:85:19:ca:4d:78:ea:7d:92:b0:75:b8:
bb:e3:6d:54:14:b6:ad:4d:1f:d0:e4:95:62:e8:0b:
61:3b:5c:92:76:3f:ac:a4:d9:5d:9f:26:39:db:d2:
3c:79:6d:b5:ba:e1:77:d8:cf:fb:fb:6b:c1:e8:56:
18:3b:3d:3a:86:c8:48:4c:77:a3:ae:65:83:7a:30:
7b:89:04:64:3f:a3:32:c2:06:e5:10:07:b2:ef:6e:
bd:17:bb:d2:6b:8d:52:18:21:14:05:fb:e0:94:4b:
df:9d:e2:8e:00:77:ad:af:bf:4a:83:f8:d3:95:d7:
0b:2d:02:0c:3b:43:a5:f9:d6:04:17:59:a1:b3:4a:
d2:5e:73:ca:1c:c6:b6:e4:3a:ca:99:e8:4a:0f:ab:
f6:53:7d:d0:5d:9c:b4:ff:4d:ec:97:1b:4b:60:58:
0f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3C:11:D6:1A:19:DE:54:EB:D1:E7:3F:DB:DA:3C:77:D1:A5:A3:66
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ojwR1hoZ3lTr0ec_29o8d9Glo2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.62.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:01:ef:36:7f:27:70:6d:f8:01:3e:54:f6:4f:83:fb:0e:21:
ca:bb:6d:50:f9:b4:8c:70:e2:52:9c:fb:52:6d:f9:48:bf:e8:
b8:42:bd:20:e8:09:af:79:e4:53:72:c5:f5:9d:e2:ec:fd:54:
15:f2:f2:56:2b:35:cc:09:18:c1:0d:cf:2c:6e:42:e0:1c:d0:
f2:7a:2d:58:47:75:05:85:06:17:6b:42:92:99:40:80:45:4f:
4a:eb:23:4f:a0:18:b4:0d:01:d6:11:c3:62:5d:64:16:1d:45:
c2:27:14:23:f0:d5:b8:20:02:2b:f6:7a:55:46:4e:06:c4:85:
6a:42:a1:50:09:e8:7d:19:71:3c:0a:13:27:e1:4d:18:13:c9:
0b:1c:a5:4e:b2:d0:18:42:77:a7:43:b4:3a:6e:03:dc:0a:9d:
04:a4:b9:3b:c2:e8:64:e2:3f:4c:6e:3c:8d:01:22:22:14:97:
ec:d9:3a:65:1c:dc:68:16:ed:ba:aa:3b:e0:4d:0a:15:5d:b4:
22:84:6d:81:d8:29:3a:ff:e1:17:1f:92:ca:bb:1c:fa:1f:27:
6e:4d:87:7f:01:8d:75:91:4c:29:f7:6d:3a:1e:53:93:0d:bf:
f1:aa:8f:8d:37:79:39:4c:76:d3:f6:5d:c5:66:7b:84:5d:79:
78:a1:3e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:37 2025 by rpki-client