Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/_Q8a0UlDg8UjDk1XU-y-ww-oluU.roa
File: _Q8a0UlDg8UjDk1XU-y-ww-oluU.roa (raw, json)
Hash identifier: TdWmMfC4soq372LOpAMIox4VDeZrq6CROg1keKw3P6A=
Subject key identifier: FD:0F:1A:D1:49:43:83:C5:23:0E:4D:57:53:EC:BE:C3:0F:A8:96:E5
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 01938AA2DFF10D572E6DB9B3AF3B0159A416
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/_Q8a0UlDg8UjDk1XU-y-ww-oluU.roa
Signing time: Tue 03 Dec 2024 03:49:10 +0000
ROA not before: Tue 03 Dec 2024 03:49:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 45.149.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:8a:a2:df:f1:0d:57:2e:6d:b9:b3:af:3b:01:59:a4:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Dec 3 03:49:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd0f1ad1494383c5230e4d5753ecbec30fa896e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b5:5f:63:d8:db:ef:b2:b6:7e:bb:33:76:64:
ea:55:d2:58:cd:cb:7f:48:83:61:68:53:30:89:3a:
26:cf:d0:83:e6:88:23:8e:40:74:de:e0:3f:12:40:
40:c0:46:63:5e:d5:45:94:48:c8:cc:b2:2b:dd:4e:
c8:07:c3:d2:4d:9e:19:56:27:57:e5:9b:27:c6:5e:
c1:e3:fe:fa:bd:6a:b4:ba:4d:45:2d:c6:2f:ee:03:
12:36:28:47:03:38:48:85:a2:61:46:54:ed:f9:75:
93:bd:52:98:77:2c:f9:f7:68:7f:b4:77:fb:83:cf:
cb:5e:1e:eb:81:54:5e:ed:f4:54:f2:57:7d:4d:0a:
d3:79:0f:be:a2:7a:5c:db:9b:95:98:aa:7e:2d:a7:
15:6b:0b:31:93:0a:ab:25:e7:e1:12:95:58:00:ed:
a6:14:2b:b5:7a:04:a4:53:ca:c9:92:54:ee:dd:af:
30:83:6c:83:0d:8b:d7:ba:b1:7b:a6:54:4f:db:bb:
d1:f8:da:14:3b:35:74:7d:4c:d4:9a:5c:51:f3:66:
4d:cb:2f:03:a6:ad:47:74:67:5a:09:ca:55:63:96:
3e:fc:4e:80:77:b9:de:78:62:f2:14:50:32:a1:5d:
dc:58:93:0e:49:61:2c:a7:af:db:54:23:33:b5:a1:
ed:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:0F:1A:D1:49:43:83:C5:23:0E:4D:57:53:EC:BE:C3:0F:A8:96:E5
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/_Q8a0UlDg8UjDk1XU-y-ww-oluU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.63.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b7:cf:54:0f:25:45:8d:7c:2b:ca:86:cf:80:b4:6d:36:e0:
ff:fe:95:11:23:26:d8:af:7c:95:fe:ea:e3:75:87:3c:46:53:
20:66:03:fd:2b:74:4d:93:57:54:d7:d5:b5:43:53:ac:b0:bd:
93:ef:59:b5:b7:b5:e1:50:c0:ea:82:96:54:f3:36:08:02:63:
f2:2b:ba:48:ae:4c:81:2b:93:5c:00:c6:b4:05:ee:ba:1a:4d:
12:40:dd:8f:db:0a:d9:a0:48:37:a0:e0:77:46:8b:fa:41:36:
43:8b:37:70:1d:09:7c:65:00:8f:c5:90:4e:b8:aa:83:24:7a:
14:c9:32:94:85:37:0d:50:4b:9b:18:f5:67:63:3e:16:5f:1d:
44:97:02:14:2a:0e:ba:23:db:48:48:a9:e1:7e:09:ad:a5:ab:
6b:7e:cd:e0:c5:a5:d4:61:d0:e3:51:bc:6c:9a:5d:bb:9b:22:
60:6d:c4:55:04:12:24:12:83:18:d1:9e:6a:7e:b4:15:66:be:
ee:25:44:92:89:67:28:59:47:02:b2:35:6b:2f:c8:a5:23:1b:
26:f0:8e:16:8c:86:45:10:0a:c6:39:82:50:f2:4f:65:6d:0f:
37:1e:28:bc:81:23:ef:8d:79:41:1a:a2:07:a5:66:27:93:c4:
c0:96:f8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:30:32 2025 by rpki-client