Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/HUeEa3p2Y_ygu7ttE4gLM4Is2pQ.roa
File: HUeEa3p2Y_ygu7ttE4gLM4Is2pQ.roa (raw, json)
Hash identifier: UcfERG3poOuSzs0r92hRdn4uGJNa98RGel/2PBMcjvg=
Subject key identifier: 1D:47:84:6B:7A:76:63:FC:A0:BB:BB:6D:13:88:0B:33:82:2C:DA:94
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 019248D3E0D13A44219AB08BD111FB94C051
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/HUeEa3p2Y_ygu7ttE4gLM4Is2pQ.roa
Signing time: Tue 01 Oct 2024 16:04:58 +0000
ROA not before: Tue 01 Oct 2024 16:04:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7046
IP address blocks: 45.147.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 10:23:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:48:d3:e0:d1:3a:44:21:9a:b0:8b:d1:11:fb:94:c0:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Oct 1 16:04:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d47846b7a7663fca0bbbb6d13880b33822cda94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:1b:a9:07:dd:53:02:17:2c:0a:15:a2:ea:
c9:c2:c8:e1:b2:16:b6:0f:73:d1:27:c5:b6:d2:b3:
df:02:eb:ac:72:0d:ee:f8:e8:90:d0:6d:2f:9f:7f:
02:5b:e0:b5:12:28:88:4f:2a:ed:16:b3:cc:7a:93:
3f:20:65:4d:bf:41:3a:b0:04:84:99:85:da:dc:22:
ac:fc:e2:d0:5c:ba:57:c4:d5:11:b8:52:96:73:4f:
ac:ef:61:b2:7c:7a:2f:19:e5:74:af:24:62:02:7c:
37:d7:71:cb:3f:8e:d3:05:00:ab:52:d4:4f:7c:5f:
ea:72:9c:b4:f7:e7:e9:f9:3d:25:c2:b4:7b:33:18:
60:9b:42:5b:4a:46:2a:84:23:23:2f:30:de:fd:a5:
48:bc:d3:e9:19:44:a2:f6:9c:b0:7c:19:d9:4b:a4:
a6:1e:47:2f:42:f2:0a:63:9c:8e:6f:60:c6:eb:6f:
75:1a:c0:89:55:7d:75:f8:39:3a:98:ad:d4:72:04:
1e:22:46:72:80:d4:3d:c7:0f:35:81:01:9c:6e:e3:
2a:56:cb:5f:8c:d6:29:0d:53:8e:da:75:24:ea:50:
1c:b6:cc:50:32:39:6c:dc:99:b1:a2:d8:c8:90:d5:
d5:9d:c3:c2:11:a3:91:70:d7:20:55:d1:f7:ed:81:
09:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:47:84:6B:7A:76:63:FC:A0:BB:BB:6D:13:88:0B:33:82:2C:DA:94
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/HUeEa3p2Y_ygu7ttE4gLM4Is2pQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.159.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d6:d5:a4:92:36:60:ae:2a:a4:13:a4:e2:1a:3d:4c:2f:fc:
75:19:f8:b9:c6:16:3c:62:48:7a:3f:0e:08:69:8b:9e:a1:e8:
e9:65:24:fe:b8:a8:6a:5e:b8:92:24:ba:6a:24:35:21:dd:83:
f0:7e:9c:5c:58:d5:a5:97:be:db:fc:3c:0d:be:b5:fe:b4:8b:
f5:8b:a3:ea:52:7a:f7:35:3b:ba:11:a8:e7:ea:05:3f:a7:79:
3a:71:93:0e:2f:6b:49:30:63:6b:a9:3e:2f:29:ad:92:b5:56:
f7:29:d1:86:c9:2c:41:2b:8a:61:89:de:29:71:bf:97:6e:2d:
00:4e:81:71:0a:d8:07:a5:fe:05:b2:a0:31:1b:dc:a2:24:2e:
c8:2e:3f:93:ad:59:46:d1:f9:65:39:10:a5:55:73:03:89:f8:
5f:db:6d:ff:47:7d:c4:09:ae:c9:da:07:e2:ff:1c:85:a0:cb:
aa:fc:88:ce:5e:94:c4:d2:79:59:70:5c:72:88:6a:1d:e0:10:
c5:1b:89:54:d0:ad:ae:8f:80:a4:3b:70:bc:b9:b1:d8:d9:b6:
95:d7:44:ec:0e:a8:52:7b:57:0d:8d:b0:f1:b1:0a:f1:b7:24:
28:90:5a:fa:3a:26:ab:6b:f2:99:bd:be:dc:1e:68:6e:de:27:
8f:de:8d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 13:32:51 2024 by rpki-client on console-ams.rpki-client.org