Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ca0f55-5774-45de-a6c0-782c780e7c1c/1/6TXujs-36tM2BoRe16B6CAWBXm4.roa
File: 6TXujs-36tM2BoRe16B6CAWBXm4.roa (raw, json)
Hash identifier: uA+vAim8iaySMCF53FFQR7CfArjaLvldwmkYXJD8+O8=
Subject key identifier: E9:35:EE:8E:CF:B7:EA:D3:36:06:84:5E:D7:A0:7A:08:05:81:5E:6E
Certificate issuer: /CN=74fb3a6b7fc28e8674e611cb098076f0e4c557c2
Certificate serial: 01918E4048305ABFEB2847A9F8CAA8583B9D
Authority key identifier: 74:FB:3A:6B:7F:C2:8E:86:74:E6:11:CB:09:80:76:F0:E4:C5:57:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dPs6a3_CjoZ05hHLCYB28OTFV8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ca0f55-5774-45de-a6c0-782c780e7c1c/1/6TXujs-36tM2BoRe16B6CAWBXm4.roa
Signing time: Mon 26 Aug 2024 10:34:22 +0000
ROA not before: Mon 26 Aug 2024 10:34:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209004
IP address blocks: 45.11.72.0/22 maxlen: 24
45.11.72.0/23 maxlen: 24
45.11.72.0/24 maxlen: 24
45.11.73.0/24 maxlen: 24
45.11.74.0/23 maxlen: 23
45.11.74.0/24 maxlen: 24
45.11.75.0/24 maxlen: 24
2a0e:6700::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:40:48:30:5a:bf:eb:28:47:a9:f8:ca:a8:58:3b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74fb3a6b7fc28e8674e611cb098076f0e4c557c2
Validity
Not Before: Aug 26 10:34:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e935ee8ecfb7ead33606845ed7a07a0805815e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:e7:40:d8:e6:d3:75:b2:59:2a:d7:1e:3e:
0d:0f:1e:c8:be:44:ad:25:25:2f:a7:7b:9f:af:7f:
a0:ac:cf:44:ed:17:16:76:0d:82:5c:b9:57:f3:ea:
8f:d1:a8:f4:a8:94:d5:a7:a4:eb:2b:90:13:77:32:
27:3b:5d:73:e1:76:5a:68:29:18:10:5c:b9:f8:c4:
d4:59:81:6c:f4:9f:bd:f0:29:c0:3a:3a:65:58:81:
d9:fc:75:13:af:7d:ae:2c:e4:4b:51:78:20:7b:e1:
ef:2e:24:28:31:92:ea:0e:6d:48:80:a7:6e:2d:a2:
24:63:5f:b2:7e:69:ef:1c:f3:5a:e8:14:e1:56:91:
03:f5:01:f5:50:38:cc:f9:5f:44:4a:d2:9c:8b:5d:
d3:28:b6:5b:7f:94:8c:64:a4:97:2f:5d:aa:4d:cc:
a0:73:da:8f:05:a8:8a:65:c7:20:2f:98:5d:07:4b:
ff:af:35:0b:2a:ae:10:f0:a8:8a:99:4c:49:60:3a:
d5:b0:f2:90:f4:6e:c4:56:6d:04:e7:df:4e:da:a5:
24:9e:72:b5:96:b1:ea:b1:bc:af:85:b2:12:3e:78:
9b:ea:62:55:91:54:8f:4d:30:a4:aa:f8:f6:85:3a:
25:c0:89:00:0e:f1:0c:4b:88:3a:ec:84:5d:f9:19:
42:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:35:EE:8E:CF:B7:EA:D3:36:06:84:5E:D7:A0:7A:08:05:81:5E:6E
X509v3 Authority Key Identifier:
keyid:74:FB:3A:6B:7F:C2:8E:86:74:E6:11:CB:09:80:76:F0:E4:C5:57:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPs6a3_CjoZ05hHLCYB28OTFV8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ca0f55-5774-45de-a6c0-782c780e7c1c/1/6TXujs-36tM2BoRe16B6CAWBXm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ca0f55-5774-45de-a6c0-782c780e7c1c/1/dPs6a3_CjoZ05hHLCYB28OTFV8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.72.0/22
IPv6:
2a0e:6700::/29
Signature Algorithm: sha256WithRSAEncryption
d5:ea:ac:5e:a4:44:67:b7:11:ab:8b:b1:37:b7:91:b0:d0:52:
1f:05:69:5c:30:3e:f9:65:ac:55:e9:fa:02:19:87:9d:7f:b5:
62:ba:d4:6b:57:b0:b1:11:9d:17:59:e3:2b:44:dd:c9:86:c6:
81:7c:99:3c:d0:17:9d:00:aa:75:50:f0:0f:14:8d:f0:e3:49:
af:1f:db:3f:dc:3d:40:9a:eb:b2:8e:a5:d9:18:bd:93:a3:34:
ea:5e:a8:47:35:cb:f0:f7:58:55:2a:42:26:f8:9b:c9:c7:1b:
00:0a:44:8c:58:55:ef:b7:38:47:79:40:7f:35:3f:96:86:e2:
8e:64:c7:08:81:03:bc:59:08:9d:78:69:89:24:ef:70:55:ca:
3c:86:b9:74:af:10:24:ea:f0:f1:f3:ae:11:9a:d9:7e:a6:1c:
0c:d3:7d:69:27:98:92:00:f4:b2:63:52:50:29:cc:30:6b:0c:
f1:fe:72:a1:f5:94:ad:37:2f:cb:fc:62:93:4d:b6:5a:81:e0:
dc:ac:f4:9f:6e:35:4e:a7:5d:30:ee:d1:7c:c3:ec:0f:09:42:
cb:40:28:ac:db:53:2a:03:bc:bd:6e:82:cf:63:9a:f5:7a:48:
34:ae:8f:41:83:29:56:72:fc:b3:81:d1:f0:6f:6f:06:fd:97:
05:0b:e8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:16 2025 by rpki-client