Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/7a940b-340a-4d08-afd8-53c5720cfbeb/1/Tvx7cCTAC987Nv7ckXDLxAJtr3c.roa
File: Tvx7cCTAC987Nv7ckXDLxAJtr3c.roa (raw, json)
Hash identifier: JfpcrrBXoUUYxizwEyIfOyVqvH7YfaPSA6sDBQP5CLc=
Subject key identifier: 4E:FC:7B:70:24:C0:0B:DF:3B:36:FE:DC:91:70:CB:C4:02:6D:AF:77
Certificate issuer: /CN=24afeae83d2d5e2ea77ac6147f75837b27f74349
Certificate serial: 0192C415D165434B46F06A608BEA31B0DA41
Authority key identifier: 24:AF:EA:E8:3D:2D:5E:2E:A7:7A:C6:14:7F:75:83:7B:27:F7:43:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JK_q6D0tXi6nesYUf3WDeyf3Q0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/7a940b-340a-4d08-afd8-53c5720cfbeb/1/Tvx7cCTAC987Nv7ckXDLxAJtr3c.roa
Signing time: Fri 25 Oct 2024 14:30:17 +0000
ROA not before: Fri 25 Oct 2024 14:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213373
IP address blocks: 45.141.56.0/24 maxlen: 24
45.141.58.0/24 maxlen: 24
45.141.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c4:15:d1:65:43:4b:46:f0:6a:60:8b:ea:31:b0:da:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24afeae83d2d5e2ea77ac6147f75837b27f74349
Validity
Not Before: Oct 25 14:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4efc7b7024c00bdf3b36fedc9170cbc4026daf77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:57:df:0d:de:75:1b:d2:56:ad:df:ef:26:bc:
12:14:1d:b8:c0:cd:68:64:fa:5e:ab:d2:db:9c:9d:
cb:b3:68:b6:b1:f8:b5:2a:66:7f:09:ca:2d:41:82:
77:e2:98:ec:c7:77:48:f7:5e:c5:bb:65:64:3e:69:
dd:4b:a0:70:6b:84:cb:23:dc:65:98:b3:22:31:dc:
58:28:12:c1:53:ad:10:02:82:f7:eb:b6:9b:c7:1f:
8d:43:a2:7b:1e:1b:00:ba:a1:57:df:e1:d9:9b:7e:
a9:64:8c:bd:52:35:fa:59:59:00:28:55:cb:e4:d0:
59:28:df:21:11:3c:5b:3f:72:8f:3c:0a:2a:2e:4f:
f3:dc:8c:47:67:41:02:cc:f4:fc:92:a7:01:d7:68:
04:46:66:b6:36:a6:f6:29:93:c0:c3:11:0c:b5:e7:
ff:38:e3:1d:7a:4e:57:73:42:ca:6e:12:05:cc:0a:
67:38:cc:ff:c7:27:92:87:42:6c:a6:ed:f8:25:04:
b5:db:3b:08:55:0c:94:2a:10:29:e0:d1:50:14:d9:
bd:e0:f8:cc:09:f8:36:29:92:a3:1b:15:d8:74:a6:
a8:51:20:f5:3a:05:f7:b9:78:d6:3c:0d:bc:e9:38:
4e:eb:06:86:6e:2c:a7:fd:0a:82:50:1c:2d:c1:46:
7b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FC:7B:70:24:C0:0B:DF:3B:36:FE:DC:91:70:CB:C4:02:6D:AF:77
X509v3 Authority Key Identifier:
keyid:24:AF:EA:E8:3D:2D:5E:2E:A7:7A:C6:14:7F:75:83:7B:27:F7:43:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JK_q6D0tXi6nesYUf3WDeyf3Q0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/7a940b-340a-4d08-afd8-53c5720cfbeb/1/Tvx7cCTAC987Nv7ckXDLxAJtr3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/7a940b-340a-4d08-afd8-53c5720cfbeb/1/JK_q6D0tXi6nesYUf3WDeyf3Q0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.56.0/24
45.141.58.0/23
Signature Algorithm: sha256WithRSAEncryption
03:7b:e3:37:39:5d:97:09:43:f0:e4:9f:11:d1:da:c4:ed:af:
27:53:9a:f1:a1:38:47:2e:d1:03:5b:e6:1c:f9:22:00:cd:7a:
ec:8b:c4:d1:a4:79:65:70:22:35:67:8c:be:a6:dc:c4:5a:48:
7e:6b:fc:69:3f:d0:73:b5:ee:52:4b:e6:cf:28:66:be:d2:e0:
b9:df:09:48:b8:41:af:16:8f:20:0a:f9:f8:51:13:58:0a:ae:
eb:ea:70:30:26:e2:62:3e:ed:92:ce:41:f4:69:fd:6c:4b:7e:
46:56:ec:57:b3:d6:f0:0f:bc:0e:78:6d:44:59:99:f7:2d:b0:
3d:20:47:b2:ca:0e:33:df:68:1e:08:07:e5:24:07:fc:f7:32:
e1:52:e7:14:30:58:a0:83:da:1c:02:ee:40:40:36:6b:ae:d6:
96:45:a6:18:6e:95:ac:79:d6:a1:2f:4d:77:4a:20:c2:67:e5:
c4:2c:78:3c:43:42:3e:7d:c3:6e:cf:9e:b5:73:95:07:b9:b5:
2b:5f:a4:2d:b5:b1:2e:c1:f4:5c:3e:fd:8f:d1:c2:f6:b1:34:
a1:fe:c1:46:ce:1b:4a:88:bd:86:a4:74:af:b6:be:1d:4c:68:
85:4c:28:91:9a:8a:75:bd:6a:9a:a7:88:da:83:7f:d1:df:7e:
b0:53:46:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:49:33 2025 by rpki-client