Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YndX9i2tBX1QOg6h60tDPI0btPQ.roa
File: YndX9i2tBX1QOg6h60tDPI0btPQ.roa (raw, json)
Hash identifier: Dohl8K+2nKjRTt5yD4EqTjLfuLwW9SN9inDH/Yp8qPA=
Subject key identifier: 62:77:57:F6:2D:AD:05:7D:50:3A:0E:A1:EB:4B:43:3C:8D:1B:B4:F4
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018D85188EE6A4B7C617AB2901213567609D
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YndX9i2tBX1QOg6h60tDPI0btPQ.roa
Signing time: Wed 07 Feb 2024 19:43:15 +0000
ROA not before: Wed 07 Feb 2024 19:43:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47436
IP address blocks: 45.147.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 08:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:85:18:8e:e6:a4:b7:c6:17:ab:29:01:21:35:67:60:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Feb 7 19:43:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=627757f62dad057d503a0ea1eb4b433c8d1bb4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1f:3b:76:03:66:66:16:80:c6:f6:da:3e:59:
1b:fa:5c:54:53:7d:28:2e:7d:70:65:e0:7b:72:3c:
17:ba:bb:d4:07:bf:46:ef:a6:07:36:ee:36:06:f5:
61:e7:5c:16:3c:48:3a:09:8d:15:c9:78:42:db:53:
6b:d0:96:b8:d9:67:76:77:82:c1:d7:d5:8b:b3:64:
8f:38:f2:d6:9c:80:13:cc:84:ff:6f:cd:39:65:4a:
d4:16:9a:98:02:ea:e7:5c:5d:e4:d8:34:dc:dc:da:
89:ce:96:dd:f4:8d:f4:79:cc:23:86:c1:0b:82:87:
20:0d:a3:f1:98:b3:78:f1:e8:1f:6a:c5:bc:b8:48:
ab:28:85:f3:23:cd:2f:ae:ee:c7:8b:8c:59:a4:f8:
5c:54:9b:d3:d2:c9:ce:61:2f:aa:1d:f2:51:c3:f9:
68:31:63:c2:2b:f8:6b:60:49:4d:77:18:eb:59:50:
ef:dd:77:bb:8a:77:01:50:c8:93:59:96:e8:95:cc:
da:7b:a8:9d:4b:65:8f:d0:ee:97:37:48:ac:ea:cc:
af:c3:6c:1a:94:79:3f:12:8d:a2:40:1d:b7:6b:86:
d9:e8:64:d9:8a:83:7a:82:5c:99:eb:91:d5:f5:22:
be:60:8c:90:71:81:1b:6e:b5:b6:87:be:0e:ca:d3:
66:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:77:57:F6:2D:AD:05:7D:50:3A:0E:A1:EB:4B:43:3C:8D:1B:B4:F4
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/YndX9i2tBX1QOg6h60tDPI0btPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.45.0/24
Signature Algorithm: sha256WithRSAEncryption
86:cb:86:70:5f:69:6f:59:d6:96:be:0f:0a:df:86:83:87:3c:
98:4a:6e:d1:bc:7d:e7:17:df:b3:33:5d:bb:3a:d7:4a:e1:ab:
b1:67:ad:6f:8b:39:f3:9c:26:68:ef:5d:aa:34:4b:7d:a0:1d:
03:67:95:0e:b9:eb:0c:a7:ea:36:44:ad:9e:66:19:d8:e6:ba:
22:ac:58:de:18:3c:0a:3d:be:d4:44:ad:e2:fa:46:5f:f0:3d:
2d:33:c1:ea:29:f7:a4:13:25:3c:0d:c6:0b:b3:92:90:cd:42:
8b:ca:26:71:c3:f9:a6:e8:c3:5a:8e:b0:7c:7e:82:3e:d4:b7:
55:ff:eb:16:17:f3:23:d8:48:20:a8:a0:cd:f0:b6:af:89:4e:
79:77:5b:2e:a4:fc:5d:1a:a0:41:16:8e:8b:16:1e:fc:d9:6f:
36:75:40:a8:75:fa:fa:75:62:ca:e2:e5:a8:0c:43:69:96:a9:
d2:99:8d:92:93:34:37:10:5b:72:de:7d:47:e9:05:8b:15:1e:
ab:7b:ca:23:69:5c:19:7d:c8:f9:ef:0a:df:64:51:29:40:3c:
ff:17:86:41:d5:4d:5e:6e:18:46:86:82:b6:36:c4:8b:a7:d4:
ea:43:cd:ee:77:54:ce:89:5a:98:99:c2:17:55:ba:fe:fc:6f:
d1:61:97:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:10 2025 by rpki-client