Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/crTeYknS5rMy9rzvJbn-pB71Spg.roa
File: crTeYknS5rMy9rzvJbn-pB71Spg.roa (raw, json)
Hash identifier: AfYj8VMjhe6WdiYDVqvR7jsWp+uzki8DLynJTbgmyqU=
Subject key identifier: 72:B4:DE:62:49:D2:E6:B3:32:F6:BC:EF:25:B9:FE:A4:1E:F5:4A:98
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019088D5E8F323AAD95611DE97F9845D1B14
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/crTeYknS5rMy9rzvJbn-pB71Spg.roa
Signing time: Sat 06 Jul 2024 16:17:18 +0000
ROA not before: Sat 06 Jul 2024 16:17:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47436
IP address blocks: 45.147.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 14:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:88:d5:e8:f3:23:aa:d9:56:11:de:97:f9:84:5d:1b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jul 6 16:17:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72b4de6249d2e6b332f6bcef25b9fea41ef54a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ac:f1:60:d3:36:8b:a3:42:3f:38:f7:79:e7:
15:56:98:03:5b:53:96:5d:df:0a:43:53:9b:ad:2c:
d9:a8:8d:e9:7e:18:f8:f5:2c:f7:17:7e:4f:6d:52:
8f:32:73:9f:44:d9:37:7c:13:1a:f7:21:7d:7f:dc:
8e:08:40:d1:33:23:f6:08:77:f7:34:ca:91:76:90:
ed:5c:ae:b5:ab:a4:fb:15:97:10:85:35:35:f2:f9:
22:b4:47:14:1a:40:87:0c:c4:49:69:f3:94:75:d6:
40:e5:d3:c9:4a:60:0c:66:c0:cf:39:7c:27:81:a8:
be:0f:ff:4f:78:5c:6b:f6:61:6f:85:d1:48:0a:4b:
91:56:5f:90:58:5a:9b:3f:49:35:6d:a0:24:28:e9:
bb:36:95:59:f4:f0:b4:35:7a:49:01:a6:78:43:3a:
80:f8:26:6e:c6:12:a4:d6:e0:b6:22:72:0b:42:98:
28:ea:1c:27:57:d4:87:df:83:b8:70:c0:93:cb:40:
0a:42:fd:27:4b:37:1a:68:e1:81:c5:2a:f3:2b:22:
6b:07:cb:63:78:65:fa:f6:a8:b6:e1:e7:76:9c:3d:
8d:4d:cc:e7:7d:65:58:72:5d:96:9c:30:0e:e2:d3:
14:81:9f:ea:56:8a:c2:c9:72:49:ef:73:f9:a4:9b:
b8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B4:DE:62:49:D2:E6:B3:32:F6:BC:EF:25:B9:FE:A4:1E:F5:4A:98
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/crTeYknS5rMy9rzvJbn-pB71Spg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.45.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:7a:e8:a1:c7:8d:0e:b6:6d:46:fe:a8:2d:d4:c7:93:a4:24:
50:8a:58:bd:ac:79:bd:a7:04:f2:99:ae:6b:0d:3a:4a:9c:1f:
bf:73:e5:91:c3:c0:7b:d8:70:f2:28:52:65:bb:48:78:04:dc:
ca:7d:d5:d2:39:4f:93:e1:7e:80:87:ce:f7:76:80:25:52:c6:
c8:0e:64:90:42:0e:e5:74:02:2c:cd:61:4f:76:19:1f:f6:69:
be:63:ca:a1:20:09:dc:87:ff:5d:67:0f:e1:8f:f7:05:61:7c:
59:3f:0f:14:83:e3:c0:99:79:a0:e7:d7:fc:2a:3b:5a:fe:0b:
82:5a:60:7c:a8:58:26:6c:74:b4:e1:31:c8:f6:df:a1:66:90:
a4:fe:38:dd:60:d1:6a:c6:19:ac:fc:e6:78:fa:8f:7f:ce:7c:
55:72:07:b6:ab:dc:7f:c2:16:26:6e:8a:1b:11:68:ec:20:f3:
b5:25:b8:78:d2:65:d3:49:66:d8:67:57:20:b4:74:e8:28:85:
ef:66:e0:c7:f0:48:e3:e8:71:a2:cf:fc:55:e3:85:06:0c:58:
da:03:85:9b:7a:f7:8a:7a:a2:f0:f8:e3:76:2e:26:37:51:82:
b5:7a:e2:dc:25:4c:f9:7a:e8:4d:e0:ce:c1:13:37:32:27:83:
d4:60:48:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:41 2025 by rpki-client