Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Iy5d8oc1d38GeH1O9BfhcHFFHas.roa
File: Iy5d8oc1d38GeH1O9BfhcHFFHas.roa (raw, json)
Hash identifier: RinrOzGpIWW8crNLJlzi9ENO9cs2IlfVkQ5vtKD/mrs=
Subject key identifier: 23:2E:5D:F2:87:35:77:7F:06:78:7D:4E:F4:17:E1:70:71:45:1D:AB
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0194258F96EBAA8A34ABA55BE4B6347912D1
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Iy5d8oc1d38GeH1O9BfhcHFFHas.roa
Signing time: Thu 02 Jan 2025 05:49:14 +0000
ROA not before: Thu 02 Jan 2025 05:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50809
IP address blocks: 45.158.46.0/24 maxlen: 24
77.83.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Apr 2025 06:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:96:eb:aa:8a:34:ab:a5:5b:e4:b6:34:79:12:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 05:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=232e5df28735777f06787d4ef417e17071451dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e0:b8:10:be:58:66:80:f7:b6:08:c9:9f:82:
05:7d:83:91:75:63:cf:b3:98:71:f0:db:b3:99:ba:
35:c3:da:af:0f:d3:d4:23:26:33:2d:ec:06:a7:e6:
a6:79:1a:ff:31:4a:e9:8f:6d:52:64:db:55:d0:9f:
43:4b:ff:47:86:52:d6:40:7d:fb:a9:94:e8:38:17:
e6:3a:33:54:ab:c5:9f:18:f4:73:ba:4d:1d:59:35:
48:e1:5b:fd:1e:b9:06:fe:d9:64:82:ca:30:37:39:
35:67:cb:30:2b:f1:97:d2:74:6a:b6:c8:8b:77:0c:
44:5d:08:c4:c6:bb:6d:84:81:c1:d5:6d:d7:9b:6a:
68:b0:7b:31:c1:11:83:32:72:58:72:ec:d4:73:53:
f0:44:ad:06:b2:7b:8a:55:46:00:92:d8:9e:43:d3:
6d:81:b7:82:b4:d5:ff:5a:ca:d9:f7:52:bd:09:86:
28:b7:dd:83:4e:a4:85:08:e1:a5:ed:fc:45:c3:77:
03:84:d4:76:74:b7:1c:53:e7:3b:f6:3f:ac:98:76:
ee:f7:32:78:c8:c1:57:ed:54:32:36:e2:24:d8:d9:
c3:5e:ec:d3:fe:e1:05:c2:0d:06:4a:b9:b8:70:2c:
eb:f9:34:7b:3e:71:c0:df:15:d5:51:38:2d:25:48:
7f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2E:5D:F2:87:35:77:7F:06:78:7D:4E:F4:17:E1:70:71:45:1D:AB
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Iy5d8oc1d38GeH1O9BfhcHFFHas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.46.0/24
77.83.73.0/24
Signature Algorithm: sha256WithRSAEncryption
12:5e:d3:0e:7a:27:0d:05:96:ac:a7:da:e8:b9:a3:df:9f:bf:
f9:85:86:65:cc:3a:20:64:b7:fb:90:70:ac:7a:ce:e1:3e:f8:
99:24:c7:94:df:60:fc:6f:5b:ce:e1:80:6b:ee:71:b6:67:83:
38:e6:62:03:c2:33:c6:e1:5d:40:d8:b8:c1:b1:0c:25:e2:ad:
2d:5e:81:00:eb:c5:b6:d2:50:3c:8b:67:29:a8:57:f7:20:6d:
ee:32:f0:04:73:a7:00:a0:6c:bd:14:a3:0f:19:92:d7:2a:d1:
b7:62:49:05:64:5a:9a:08:bf:7d:5f:1a:76:c8:e7:70:ce:c0:
25:75:dd:c8:6d:88:ad:88:d2:fd:c6:f9:0f:95:02:40:14:3d:
6b:9d:ba:67:16:87:c7:a5:31:8c:cd:2a:29:71:cb:b3:5b:59:
b2:cc:66:f5:e0:b4:46:1f:5a:f1:c2:a6:d6:99:11:cb:9e:94:
78:03:93:66:0b:35:28:29:fe:33:da:2d:c6:9f:f3:45:60:98:
0c:c9:2e:24:30:80:09:96:1b:b4:3a:71:e9:92:2d:ee:d8:6b:
8e:17:55:3a:5e:17:3f:e5:f1:d9:f1:21:86:d4:ba:44:d5:96:
3f:9a:09:f5:eb:f9:7e:70:03:fe:d8:28:8f:35:5f:65:41:53:
b5:9d:16:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:35:51 2025 by rpki-client