Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/DAK478dbayfSmI4f5F2Eh9KXO6g.roa
File: DAK478dbayfSmI4f5F2Eh9KXO6g.roa (raw, json)
Hash identifier: 6tpNU2RogxHTnzCWAEUnqTxPithHMCvRWcXH0Zg8Mzc=
Subject key identifier: 0C:02:B8:EF:C7:5B:6B:27:D2:98:8E:1F:E4:5D:84:87:D2:97:3B:A8
Certificate issuer: /CN=5791bb1150beac5ea0c724f39d2ce7fccfc1546a
Certificate serial: 018CC94D7DA4CB73F8C36C955A607B237D77
Authority key identifier: 57:91:BB:11:50:BE:AC:5E:A0:C7:24:F3:9D:2C:E7:FC:CF:C1:54:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5G7EVC-rF6gxyTznSzn_M_BVGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/DAK478dbayfSmI4f5F2Eh9KXO6g.roa
Signing time: Tue 02 Jan 2024 08:32:28 +0000
ROA not before: Tue 02 Jan 2024 08:32:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44735
IP address blocks: 185.45.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:7d:a4:cb:73:f8:c3:6c:95:5a:60:7b:23:7d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5791bb1150beac5ea0c724f39d2ce7fccfc1546a
Validity
Not Before: Jan 2 08:32:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0c02b8efc75b6b27d2988e1fe45d8487d2973ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:35:25:5f:ed:e6:5e:ac:31:61:36:96:ce:4a:
7f:03:70:83:ed:35:3a:41:35:46:f2:72:b9:8c:32:
02:6f:e2:d8:56:fc:24:f7:c9:3a:4e:8f:5d:e2:b0:
84:df:b1:fd:e8:be:56:d4:98:45:c7:52:31:fc:06:
b3:9d:0b:39:ed:ff:f2:1b:23:51:ed:8c:15:19:5a:
10:97:52:71:16:d3:37:8b:cc:8c:aa:7b:75:27:13:
9e:cd:9b:67:c2:7b:34:4f:68:62:90:2c:4a:58:88:
b2:f1:c1:79:4d:2e:60:26:f6:08:a0:c2:2f:53:0e:
c8:14:7c:cb:dd:1e:ce:21:2a:3c:6a:df:94:fa:4b:
07:57:ba:6b:74:5d:b1:3e:28:1b:82:29:00:3f:5c:
c4:80:f1:c1:af:f7:b3:8f:b9:bd:cc:0e:89:c7:63:
6a:7d:ee:48:55:9d:18:e8:b9:cb:57:d5:8d:1d:2b:
85:39:4b:28:46:2b:4f:9c:7b:20:14:3c:2c:86:9b:
06:2a:9b:2d:4e:0c:a4:c5:fd:f7:3d:a4:00:fd:05:
e4:07:ea:b4:b6:3b:8d:f5:97:4e:a4:62:ab:5b:98:
f1:fc:6f:59:ce:72:21:b2:72:da:21:73:28:1d:81:
50:ef:15:63:5a:71:81:4d:9c:ee:80:eb:53:7d:0a:
88:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:02:B8:EF:C7:5B:6B:27:D2:98:8E:1F:E4:5D:84:87:D2:97:3B:A8
X509v3 Authority Key Identifier:
keyid:57:91:BB:11:50:BE:AC:5E:A0:C7:24:F3:9D:2C:E7:FC:CF:C1:54:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5G7EVC-rF6gxyTznSzn_M_BVGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/DAK478dbayfSmI4f5F2Eh9KXO6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/V5G7EVC-rF6gxyTznSzn_M_BVGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6e:b6:ae:5f:63:f0:7f:3b:83:45:2c:bf:26:57:fb:10:a6:
db:b1:e1:63:a5:84:97:3d:79:67:0d:9f:9d:3b:87:ec:0b:3e:
88:f6:56:fe:91:81:de:7e:6b:a9:e8:88:fe:fc:6c:49:d4:5f:
96:2a:37:2f:0e:cc:46:55:4f:51:97:fd:74:4d:38:63:84:e0:
4a:62:c6:9f:4d:cf:df:28:d0:89:59:78:82:bb:33:23:58:cf:
3e:21:45:4b:38:84:d3:cc:af:43:59:08:a2:fd:42:a8:b3:a5:
07:e0:61:bb:69:60:6f:c6:b5:5e:67:79:73:5b:b6:a8:43:27:
3d:3b:9e:84:5e:57:91:4d:df:e5:3b:cc:2a:d9:02:6b:0d:b1:
c3:ec:61:59:a2:2a:64:a6:9c:65:54:bb:4e:56:25:08:11:5d:
0b:55:64:ca:13:36:db:5e:57:ad:b9:c3:cf:53:cf:b0:a2:a3:
3b:c8:37:5f:68:62:73:74:68:14:69:39:d6:e8:4f:d4:e6:72:
d0:55:b6:c1:62:8b:63:40:f6:a2:1b:35:1d:06:01:6e:f4:dd:
9d:8b:66:61:ea:58:81:f2:4f:e4:2f:41:b5:85:ec:e2:80:05:
9b:be:1f:7b:84:25:0e:64:9c:c9:b7:a1:1c:cc:2a:42:91:a0:
21:a5:04:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:25 2025 by rpki-client