Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/KbUJ34puf7gHSkW4fPIzV67pEuo.roa
File: KbUJ34puf7gHSkW4fPIzV67pEuo.roa (raw, json)
Hash identifier: FJSao2Ighjznkh91U+0M9a7cU7KpviY8CnJ7kp8fjzI=
Subject key identifier: 29:B5:09:DF:8A:6E:7F:B8:07:4A:45:B8:7C:F2:33:57:AE:E9:12:EA
Certificate issuer: /CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Certificate serial: 0192D777F95562EB8BA7CB4A825B3CDE38B8
Authority key identifier: B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/KbUJ34puf7gHSkW4fPIzV67pEuo.roa
Signing time: Tue 29 Oct 2024 08:50:16 +0000
ROA not before: Tue 29 Oct 2024 08:50:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208006
IP address blocks: 45.82.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d7:77:f9:55:62:eb:8b:a7:cb:4a:82:5b:3c:de:38:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Validity
Not Before: Oct 29 08:50:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29b509df8a6e7fb8074a45b87cf23357aee912ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fd:19:d5:13:74:da:0b:4f:af:74:d7:cd:59:
98:df:cd:2b:10:1c:50:22:d3:53:25:4a:03:da:25:
22:f6:7c:8a:7b:44:f5:93:24:55:82:45:bf:20:18:
ff:12:47:e6:2e:4d:b3:5c:19:aa:b9:3f:7a:65:80:
3b:11:21:6e:35:75:ef:84:6c:f9:c1:61:6b:97:0e:
41:0c:3a:a7:d0:2f:c2:b6:d9:e8:f7:a7:ef:c6:07:
ec:1b:ca:43:38:51:ab:c5:1f:c7:d0:7a:9a:23:2e:
44:2e:e1:4d:ec:40:70:ce:8c:67:52:50:39:88:59:
25:1e:9a:cc:fe:48:b5:32:57:6e:da:db:38:21:82:
d4:18:0c:6d:fa:93:15:a0:7a:c2:67:b4:c2:33:41:
c9:96:f2:f1:e3:cb:c6:38:c6:ed:3a:06:d5:ca:6c:
83:61:a2:e0:de:ab:aa:b1:c7:45:3b:0a:58:4f:bd:
ac:56:bd:a2:e2:4d:b6:03:fb:b6:8f:1a:b0:9e:77:
ed:64:5d:76:f2:64:3e:69:af:32:fc:45:ea:76:9a:
d5:2b:75:12:8a:9f:65:64:cd:50:b0:af:b1:78:8a:
c0:f5:cf:af:4b:08:b6:8a:f9:39:28:f4:85:cc:ca:
e0:9d:7f:6c:c7:9a:05:4a:e3:2c:78:f5:fd:cc:b9:
ca:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B5:09:DF:8A:6E:7F:B8:07:4A:45:B8:7C:F2:33:57:AE:E9:12:EA
X509v3 Authority Key Identifier:
keyid:B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/KbUJ34puf7gHSkW4fPIzV67pEuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.136.0/22
Signature Algorithm: sha256WithRSAEncryption
87:4a:98:87:fe:4a:92:a8:2d:59:7e:bb:89:f9:d7:70:71:66:
20:e1:27:00:b6:4c:57:ce:96:75:1f:b1:4e:c0:69:ec:e7:7b:
0a:3d:53:fb:f2:c5:70:df:8d:21:96:bd:a8:bf:f3:08:f4:c9:
b7:5b:03:5d:33:59:e6:ba:90:96:31:aa:1a:a7:35:4a:72:6b:
c5:71:88:bd:e5:bc:82:a2:53:fe:21:25:ee:3d:f7:da:80:c8:
e7:e8:ac:19:2c:d1:3c:76:85:96:71:a8:5c:1b:3b:b2:73:a4:
68:7c:eb:66:01:2e:8a:56:9e:0f:4f:83:c3:c5:df:e1:94:d8:
ba:4a:34:6b:b7:be:54:30:2b:0a:b7:f1:09:90:49:3e:fd:10:
f9:02:aa:8e:63:75:84:24:64:02:0d:de:35:44:8b:80:f1:ff:
fa:8a:30:c9:66:2f:0d:17:1c:fa:aa:c1:11:e8:79:17:a2:f5:
ef:b4:b2:00:04:61:e0:40:4f:e9:37:74:cd:1b:ab:ba:58:6f:
e9:ec:a6:73:f7:ae:14:ab:22:97:f9:83:8f:7d:9b:31:ef:ae:
15:fe:c2:36:3f:49:5b:51:2d:b1:79:92:c0:c3:ae:ad:0f:de:
e8:07:c0:72:0b:46:e3:db:df:f6:85:a7:b8:a4:f0:ad:0d:3a:
ae:48:5c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:35 2025 by rpki-client