Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/PhpwAs9tvJSMx4OG2y3ImTme0OE.roa
File: PhpwAs9tvJSMx4OG2y3ImTme0OE.roa (raw, json)
Hash identifier: RDO3G2U72PCfcUie5VYPPhhxQHR20BzaDT6ChKNCh2w=
Subject key identifier: 3E:1A:70:02:CF:6D:BC:94:8C:C7:83:86:DB:2D:C8:99:39:9E:D0:E1
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 019371A180EF4F0240A48A3167798FE139EC
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/PhpwAs9tvJSMx4OG2y3ImTme0OE.roa
Signing time: Thu 28 Nov 2024 07:17:09 +0000
ROA not before: Thu 28 Nov 2024 07:17:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.242.0/24 maxlen: 24
213.220.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 07:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:71:a1:80:ef:4f:02:40:a4:8a:31:67:79:8f:e1:39:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Nov 28 07:17:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e1a7002cf6dbc948cc78386db2dc899399ed0e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:75:5a:b0:28:7a:7b:f8:96:ec:be:0d:98:9c:
fb:b1:fe:47:a5:c0:77:c6:0a:da:f1:aa:59:ea:1f:
2f:1a:a9:bf:c7:d5:3f:34:5d:2b:bb:12:ff:fe:08:
8f:64:05:44:60:52:ce:d0:1b:95:d9:7f:1c:32:f2:
b5:e4:7f:53:d1:f5:46:49:38:63:91:b3:41:04:1b:
7c:a1:64:6f:5a:0e:8b:b3:df:fa:af:9a:b9:bc:1b:
b0:2a:3a:50:32:02:7b:14:ac:5d:9c:0b:62:bf:11:
c0:a9:c9:9b:51:d0:3c:66:f1:b0:5c:0c:07:a5:02:
07:e9:11:28:ff:4b:e5:2a:86:17:36:ee:df:cf:3d:
34:61:47:33:91:6d:7d:a2:67:91:86:a8:0d:8e:bb:
8b:db:46:9a:bd:12:d1:18:ed:14:a8:16:45:bd:ef:
38:c4:7a:8b:b4:af:d6:ec:4f:cc:de:72:69:29:93:
40:6e:62:fb:40:c7:a7:3b:5b:cf:df:f4:01:2e:a7:
16:e1:62:98:11:ba:38:36:17:7b:f1:3d:dc:a8:23:
96:29:43:f0:14:e5:f5:74:ff:de:44:ae:dc:80:41:
65:2b:6d:dd:54:e8:1a:83:e0:a2:e3:a5:46:76:14:
85:42:e5:11:d1:cc:53:e2:f8:37:5c:bf:ba:14:e6:
fa:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1A:70:02:CF:6D:BC:94:8C:C7:83:86:DB:2D:C8:99:39:9E:D0:E1
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/PhpwAs9tvJSMx4OG2y3ImTme0OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.242.0/24
213.220.58.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:88:f1:46:5c:ec:6e:6a:57:a3:e3:fa:2c:e1:de:5c:69:07:
78:d2:27:e3:4f:a2:97:31:68:f2:a3:14:6a:65:00:f9:48:65:
d3:c7:93:2f:59:85:af:9a:34:02:ce:86:b7:2a:9b:e3:32:57:
2b:36:05:a3:8e:f2:26:71:c6:8a:36:77:28:37:6b:26:83:fb:
fb:6b:86:d3:64:34:f6:35:97:30:01:ff:26:c1:eb:3d:ed:33:
52:67:56:2f:9a:c6:50:45:6d:21:34:51:53:46:96:5d:06:ca:
6e:33:89:90:da:5f:0f:10:ad:f3:12:3a:92:4c:04:77:8e:af:
88:a8:6c:3d:88:38:b6:89:a7:94:ac:9d:2f:42:59:09:1d:07:
43:f1:d3:67:82:7f:a9:1c:fd:c5:62:d4:8f:78:47:8c:9e:30:
bb:ed:03:b2:87:52:13:0f:70:38:ac:b2:1a:06:c8:b0:3f:5d:
b4:df:67:68:30:95:b9:aa:3e:fa:1e:95:03:11:2d:90:80:c4:
e6:82:94:ce:4b:ff:80:86:03:33:48:cf:69:89:19:f2:95:23:
3a:5e:0f:31:60:ef:58:21:51:6d:19:ca:a1:f6:27:d1:7a:e5:
20:de:86:0d:fd:aa:af:aa:09:e0:ac:26:a0:ad:e8:23:17:4b:
0a:95:ec:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:16:44 2025 by rpki-client