Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/P5ml6oTYVtZdF_FmcovtCuP6CRA.roa
File: P5ml6oTYVtZdF_FmcovtCuP6CRA.roa (raw, json)
Hash identifier: Mh3OUELYs9o+qXtxtv2qNBdVY2F7zUC9eSr40eNZLNI=
Subject key identifier: 3F:99:A5:EA:84:D8:56:D6:5D:17:F1:66:72:8B:ED:0A:E3:FA:09:10
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 01936DCA3A734E353165BAF85D9C7B0528C9
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/P5ml6oTYVtZdF_FmcovtCuP6CRA.roa
Signing time: Wed 27 Nov 2024 13:23:09 +0000
ROA not before: Wed 27 Nov 2024 13:23:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 45.158.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:ca:3a:73:4e:35:31:65:ba:f8:5d:9c:7b:05:28:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Nov 27 13:23:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f99a5ea84d856d65d17f166728bed0ae3fa0910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:03:97:de:14:58:e8:15:24:d8:bb:ff:1c:
a0:bd:9c:c8:69:dc:ee:09:c3:4d:cc:91:60:4c:e1:
90:8a:73:dc:48:e1:99:32:59:6a:6b:a2:1f:3a:50:
d2:7e:eb:8a:b3:11:62:55:bb:16:e3:b9:1f:20:b5:
92:0c:86:85:10:03:b0:92:7b:82:6f:12:03:db:4c:
9d:01:42:75:01:b5:93:c9:79:b9:60:b0:f7:24:0a:
91:0e:5d:9d:4b:bf:90:f1:91:52:bf:87:71:54:7b:
42:6c:db:8b:80:e8:cd:3d:39:40:43:11:2b:a3:51:
8b:ad:0e:19:58:d2:74:2b:99:19:93:9d:4b:46:bf:
fc:b9:92:f7:a3:69:88:76:67:4a:f4:e5:a3:cf:d9:
c3:73:65:45:66:73:dd:57:8f:80:46:6f:99:dc:88:
19:fd:9e:26:4c:64:64:4e:ec:4c:2d:16:2f:c6:35:
e1:d0:82:1b:05:e0:fa:c7:31:b2:5e:e1:82:76:bb:
10:f5:24:0a:93:bc:8c:a9:c1:35:58:81:2a:0c:e1:
1e:2e:79:e5:cb:1a:9b:9f:7d:19:c0:3f:cd:cd:2d:
03:ed:62:fe:14:56:95:c3:7a:b6:83:55:79:88:a7:
ed:86:b3:92:26:94:48:11:3c:9c:a3:be:1a:24:36:
09:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:99:A5:EA:84:D8:56:D6:5D:17:F1:66:72:8B:ED:0A:E3:FA:09:10
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/P5ml6oTYVtZdF_FmcovtCuP6CRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.88.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:7a:1e:1c:fa:29:62:ed:34:ae:b7:a9:dc:d6:40:5d:dd:28:
5d:8f:e7:f9:0b:68:13:e7:f4:57:03:fc:72:57:4c:e8:8c:ff:
16:98:19:60:49:6e:67:40:d3:f2:e5:06:28:f6:d0:ca:06:e9:
4d:92:ab:a6:c8:bf:d8:a5:ba:33:23:1e:08:5a:aa:39:18:da:
57:9e:a1:5e:12:9a:09:8c:63:44:60:ee:90:80:c1:fd:a8:e8:
ab:de:20:b2:f4:f1:fa:ed:84:54:50:a0:05:c0:93:da:ee:17:
17:af:00:1b:de:7a:c8:fe:50:e0:89:54:33:23:d0:c3:5f:a7:
92:8b:1d:85:d1:88:2a:0a:24:5b:ef:c5:e1:19:c4:e4:fe:97:
4a:a2:2e:94:2b:a1:e0:f7:54:dc:35:42:33:e9:9a:71:3e:5f:
ea:40:61:d6:c7:b9:5a:f1:e6:a3:de:c3:af:66:53:2a:17:db:
49:ef:41:1d:d0:90:7c:d0:eb:10:59:28:d2:e0:23:05:78:1e:
09:71:7d:fc:4a:ad:ae:72:65:0d:6d:45:8c:32:cd:e8:f3:db:
d5:2e:85:ca:c7:88:6a:f1:86:f3:c9:d9:71:53:31:3f:12:f9:
13:f9:6c:2f:79:4f:5f:f5:e9:b3:bc:af:3b:e0:ce:14:ec:29:
d4:bb:57:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 07:45:29 2025 by rpki-client