Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/yVwnrlB9HCYOwdCPLi3lMSi3rns.roa
File: yVwnrlB9HCYOwdCPLi3lMSi3rns.roa (raw, json)
Hash identifier: YptIJwaRWtNSTytWaChBI220YCqiW0NxNQ2SxlysB70=
Subject key identifier: C9:5C:27:AE:50:7D:1C:26:0E:C1:D0:8F:2E:2D:E5:31:28:B7:AE:7B
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 018EF8515E8609721B4F2E8A79B2452A7978
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/yVwnrlB9HCYOwdCPLi3lMSi3rns.roa
Signing time: Fri 19 Apr 2024 21:44:25 +0000
ROA not before: Fri 19 Apr 2024 21:44:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.85.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 16:57:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f8:51:5e:86:09:72:1b:4f:2e:8a:79:b2:45:2a:79:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Apr 19 21:44:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c95c27ae507d1c260ec1d08f2e2de53128b7ae7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b7:b1:a4:b3:c9:c1:6b:5a:27:5e:7a:b2:6b:
cf:41:29:07:c9:c0:c3:68:cc:80:8e:4c:da:9d:fd:
e5:46:c4:e7:c5:98:6c:53:1e:1f:25:24:60:e5:3f:
6b:c5:74:bd:ee:9e:e7:87:ff:0f:9f:3c:60:19:f6:
7d:59:95:03:3d:7a:f0:df:b3:8f:20:a0:e4:ab:c0:
20:c9:c4:ba:86:72:f9:29:3b:34:19:e0:f6:73:35:
de:cf:28:81:ed:a5:7a:bb:c3:64:9b:0d:69:f9:59:
b0:90:77:cb:92:0f:83:69:e1:85:3b:22:26:d3:46:
da:71:6c:2b:aa:b0:2a:62:91:5a:57:dd:87:83:10:
1b:f3:83:be:b8:d0:74:52:bb:e4:ef:33:c5:13:57:
c5:9f:80:d2:cc:bd:00:17:39:35:80:f3:ee:12:5b:
23:ed:63:d0:4f:c6:e5:73:45:80:e7:aa:9b:46:4e:
6a:44:b0:38:3a:ec:3a:63:f4:8a:a6:62:a3:1c:16:
e4:de:aa:5e:72:62:f8:9d:1e:3b:b6:a5:58:c0:09:
70:a5:86:45:79:13:0b:c6:92:8c:8d:73:13:e5:49:
36:09:c5:3c:c2:04:71:b3:53:7e:1c:75:21:a7:0a:
f7:ff:99:c6:31:cf:8e:76:40:21:06:98:4b:5c:b4:
ba:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5C:27:AE:50:7D:1C:26:0E:C1:D0:8F:2E:2D:E5:31:28:B7:AE:7B
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/yVwnrlB9HCYOwdCPLi3lMSi3rns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.15.0/24
Signature Algorithm: sha256WithRSAEncryption
53:17:33:46:e0:a2:56:eb:de:eb:82:01:10:5d:20:95:08:ff:
cc:05:03:ed:eb:60:95:ad:fa:1a:74:77:79:b2:52:85:a7:29:
68:b4:b3:c9:c2:66:b0:9e:b6:36:9c:d6:04:58:d7:83:8e:d8:
d7:86:4e:0d:a5:d1:bd:e4:52:1a:1a:2e:9e:d3:fd:58:1f:78:
98:5b:43:b7:32:9c:aa:5a:52:b5:e2:0d:98:af:88:87:89:88:
a7:49:6c:a7:25:54:aa:a4:01:e7:20:d8:2a:78:57:d2:77:97:
91:3a:56:55:78:1d:9b:b0:95:a9:7f:15:df:49:6b:a2:3f:01:
e3:b6:50:49:d1:06:1f:58:fc:db:30:0c:63:31:66:a8:99:e5:
7d:3f:26:21:5b:b3:f0:30:a6:39:88:f6:be:42:3a:6f:13:3f:
b0:d8:ce:e3:33:39:ae:49:40:be:1b:b6:c9:4a:57:30:bd:11:
7f:b6:1c:49:27:c6:d5:c3:03:92:f7:c7:41:6e:d1:f6:9e:6d:
1d:29:87:42:1d:56:96:a1:9d:9b:23:27:0f:bb:81:dc:33:30:
08:81:e4:a0:9a:2d:11:be:7e:65:ed:98:a4:98:5f:fe:84:d4:
a7:8d:d5:a7:57:1f:74:4e:99:a0:df:63:8d:2c:42:69:fa:54:
fc:6d:83:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:33:05 2024 by rpki-client on console-ams.rpki-client.org