Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/d6fb1c-95c3-4bff-8556-8057da754452/1/uMjCl_PriLh85OmMbuJ_inva0T4.roa
File: uMjCl_PriLh85OmMbuJ_inva0T4.roa (raw, json)
Hash identifier: 57KGlW+XaNJVXeshyO6M89WDia1kHSpdy9vh0pogTSY=
Subject key identifier: B8:C8:C2:97:F3:EB:88:B8:7C:E4:E9:8C:6E:E2:7F:8A:7B:DA:D1:3E
Certificate issuer: /CN=ef9f1e38265410b3c2a922d3169c4f2995141a2d
Certificate serial: 019421B2459C3D1E53584FF8BA69CF756A8B
Authority key identifier: EF:9F:1E:38:26:54:10:B3:C2:A9:22:D3:16:9C:4F:29:95:14:1A:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/758eOCZUELPCqSLTFpxPKZUUGi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/d6fb1c-95c3-4bff-8556-8057da754452/1/uMjCl_PriLh85OmMbuJ_inva0T4.roa
Signing time: Wed 01 Jan 2025 11:48:38 +0000
ROA not before: Wed 01 Jan 2025 11:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44606
IP address blocks: 45.156.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Mar 2025 10:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:45:9c:3d:1e:53:58:4f:f8:ba:69:cf:75:6a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef9f1e38265410b3c2a922d3169c4f2995141a2d
Validity
Not Before: Jan 1 11:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8c8c297f3eb88b87ce4e98c6ee27f8a7bdad13e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:38:f3:80:1a:4b:e1:39:ad:55:e4:37:48:01:
8d:58:0a:50:42:c0:59:d3:b5:b7:fd:36:70:65:3b:
34:a3:2d:94:eb:71:30:be:d1:2c:58:04:db:4e:d8:
9d:b9:1d:c4:3c:49:83:d3:5e:07:06:d5:e9:f8:b5:
92:6c:56:75:08:d9:d1:a4:45:df:30:9e:3f:7b:2a:
f8:16:6b:fd:46:1c:0b:ff:30:d9:d8:1b:58:d0:3e:
6c:13:0c:87:e9:61:da:42:82:63:04:59:b9:2b:a9:
01:ea:c5:19:e8:4e:26:ab:85:3b:10:4a:66:b8:59:
b8:ed:cc:4f:01:21:54:b5:9d:8e:1d:54:84:ae:c4:
2c:36:cf:3c:f3:fb:a5:fb:63:9d:ff:11:54:82:58:
4b:28:bf:d4:fd:7c:3b:c3:4a:3e:25:12:48:09:77:
f8:f1:17:ba:ec:f6:a2:18:49:01:3a:2a:6a:e1:7b:
1b:c7:0c:3d:16:4c:d8:81:cb:3a:2e:8f:69:5a:58:
de:47:17:de:21:cc:26:86:67:3b:94:a0:6b:ab:87:
8c:95:bd:1e:d4:49:db:66:2c:0f:3f:d1:c4:85:f8:
7d:27:83:29:85:3e:60:cd:c5:26:2b:e3:5a:57:6d:
d8:ef:4a:3d:b0:a5:b9:f3:54:3e:5e:83:1f:5c:91:
06:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C8:C2:97:F3:EB:88:B8:7C:E4:E9:8C:6E:E2:7F:8A:7B:DA:D1:3E
X509v3 Authority Key Identifier:
keyid:EF:9F:1E:38:26:54:10:B3:C2:A9:22:D3:16:9C:4F:29:95:14:1A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/758eOCZUELPCqSLTFpxPKZUUGi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d6fb1c-95c3-4bff-8556-8057da754452/1/uMjCl_PriLh85OmMbuJ_inva0T4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/d6fb1c-95c3-4bff-8556-8057da754452/1/758eOCZUELPCqSLTFpxPKZUUGi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.244.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:18:c8:66:17:7d:14:13:f1:d2:85:4d:8c:39:d6:43:5d:72:
48:a8:aa:45:82:fc:24:14:82:79:89:d8:ee:9e:aa:ce:c2:c5:
e9:44:d3:45:b8:4b:bf:d7:75:63:09:fe:0e:8c:b3:57:d7:f9:
52:b1:6b:1c:8b:d1:50:20:33:76:19:f2:72:3a:35:c4:2c:bc:
14:a9:3c:e0:8e:b2:ae:f7:ee:11:bd:4d:5b:a9:64:90:49:14:
69:c9:f9:e1:9a:91:7b:d4:00:a8:6e:f7:46:ec:3c:fd:11:9c:
a0:10:66:1b:e3:ed:d5:e5:13:50:0a:e0:5e:2f:1a:3a:08:f7:
a4:9a:45:3c:bf:0d:be:a8:ba:23:bf:2a:96:ff:92:68:d5:83:
ea:40:0a:37:11:74:49:26:91:93:49:35:bb:41:ed:81:44:a8:
87:fb:23:60:8a:ca:30:7e:61:c8:a7:ab:5a:91:d8:82:e0:5e:
6f:5c:fd:a1:91:77:2f:69:be:f3:f7:1f:13:6b:59:c9:2a:71:
00:70:95:2c:0d:bb:ee:d7:2a:34:ae:50:94:04:b2:e9:e9:67:
0c:13:bc:2f:cb:b6:fc:5b:05:d6:de:02:b3:4f:e5:fb:51:f3:
b5:12:a3:9a:9d:39:9c:7c:2a:e6:cc:15:f6:f6:40:12:e4:38:
17:a8:5c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:01:13 2025 by rpki-client