Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/54eacb1g4QVATesvC0BQ3UByE2E.roa
File: 54eacb1g4QVATesvC0BQ3UByE2E.roa (raw, json)
Hash identifier: NzehyPPHh9WxHXTRiM4NkcFuy32zOwVeMBn6WRxxU+Q=
Subject key identifier: E7:87:9A:71:BD:60:E1:05:40:4D:EB:2F:0B:40:50:DD:40:72:13:61
Certificate issuer: /CN=08b3eb5fb3ba7656e11357834829eecaf441212e
Certificate serial: 0193F34684FF32969E12018AC9418A72EEB0
Authority key identifier: 08:B3:EB:5F:B3:BA:76:56:E1:13:57:83:48:29:EE:CA:F4:41:21:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLPrX7O6dlbhE1eDSCnuyvRBIS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/54eacb1g4QVATesvC0BQ3UByE2E.roa
Signing time: Mon 23 Dec 2024 11:28:24 +0000
ROA not before: Mon 23 Dec 2024 11:28:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200359
IP address blocks: 109.70.232.0/24 maxlen: 24
109.70.233.0/24 maxlen: 24
109.70.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f3:46:84:ff:32:96:9e:12:01:8a:c9:41:8a:72:ee:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b3eb5fb3ba7656e11357834829eecaf441212e
Validity
Not Before: Dec 23 11:28:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7879a71bd60e105404deb2f0b4050dd40721361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:85:7a:2c:55:2c:ce:80:33:66:91:8c:b0:ce:
44:b8:e8:96:4c:2f:73:e8:26:9a:9c:bb:15:ee:d2:
6f:00:5b:d4:12:fa:da:57:39:16:1a:30:04:5d:85:
75:4f:16:77:0a:bc:d1:d2:f2:71:c0:fc:21:de:7b:
0b:25:ae:9d:6a:a6:ec:a8:5b:6b:4e:ce:8f:f1:aa:
81:1a:7d:a7:99:fc:a9:bd:6c:fa:3f:f3:33:22:0c:
d8:71:3f:4a:01:92:62:09:ff:96:b0:af:95:19:10:
cb:06:47:a2:15:c2:97:8b:89:9b:ed:9b:49:00:5e:
16:43:bf:ea:d9:99:3f:40:c5:dc:2e:ab:1a:81:91:
8d:3c:58:2c:35:5a:5f:c4:e7:dd:82:aa:b0:f4:02:
c3:6c:bd:41:66:2d:29:34:cd:d1:6f:2b:8d:3a:fd:
d9:bd:04:f4:79:f6:69:ae:f7:93:20:14:23:6c:8a:
b1:9c:2b:93:8b:1b:cc:7c:5a:1b:1a:0e:8d:12:a9:
85:73:cf:fc:d8:50:ad:21:2d:f0:8a:c8:f4:82:77:
dd:2c:a0:41:43:40:1a:34:c5:dd:1e:48:5f:0e:c5:
27:34:a9:6b:b9:c1:d2:19:12:5c:e7:55:ac:a0:f9:
08:91:4d:6a:83:ae:4e:07:6f:a6:57:35:a6:e1:c8:
a5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:87:9A:71:BD:60:E1:05:40:4D:EB:2F:0B:40:50:DD:40:72:13:61
X509v3 Authority Key Identifier:
keyid:08:B3:EB:5F:B3:BA:76:56:E1:13:57:83:48:29:EE:CA:F4:41:21:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLPrX7O6dlbhE1eDSCnuyvRBIS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/54eacb1g4QVATesvC0BQ3UByE2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/16c890-17e7-4a51-a387-3e8df3310232/1/CLPrX7O6dlbhE1eDSCnuyvRBIS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.232.0-109.70.234.255
Signature Algorithm: sha256WithRSAEncryption
90:f8:21:22:3f:df:e1:aa:01:d4:31:f4:51:fd:0d:b7:3e:9d:
a7:fd:42:7c:e8:3a:3d:ee:f7:64:28:c9:ac:3a:70:41:67:71:
24:fe:2e:0d:51:50:93:4a:49:fa:b4:45:39:29:e3:f9:43:d0:
d3:27:8f:a0:b2:f3:b6:0e:a4:c2:39:c1:60:86:03:a3:88:2a:
f1:c9:8a:9b:06:08:4e:a0:f0:fe:62:10:4e:f3:e1:25:c2:c7:
f7:68:50:6b:cb:a7:bd:16:1a:5d:0e:54:65:cd:cc:6d:96:e6:
26:99:41:b6:1e:7f:bb:ce:48:e8:ef:7a:0f:5f:d5:69:63:02:
40:5e:a1:80:45:28:7c:6e:d7:04:89:0c:09:67:dd:53:d0:9b:
58:8a:e5:bb:97:a1:fd:a7:56:9d:cb:d2:61:90:72:41:d6:97:
f2:70:f3:d4:80:de:e7:b4:2f:d2:d1:44:bb:a6:14:f5:9d:e1:
b2:24:8c:66:93:cc:c6:db:1b:8a:aa:bb:fd:e3:52:e2:2e:f1:
f8:65:a4:36:3b:ef:d7:b0:ed:16:69:ac:c5:2c:8c:d4:68:7b:
0a:96:51:a5:09:c6:72:da:3a:56:82:45:fe:08:4a:82:80:71:
a3:c7:b9:32:98:04:7c:ca:c0:fd:80:66:cd:3a:99:68:77:5b:
a2:08:5c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:19:23 2025 by rpki-client