Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/a9LrqTpYRODa_c6hignE8aCzUSY.roa
File: a9LrqTpYRODa_c6hignE8aCzUSY.roa (raw, json)
Hash identifier: ddgawP5h9pVMRVBvXBZvYEheGjEyFLeIUOah80ktu5Q=
Subject key identifier: 6B:D2:EB:A9:3A:58:44:E0:DA:FD:CE:A1:8A:09:C4:F1:A0:B3:51:26
Certificate issuer: /CN=7bcb127c7cd778607296b88386e894ae1de385bf
Certificate serial: 01961C562E29AC56176A7CEF999795189DC7
Authority key identifier: 7B:CB:12:7C:7C:D7:78:60:72:96:B8:83:86:E8:94:AE:1D:E3:85:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e8sSfHzXeGBylriDhuiUrh3jhb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/a9LrqTpYRODa_c6hignE8aCzUSY.roa
Signing time: Wed 09 Apr 2025 20:55:32 +0000
ROA not before: Wed 09 Apr 2025 20:55:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 46.174.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Apr 2025 23:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1c:56:2e:29:ac:56:17:6a:7c:ef:99:97:95:18:9d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bcb127c7cd778607296b88386e894ae1de385bf
Validity
Not Before: Apr 9 20:55:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bd2eba93a5844e0dafdcea18a09c4f1a0b35126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:12:1b:ca:e7:e1:b6:1c:2e:73:4c:f8:37:7c:
ee:1e:c8:c7:12:96:d5:ee:5a:57:61:c5:1c:49:48:
35:d9:24:80:9c:36:d4:25:44:a0:7f:12:4b:73:72:
66:7f:8c:e3:c7:bf:3f:73:cc:52:93:17:f4:36:2f:
eb:10:4b:f0:67:71:2c:f2:6e:b9:a1:0c:2f:17:0e:
86:5c:40:fd:bd:d0:fb:05:27:e6:f3:82:3a:c4:21:
36:e9:5f:b9:76:39:20:d4:20:4b:6a:d6:ae:7d:bf:
d8:d7:bc:33:f2:fb:ae:8d:dd:5c:06:69:84:08:04:
d9:c3:40:fd:bb:af:fa:6e:07:f3:d0:1b:b8:a0:90:
80:c5:e3:2e:17:29:bd:7a:97:3f:51:0b:0f:d1:ec:
34:97:f1:67:d9:1a:fb:2f:da:f6:d0:66:57:da:93:
f5:6c:d8:fc:0d:f7:c7:88:36:f2:50:bb:66:10:9d:
9b:af:df:26:c9:a4:d8:41:53:15:34:89:01:8d:de:
c4:2d:86:e9:8e:98:07:69:7e:5b:9f:d8:a5:07:5f:
c8:2e:3e:e9:97:ae:2d:e8:92:25:c4:1d:58:60:33:
18:df:73:ef:89:19:f5:08:1b:3a:f5:7f:db:65:e2:
e0:b9:ac:41:6b:61:fd:e0:71:f7:1f:05:0e:99:8d:
db:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D2:EB:A9:3A:58:44:E0:DA:FD:CE:A1:8A:09:C4:F1:A0:B3:51:26
X509v3 Authority Key Identifier:
keyid:7B:CB:12:7C:7C:D7:78:60:72:96:B8:83:86:E8:94:AE:1D:E3:85:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8sSfHzXeGBylriDhuiUrh3jhb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/a9LrqTpYRODa_c6hignE8aCzUSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/d60fd8-03d5-4aab-9dab-2e20a79f7145/1/e8sSfHzXeGBylriDhuiUrh3jhb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.169.0/24
Signature Algorithm: sha256WithRSAEncryption
70:8e:d6:40:0e:e2:7d:58:86:6f:df:f5:24:8e:8a:58:31:6d:
a0:39:1e:e2:ac:6f:80:08:ba:34:16:bb:14:56:b9:ad:15:3f:
2d:71:05:29:8a:4c:82:22:48:67:10:5f:74:22:46:93:47:9d:
db:63:4b:31:1b:bd:58:90:b8:7f:75:3c:1e:7e:85:13:da:89:
df:ef:7c:4c:08:9f:df:e2:9b:78:61:4f:f4:72:2b:3f:fd:2f:
23:49:cc:fa:3f:c2:c1:69:80:7c:5e:af:db:8d:2e:0c:39:4c:
2a:3f:34:00:a4:d0:f7:c4:66:f1:bd:dd:a0:ed:12:9b:c2:c6:
7e:ea:d8:27:15:33:07:b7:50:dd:09:3f:71:97:9c:41:b3:43:
99:2f:ac:54:7c:e0:02:06:18:2a:ab:c0:c0:58:3b:45:a5:6b:
87:3b:0a:61:0a:28:9e:3c:24:70:63:08:ec:3a:05:36:09:3e:
c7:1d:7f:03:c6:51:ce:6f:fb:f2:b3:08:d7:b8:35:c0:55:97:
c5:e6:9a:c1:0c:d2:14:5c:02:b9:e8:25:a7:b8:5f:a8:6e:57:
85:21:23:92:45:55:ee:a2:70:91:bc:8f:ed:3c:88:d1:f1:28:
8f:e6:fa:74:cb:28:f9:05:05:24:52:f5:ae:84:9c:b1:a0:35:
5e:72:a0:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:19:58 2025 by rpki-client