Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/0D0dEgIaaXJldOEWQxxD4x13_J0.roa
File: 0D0dEgIaaXJldOEWQxxD4x13_J0.roa (raw, json)
Hash identifier: 0b+SRYZW1rI00LOFdwtzI4QP0HRNpZjbkeWehSi0vZg=
Subject key identifier: D0:3D:1D:12:02:1A:69:72:65:74:E1:16:43:1C:43:E3:1D:77:FC:9D
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 019241CDA46BF120E06AFAB807AA301D9D63
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/0D0dEgIaaXJldOEWQxxD4x13_J0.roa
Signing time: Mon 30 Sep 2024 07:20:48 +0000
ROA not before: Mon 30 Sep 2024 07:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 46.34.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:41:cd:a4:6b:f1:20:e0:6a:fa:b8:07:aa:30:1d:9d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 30 07:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d03d1d12021a69726574e116431c43e31d77fc9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:12:9f:10:9c:c6:aa:40:ab:70:0c:5e:d1:16:
66:87:31:58:bb:f2:e3:27:6a:5e:37:6f:08:54:3f:
3d:cc:3b:4c:61:2e:cc:bf:8d:fd:51:aa:01:eb:58:
9c:94:e2:d1:53:8f:7c:2c:eb:15:82:73:77:52:9d:
42:9b:65:3c:b3:f8:8c:87:03:d5:0c:d2:76:7b:54:
ab:b6:74:b0:d4:ed:ba:f4:dc:97:84:66:24:48:ee:
a2:36:48:81:d5:e0:cc:fb:28:63:96:a9:f9:8c:c8:
fc:96:e0:a2:43:1d:dd:40:7f:12:c0:5a:56:2e:3a:
30:82:ab:8c:69:12:0d:79:63:7c:86:7d:76:74:80:
6e:04:ae:0a:2d:e6:62:69:15:66:a9:ab:ac:51:e4:
8f:a7:58:8a:5b:64:26:08:b5:0f:09:35:40:34:70:
63:45:7c:79:56:35:8b:ec:14:ff:93:04:f7:dc:9f:
ec:62:f9:00:50:01:29:2f:a7:50:76:f5:2c:ee:c5:
ae:ed:31:92:08:8b:9e:4a:3a:53:58:5a:14:00:a4:
74:4a:bc:44:af:33:ed:a3:25:cc:e8:a5:00:5e:e3:
34:78:bb:bd:fd:6a:9b:d8:2f:91:8f:d5:70:98:0a:
09:3c:c8:20:33:87:5f:eb:42:01:5c:10:14:88:20:
7a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:3D:1D:12:02:1A:69:72:65:74:E1:16:43:1C:43:E3:1D:77:FC:9D
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/0D0dEgIaaXJldOEWQxxD4x13_J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.58.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:0c:e6:f6:05:6e:dc:38:b1:d3:ff:63:4e:40:50:15:39:d4:
91:76:ed:8e:d7:57:8b:48:b2:95:63:1c:df:e9:99:05:4a:45:
aa:b4:c5:f6:d8:1e:89:13:83:05:54:15:2d:fb:43:b0:3e:ac:
97:ba:a0:3a:1a:a7:43:4b:e1:93:cf:ed:0e:60:33:22:73:9a:
55:a9:d0:20:d1:8f:96:c8:ac:b2:ba:a7:25:2c:46:5c:4d:85:
c2:7d:b5:25:4a:a5:29:44:ff:71:f8:fe:bf:15:21:7f:13:82:
4a:2a:d6:22:8b:4f:3a:e8:97:90:89:26:30:5b:48:ee:cb:f1:
ec:7e:87:a9:f0:6d:d4:ad:c0:57:7b:e4:d1:77:a2:9d:65:47:
93:41:88:10:d0:26:89:5d:d4:f6:20:17:c1:9f:ac:06:e1:22:
e3:e5:d7:f5:fe:8c:b9:5b:64:29:db:bb:16:2e:b0:76:d8:6c:
22:c9:37:4d:1f:4a:21:0a:11:74:cf:75:d4:16:8c:af:09:5d:
53:5a:c7:d3:f2:ef:33:e0:43:7d:84:51:ee:f2:5c:25:29:e1:
55:5c:09:a4:d6:74:65:c2:2f:e7:de:5e:0b:23:52:fc:9d:13:
a8:39:e4:f1:ad:86:93:8a:4b:14:2a:c2:c1:17:04:8e:13:c5:
b0:67:8f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:49 2025 by rpki-client