Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/3vnhoTpvnNPhH7SUJNL840DslTQ.roa
File: 3vnhoTpvnNPhH7SUJNL840DslTQ.roa (raw, json)
Hash identifier: NpltN5fckqHnKodcDnpYjvwgycdsA6h8fT0pD2nmXZA=
Subject key identifier: DE:F9:E1:A1:3A:6F:9C:D3:E1:1F:B4:94:24:D2:FC:E3:40:EC:95:34
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 0192A97899CB7880910BCA9360D531BFA4AB
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/3vnhoTpvnNPhH7SUJNL840DslTQ.roa
Signing time: Sun 20 Oct 2024 10:28:26 +0000
ROA not before: Sun 20 Oct 2024 10:28:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60064
IP address blocks: 46.175.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a9:78:99:cb:78:80:91:0b:ca:93:60:d5:31:bf:a4:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Oct 20 10:28:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=def9e1a13a6f9cd3e11fb49424d2fce340ec9534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:a5:d6:13:a3:9b:e6:2b:f6:2c:69:3b:f6:
f7:ea:ab:96:88:b1:d3:c7:de:6a:ce:a0:a7:29:1c:
b8:cd:b3:29:56:4b:28:74:f9:01:72:17:69:97:5d:
2b:15:08:63:4b:4c:77:88:fd:96:22:8d:22:2a:d8:
23:6a:43:d8:87:21:4c:13:45:e6:c3:b0:bc:b7:29:
6f:d0:55:cb:c6:1f:c7:97:fa:d3:6c:fc:8d:ec:7f:
82:74:13:af:e8:52:df:ad:6e:e7:f9:19:29:32:dc:
57:42:43:7d:ea:dd:ac:06:96:27:49:1f:fd:11:af:
b9:8f:d4:cd:ab:d4:d2:4b:f6:c4:b5:7f:35:73:42:
6d:03:f6:65:53:5b:ca:b5:6b:d3:00:5b:7f:63:bf:
0e:9e:31:f8:25:28:11:7b:d5:3f:43:e9:dd:f9:86:
c8:d2:5e:91:5d:13:5e:fc:79:4c:2d:60:b3:22:59:
13:9e:90:07:81:f1:97:32:5e:d5:15:35:0a:17:9e:
79:4b:42:69:2e:c3:41:20:72:ea:97:a9:4b:7a:47:
14:f9:71:66:e7:15:98:44:94:fb:17:83:ab:eb:ed:
9b:a7:b7:e8:5f:46:21:27:e7:c7:c2:12:84:4e:51:
06:e5:a1:bc:01:6b:c9:ad:42:f5:c4:90:d6:d5:ab:
cf:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F9:E1:A1:3A:6F:9C:D3:E1:1F:B4:94:24:D2:FC:E3:40:EC:95:34
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/3vnhoTpvnNPhH7SUJNL840DslTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.129.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:f4:e6:1e:12:c3:25:a3:fd:cd:40:3b:76:b6:59:ac:48:1b:
b6:6e:51:7e:9f:c5:09:61:da:78:fa:57:be:87:c9:11:bb:fd:
dc:94:95:9c:a1:01:86:c5:09:4a:23:14:c1:93:0d:42:51:5f:
c5:20:80:1b:dc:30:98:e0:19:3f:bb:95:3a:6b:28:63:1f:c1:
ce:9e:cf:11:b5:68:ce:73:4f:5e:18:66:b2:fc:6e:d0:20:27:
9e:ba:87:c4:38:a3:0c:6f:9b:c1:24:19:fd:eb:55:dd:0a:09:
a5:72:32:07:a1:ff:e0:2f:6c:23:a4:82:06:ac:54:3e:5f:f1:
cd:fa:f7:84:ed:d8:e1:96:51:eb:63:c4:23:80:67:fa:5f:22:
c4:61:f9:7e:27:8b:0b:22:b6:e4:3f:07:88:54:85:04:a0:69:
06:d6:88:8d:a9:c0:1a:5d:5b:09:ad:0c:75:00:84:ea:2a:c6:
9a:a0:35:ec:f1:a8:9d:87:72:43:9a:dc:38:c0:69:e5:b2:c5:
74:c0:b7:63:5c:1c:a9:0c:9e:55:f9:15:7d:ca:33:19:f1:f3:
d8:33:e1:c3:ca:20:6c:48:2d:63:86:cb:b0:ee:8c:31:23:86:
9f:b4:3b:26:b0:b1:83:99:1d:67:58:cb:51:08:39:61:7b:e1:
6d:86:6a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:16 2025 by rpki-client