Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xqnIdXfpF-uoEcz8ByjGITSMIgw.roa
File: xqnIdXfpF-uoEcz8ByjGITSMIgw.roa (raw, json)
Hash identifier: stDhaIi1zd9kBluMx+5nRWp4I5/HXlhWtbl4u/0eLM8=
Subject key identifier: C6:A9:C8:75:77:E9:17:EB:A8:11:CC:FC:07:28:C6:21:34:8C:22:0C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019417E3C23B2DCEA1F9B2416269DAF8A648
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xqnIdXfpF-uoEcz8ByjGITSMIgw.roa
Signing time: Mon 30 Dec 2024 14:06:29 +0000
ROA not before: Mon 30 Dec 2024 14:06:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 146943
IP address blocks: 5.175.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:17:e3:c2:3b:2d:ce:a1:f9:b2:41:62:69:da:f8:a6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Dec 30 14:06:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6a9c87577e917eba811ccfc0728c621348c220c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4b:42:b3:6a:27:8f:88:bf:6c:08:e4:12:84:
a1:58:d2:77:f8:55:db:36:e5:6c:18:53:62:9d:26:
f2:1f:c8:ec:b3:53:0f:e6:95:f6:13:4c:06:38:cf:
7b:e0:d9:db:ea:8b:f1:d9:a6:ff:61:30:80:eb:04:
32:46:07:f7:fd:9f:41:e7:dd:e8:a6:7e:50:e2:72:
a8:0e:f6:37:d3:18:91:69:36:86:01:8c:bd:77:2a:
dd:a2:6d:a1:a5:79:3c:e5:6b:af:36:de:6e:e4:0a:
35:27:d2:bb:36:bb:aa:20:3b:9c:88:84:6a:a5:03:
1e:90:1a:e3:31:1d:8d:e3:18:5f:44:11:2b:59:05:
11:9a:85:84:3c:42:21:64:49:92:33:c1:d6:9f:d9:
d4:89:af:f0:08:db:cb:f1:59:5b:19:6f:cb:64:5c:
8a:eb:12:ab:f2:f5:ee:e9:a2:68:12:32:71:cd:ef:
25:5f:62:89:82:04:41:ee:16:25:e4:ea:8f:70:28:
87:55:82:fe:24:86:ec:9e:91:ba:86:ef:21:53:0c:
e5:14:8d:68:a1:91:03:7f:2a:49:98:33:a2:be:e1:
cb:71:a2:c1:3f:01:70:5f:77:91:e7:b1:2c:6d:df:
6b:8a:c4:d5:94:4c:c4:82:b0:46:05:fb:89:1a:29:
31:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A9:C8:75:77:E9:17:EB:A8:11:CC:FC:07:28:C6:21:34:8C:22:0C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/xqnIdXfpF-uoEcz8ByjGITSMIgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.139.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:79:aa:3e:64:03:d0:59:6d:66:6e:f9:7c:60:2e:71:67:fd:
70:b1:c8:4a:d6:67:74:e8:ea:18:c3:20:4f:0b:8e:a0:cc:70:
56:85:05:21:da:7a:84:fa:df:35:b7:74:c2:05:43:87:e9:46:
c1:76:5f:65:e1:7b:e7:b8:05:a5:74:d6:c2:31:d6:ee:3f:0c:
7f:f0:85:68:4d:6f:8c:1c:5a:4b:b7:e5:33:76:f3:3e:b4:1a:
39:a8:be:3e:ab:23:00:9c:6d:40:88:f3:40:df:95:57:d3:b7:
37:84:9a:cb:06:2b:33:65:1f:75:62:53:b3:26:ae:36:92:d8:
1f:60:46:3c:4f:a3:1a:57:2a:7c:18:d2:e2:a3:dc:e9:bb:b7:
71:96:8a:be:57:0c:38:01:44:c0:b8:b0:c0:bd:70:bf:07:7e:
63:e4:fd:38:d1:66:b2:43:ef:ef:00:a9:78:3a:09:0c:42:0e:
85:48:1d:a5:c2:06:96:7c:ca:18:ce:49:5d:c7:3d:b8:0f:4c:
4e:7f:25:14:bf:6c:93:89:db:7e:14:8c:a7:9b:73:b5:08:b6:
08:ad:f3:71:22:39:50:e5:3c:72:41:76:83:59:8b:44:cb:20:
e3:e7:51:c7:6c:5b:22:53:2e:a6:c3:4c:f6:a5:69:2b:28:3a:
d0:d5:ba:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:15:47 2025 by rpki-client