Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nNc9FSKYRBBik1X07Bvi412KrOE.roa
File: nNc9FSKYRBBik1X07Bvi412KrOE.roa (raw, json)
Hash identifier: t85L0quYHtRWRKcutMHPyJHqwPkf0T2SbqpwXDJfwFI=
Subject key identifier: 9C:D7:3D:15:22:98:44:10:62:93:55:F4:EC:1B:E2:E3:5D:8A:AC:E1
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0195A906301417975C653D5D75E492F5088C
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nNc9FSKYRBBik1X07Bvi412KrOE.roa
Signing time: Tue 18 Mar 2025 11:31:49 +0000
ROA not before: Tue 18 Mar 2025 11:31:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213535
IP address blocks: 45.67.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Mar 2025 19:44:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:06:30:14:17:97:5c:65:3d:5d:75:e4:92:f5:08:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 18 11:31:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9cd73d1522984410629355f4ec1be2e35d8aace1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e8:c2:85:86:f4:84:c4:c2:e7:38:52:6a:9a:
c1:f3:ae:0a:d8:0a:da:9f:0d:e3:9e:99:b3:08:54:
de:c2:6d:4f:85:72:78:15:c0:c5:1f:54:ee:56:be:
ea:90:eb:52:6f:8d:a8:61:40:ce:b7:18:c4:e0:c6:
db:4e:7d:34:4a:79:0f:a2:60:b8:82:23:78:67:ce:
bf:21:5d:93:93:0d:68:44:8e:e2:07:7e:a9:bb:a3:
de:18:10:ea:eb:21:a1:29:12:37:4d:49:0e:5c:ac:
01:03:9b:c2:25:70:b0:fc:54:ec:ed:60:5e:2c:ea:
23:6b:f6:9e:8e:a5:9b:d9:c8:07:12:f3:98:0b:ab:
b9:ae:ea:7a:21:cd:0e:f9:23:23:0c:ad:f9:3c:63:
d7:14:7b:b4:94:9f:1f:ad:20:4f:5c:3c:7e:09:7e:
37:41:9a:25:06:f2:9d:c4:00:6a:db:d4:50:ec:1a:
d1:89:19:d6:86:67:39:71:1e:19:e5:fa:7c:11:37:
31:c4:35:db:36:3a:64:c0:61:5e:2e:24:0d:e6:78:
64:a3:2e:a5:87:32:6b:5c:11:ed:4f:c6:cd:04:e6:
0d:1d:58:8c:64:ad:16:23:a5:0a:4a:9b:c7:af:eb:
f5:62:5a:04:f4:ed:35:ed:63:43:2e:53:d0:20:3f:
c9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D7:3D:15:22:98:44:10:62:93:55:F4:EC:1B:E2:E3:5D:8A:AC:E1
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nNc9FSKYRBBik1X07Bvi412KrOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.139.0/24
Signature Algorithm: sha256WithRSAEncryption
84:de:ac:33:6d:c7:6c:e0:e9:81:7c:11:08:cf:61:d7:7b:cf:
c2:5f:3e:01:9e:24:a3:de:32:8c:bf:a3:43:05:b5:09:08:1a:
52:98:5a:f2:69:58:e0:9d:97:b6:1e:98:7e:60:fa:29:9a:06:
67:6a:8d:52:b4:8c:5b:90:dc:46:cd:86:9c:80:a9:b8:2c:d9:
5b:cc:c8:05:83:13:f0:61:ee:a8:ba:58:88:47:37:1c:e9:a7:
38:64:dd:bb:4a:2b:d3:c0:06:d9:c4:a6:09:ff:c0:b5:60:b2:
06:cf:e0:49:39:a1:59:27:bd:35:2b:7c:9f:97:f2:23:70:0e:
b9:de:5d:d8:90:49:15:65:2d:6b:89:a8:d4:d7:1c:16:c0:84:
df:d7:e8:87:d4:cd:5f:e0:00:4d:d5:e3:ac:54:0f:63:7e:86:
61:db:fe:d9:9a:06:f7:fa:8e:2d:23:2a:a3:56:fe:e8:c6:80:
0c:ad:60:1a:0c:e2:74:17:e8:e4:9f:61:13:eb:3d:bb:51:06:
c9:ab:e9:9f:d6:38:63:ad:47:d5:53:f4:fc:e4:e4:d4:ce:9e:
4b:a8:27:48:6d:95:d0:80:71:fb:0a:ec:d0:11:d2:de:f3:bd:
7a:b3:ee:80:5c:b4:cd:1d:3a:d3:74:66:47:ce:44:c7:dc:2b:
af:8a:be:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:14:06 2025 by rpki-client