Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/h46--PAdHCfrGoH43_sim-0zBnU.roa
File: h46--PAdHCfrGoH43_sim-0zBnU.roa (raw, json)
Hash identifier: /3zm91umovMHKilg6Z4kUrSxkScoDebSvlJJG8AYgNw=
Subject key identifier: 87:8E:BE:F8:F0:1D:1C:27:EB:1A:81:F8:DF:FB:22:9B:ED:33:06:75
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 0194258F0B79BBCC4D81BC97BD3C99BDD542
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/h46--PAdHCfrGoH43_sim-0zBnU.roa
Signing time: Thu 02 Jan 2025 05:48:39 +0000
ROA not before: Thu 02 Jan 2025 05:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26737
IP address blocks: 45.129.240.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Mar 2025 07:26:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:0b:79:bb:cc:4d:81:bc:97:bd:3c:99:bd:d5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Jan 2 05:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=878ebef8f01d1c27eb1a81f8dffb229bed330675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e4:48:ae:67:bb:f8:48:45:b3:14:ca:42:f5:
4b:7a:db:79:2a:a2:65:af:73:fe:be:cb:9a:4a:01:
94:7c:6b:ef:5d:6c:e1:5b:33:5d:86:57:eb:05:6c:
2c:93:b2:9c:77:02:09:c2:d0:b5:8c:62:c0:fd:b5:
5a:00:a8:e8:d6:dc:30:8a:f3:17:e7:9d:da:9e:64:
36:f0:6e:ea:7d:e5:bb:b9:44:3d:1e:09:8a:3b:13:
6f:45:09:51:af:ce:12:bb:c9:c5:2f:32:76:0a:4d:
74:96:ab:6c:78:36:9c:d3:80:e5:9c:23:18:b2:2d:
74:28:ad:e6:c8:9a:c4:39:08:2a:41:d4:12:5b:e5:
17:0e:62:c8:94:9f:47:d1:1c:8b:28:47:09:fd:b1:
e8:f2:fa:eb:b3:eb:e7:53:24:f4:03:32:e5:26:8a:
58:fe:2e:5b:e4:5f:41:0b:43:f2:58:d7:91:c5:7e:
28:d6:aa:82:04:fb:5b:18:18:f1:8d:aa:2f:ba:57:
6a:35:36:32:92:f6:b0:9e:9a:c0:01:41:50:16:00:
e1:3e:de:b0:a5:79:c4:77:d9:45:b7:37:2d:a9:04:
d9:5b:dc:f3:64:71:e3:58:17:b7:1b:49:50:dd:f3:
28:b9:75:9f:19:5c:fa:6b:2b:96:1e:21:76:d4:65:
dd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8E:BE:F8:F0:1D:1C:27:EB:1A:81:F8:DF:FB:22:9B:ED:33:06:75
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/h46--PAdHCfrGoH43_sim-0zBnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.240.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:e2:21:22:a9:f5:17:01:be:c6:d4:48:82:5f:bb:18:81:a0:
0c:7c:56:cc:bd:05:f4:cf:7b:f8:01:5f:f4:a5:60:06:32:ee:
eb:d1:8b:e1:7e:b3:3c:00:57:9e:c6:cc:bc:6b:1f:48:a4:1c:
99:d7:28:bc:0d:2c:51:13:34:db:fe:6f:03:b9:22:f1:57:0f:
6c:7a:01:59:bb:a9:7d:57:3d:c7:f8:46:8c:41:82:5b:9c:34:
12:7c:71:72:b7:1c:53:30:14:75:a7:63:f9:49:12:84:cd:67:
ca:04:47:5b:bc:8b:f3:bd:5c:f3:74:f3:7b:2c:fc:37:a4:ce:
54:c6:0f:1f:a9:44:52:e0:6f:b8:55:6b:a3:61:6d:ae:5e:a0:
c3:67:42:19:cc:e4:d3:d5:d2:18:ff:24:85:7c:f2:9d:2a:d2:
92:56:8c:ed:19:c6:e0:00:3e:27:54:63:41:e9:af:c5:09:d8:
aa:1e:88:7a:ce:8f:cc:ee:de:b3:7e:26:be:5f:fa:2c:a4:d5:
56:3f:3b:00:dd:7e:89:ed:14:ea:20:95:7d:2a:0d:5f:62:5f:
d8:14:d4:6f:e2:2d:0a:fa:a1:ee:10:c3:f3:f7:bf:b7:ee:49:
e5:27:b6:e3:cc:f8:77:5e:9b:64:bc:74:af:ca:37:c9:f2:ac:
9c:97:6a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:52:22 2025 by rpki-client