Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/AV_sETKeBhohYsORG2bokvIzbc4.roa
File: AV_sETKeBhohYsORG2bokvIzbc4.roa (raw, json)
Hash identifier: MXqZD118x/6VlnSOFRoK2hZYuyv8BEIHiQX5YC/2yY0=
Subject key identifier: 01:5F:EC:11:32:9E:06:1A:21:62:C3:91:1B:66:E8:92:F2:33:6D:CE
Certificate issuer: /CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Certificate serial: 01905A20353F35AC58C7703DE1BF8E05904C
Authority key identifier: B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/AV_sETKeBhohYsORG2bokvIzbc4.roa
Signing time: Thu 27 Jun 2024 14:36:18 +0000
ROA not before: Thu 27 Jun 2024 14:36:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48753
IP address blocks: 46.253.3.0/24 maxlen: 24
46.253.4.0/24 maxlen: 24
95.169.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 14:08:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5a:20:35:3f:35:ac:58:c7:70:3d:e1:bf:8e:05:90:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Validity
Not Before: Jun 27 14:36:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=015fec11329e061a2162c3911b66e892f2336dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9c:8b:ee:6b:a0:4c:b8:91:23:ce:8b:51:01:
49:7e:52:66:3c:d8:22:c4:9a:d8:79:f3:d5:44:33:
aa:1d:d5:92:b1:7a:f0:7a:da:7f:c0:12:69:b3:75:
27:c8:d3:3d:0b:1f:79:68:e6:07:5d:ad:89:b0:bf:
98:a9:85:d0:f1:e0:cf:9f:91:e5:ff:94:c8:fa:78:
17:ac:8a:f2:c6:8f:2d:1f:78:ba:d4:2d:95:92:5b:
26:73:e4:7e:34:43:a8:db:0c:6c:5f:d2:83:a2:03:
69:c7:ed:cc:c8:e2:a9:da:4e:88:ae:f6:23:8c:4b:
7b:8d:4b:51:8d:b7:64:c0:55:cb:50:ea:24:ae:b2:
26:32:22:e1:82:37:3f:7a:97:79:6a:8b:9d:40:ed:
29:6e:7d:0e:f8:ea:43:e9:aa:d6:ca:33:21:87:2c:
94:36:c1:85:78:7a:40:9b:7c:21:c7:04:db:51:16:
d4:51:18:8f:9d:ac:27:be:4e:40:82:f1:9a:28:59:
3a:9b:4d:bb:02:ab:97:32:a1:d0:fa:b9:95:ad:78:
ea:e9:73:b4:92:3b:33:d9:05:c9:9d:8b:5d:6c:cb:
39:dc:7b:21:43:a2:ae:88:df:5a:02:be:07:b3:83:
46:0c:11:2d:dc:54:18:5f:b2:45:e3:5d:79:32:b4:
e4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5F:EC:11:32:9E:06:1A:21:62:C3:91:1B:66:E8:92:F2:33:6D:CE
X509v3 Authority Key Identifier:
keyid:B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/AV_sETKeBhohYsORG2bokvIzbc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.3.0-46.253.4.255
95.169.203.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:5c:4e:a7:01:af:8b:1c:f2:f6:db:83:f9:22:12:be:97:de:
bc:28:41:4e:b8:68:57:09:93:20:e2:5d:50:ea:e2:29:87:78:
a8:bb:b9:46:f6:c6:87:6b:0a:84:56:27:b4:0a:3c:67:bc:c1:
7a:ad:ef:d0:2b:e5:58:5a:ef:a8:32:f4:da:6c:d5:1c:e2:7f:
48:3d:ea:ea:68:6f:b9:f6:ef:a2:b1:65:d1:ff:19:f6:62:20:
4c:63:dc:ca:92:49:fb:e0:ac:94:3c:0d:48:bf:a9:fe:ce:e1:
b8:e3:0a:15:ba:64:b3:25:5e:3b:3f:cf:12:f4:ff:b3:f2:eb:
5f:61:8f:ea:99:45:8b:91:59:b6:b2:96:d7:84:ab:41:24:21:
c9:c9:79:1d:8d:53:5f:2b:ef:ef:90:ca:3b:b3:db:c0:b8:5d:
e4:6d:7c:fa:f7:fc:a5:b8:44:52:87:80:3e:7e:ff:a4:cf:f4:
1f:6f:14:17:2c:03:f2:9d:c0:35:bb:37:92:b5:0a:40:19:6a:
b4:84:cb:d8:ae:9e:14:24:ba:ef:3c:e1:4e:d2:fa:09:c6:5f:
cb:87:9e:2a:0e:09:8a:bf:8c:e4:5e:d1:0c:66:d2:31:7a:23:
a8:5f:eb:37:70:78:bb:40:9a:3b:e2:83:23:39:d5:94:7d:17:
14:19:00:e6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:38 2025 by rpki-client