Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/faJFXesxMttyzI9OTdKjuv3213U.roa
File: faJFXesxMttyzI9OTdKjuv3213U.roa (raw, json)
Hash identifier: iD6ignMr53ITnGYt8kcOvBVUfbJF3+dwiUo2CFZDePM=
Subject key identifier: 7D:A2:45:5D:EB:31:32:DB:72:CC:8F:4E:4D:D2:A3:BA:FD:F6:D7:75
Certificate issuer: /CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Certificate serial: 0190BB50D285CA020C17A8474194807D2FF9
Authority key identifier: 9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/faJFXesxMttyzI9OTdKjuv3213U.roa
Signing time: Tue 16 Jul 2024 11:32:34 +0000
ROA not before: Tue 16 Jul 2024 11:32:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 46.229.243.0/24 maxlen: 24
46.229.251.0/24 maxlen: 24
46.229.253.0/24 maxlen: 24
77.74.123.0/24 maxlen: 24
83.229.61.0/24 maxlen: 24
85.204.107.0/24 maxlen: 24
92.42.100.0/24 maxlen: 24
103.112.171.0/24 maxlen: 24
103.121.48.0/24 maxlen: 24
103.121.49.0/24 maxlen: 24
103.126.50.0/24 maxlen: 24
103.126.51.0/24 maxlen: 24
103.244.144.0/24 maxlen: 24
103.244.145.0/24 maxlen: 24
103.246.248.0/24 maxlen: 24
185.104.63.0/24 maxlen: 24
195.74.93.0/24 maxlen: 24
203.14.32.0/24 maxlen: 24
203.25.108.0/24 maxlen: 24
2a12:3200::/36 maxlen: 36
2a12:3200:1000::/36 maxlen: 36
2a12:3200:2000::/36 maxlen: 36
2a12:3200:3000::/36 maxlen: 36
2a12:3200:4000::/36 maxlen: 36
2a12:3200:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 02 Aug 2024 11:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:50:d2:85:ca:02:0c:17:a8:47:41:94:80:7d:2f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Validity
Not Before: Jul 16 11:32:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7da2455deb3132db72cc8f4e4dd2a3bafdf6d775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:91:ca:54:a6:3a:82:ce:ab:74:22:85:c5:fe:
f9:d9:09:95:58:fc:d0:d9:b6:36:75:af:06:53:10:
a6:56:77:90:44:98:8e:1e:6a:3d:03:9f:b7:f6:ec:
d2:a7:01:03:c6:67:22:6c:f2:a9:a6:8c:50:24:b0:
66:2d:35:41:fd:24:55:13:27:a6:b0:09:cf:c5:af:
87:fb:4b:fd:1f:55:1d:d0:b6:0c:5f:d6:ff:d3:28:
f3:96:97:5f:41:bf:d4:95:93:67:02:95:0b:ac:be:
c1:d7:eb:bf:fa:36:32:d5:42:e0:a7:c5:e5:88:27:
09:e4:76:3c:b5:6b:a8:cd:39:c1:48:ca:2a:10:a7:
c3:74:30:02:57:61:54:ab:08:8d:e0:6f:f9:a9:ae:
3c:fe:96:3e:a6:ee:92:ec:73:8c:20:b4:6e:32:be:
dd:03:49:b6:16:f0:6a:6c:b6:1c:8c:0b:61:8c:1d:
75:e4:17:c0:e3:e4:c9:cb:da:a2:12:d0:52:e3:99:
4a:e6:59:2e:49:ff:32:ff:15:ee:e5:c0:64:e9:c5:
e4:9f:4c:92:09:15:f4:a3:a4:70:21:18:f5:f9:44:
67:a7:d9:a5:bc:66:b5:8d:4c:7e:97:69:78:f8:c3:
cc:42:1d:9d:08:cd:42:0c:d7:9d:d3:f5:10:88:67:
dd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A2:45:5D:EB:31:32:DB:72:CC:8F:4E:4D:D2:A3:BA:FD:F6:D7:75
X509v3 Authority Key Identifier:
keyid:9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/faJFXesxMttyzI9OTdKjuv3213U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/nrUOU4bICaD65lMKpejZglJR3tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.243.0/24
46.229.251.0/24
46.229.253.0/24
77.74.123.0/24
83.229.61.0/24
85.204.107.0/24
92.42.100.0/24
103.112.171.0/24
103.121.48.0/23
103.126.50.0/23
103.244.144.0/23
103.246.248.0/24
185.104.63.0/24
195.74.93.0/24
203.14.32.0/24
203.25.108.0/24
IPv6:
2a12:3200::-2a12:3200:5fff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
23:7b:82:55:2c:13:67:49:8f:93:53:1f:c9:62:46:29:e3:33:
24:75:8d:bb:93:fa:a6:99:9d:77:39:32:3c:d4:95:e3:91:5e:
92:4d:4e:00:b3:4d:8c:9c:41:80:3b:59:9d:12:d1:2e:fc:f0:
03:70:33:00:d6:75:c0:70:9c:bb:ce:72:ce:79:5f:4a:d4:7e:
0e:20:94:13:9b:ad:67:58:d3:cb:e4:97:1d:1f:88:7f:af:3c:
3c:a5:6d:4e:27:ec:3f:ea:90:a3:48:e0:b8:24:c8:fa:40:f1:
cc:89:09:aa:d3:60:07:ef:6a:cb:bd:62:ae:46:ed:b5:7f:08:
01:75:86:87:de:cb:8b:cd:08:66:0b:8e:cb:42:98:d7:4c:c7:
1b:37:f7:9d:15:86:70:6d:f2:bb:07:97:50:66:39:f8:9c:a8:
ca:d8:03:01:9d:c0:c8:82:68:33:62:41:fe:5e:f6:72:bf:b8:
15:1b:2a:75:ef:8b:d2:07:a2:1a:b6:97:79:bc:40:43:8a:61:
5a:6e:51:8b:41:42:7b:e9:67:71:f8:8c:35:e7:74:bf:f1:7d:
88:33:27:e2:0e:18:b1:00:8b:3a:28:c1:5d:bf:b2:7b:7a:f8:
38:0f:d4:72:a2:60:3e:fb:28:7a:d6:77:c0:76:5d:be:35:84:
89:0f:43:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:47 2025 by rpki-client