Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/BnmTBtniaiFIPPqyFvs5fAT31i0.roa
File: BnmTBtniaiFIPPqyFvs5fAT31i0.roa (raw, json)
Hash identifier: DFfpgYko936dxSQ3h5tIyt6S/iBR87DaCF32ZFAW6kM=
Subject key identifier: 06:79:93:06:D9:E2:6A:21:48:3C:FA:B2:16:FB:39:7C:04:F7:D6:2D
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 019443D76C9DBB736196D17ECE96E7ADCBAE
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/BnmTBtniaiFIPPqyFvs5fAT31i0.roa
Signing time: Wed 08 Jan 2025 02:56:18 +0000
ROA not before: Wed 08 Jan 2025 02:56:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395793
IP address blocks: 124.155.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Jan 2025 09:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:43:d7:6c:9d:bb:73:61:96:d1:7e:ce:96:e7:ad:cb:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 8 02:56:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06799306d9e26a21483cfab216fb397c04f7d62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:38:64:bf:e8:93:98:a4:4c:f1:0b:d7:b9:f1:
2f:f8:55:e1:05:fa:81:f2:91:b2:6d:c6:20:c0:38:
f5:8f:df:ec:c0:2e:b9:a3:1a:f9:52:f8:13:12:8d:
25:f0:03:e0:d1:fb:66:3a:38:73:d7:44:d2:fd:bf:
a4:06:2a:46:9a:6a:7e:02:c4:5d:48:1e:a6:a5:80:
1c:fc:11:1c:34:d8:ab:d1:80:97:d4:05:52:a4:6a:
ee:41:49:f1:60:b6:b8:96:ba:c6:fb:a3:24:e3:b0:
b8:da:87:ea:5c:74:8d:b5:52:37:1e:4e:fb:7c:4b:
2b:82:f4:5e:0c:a3:74:a5:69:35:fd:f2:52:69:99:
86:0d:09:34:41:90:db:33:1a:f6:06:db:7e:b9:93:
70:74:c4:3b:b8:35:8c:de:63:80:e5:ba:32:1e:6f:
4b:5c:e6:f5:33:a2:cd:86:3a:5b:b9:01:32:a8:ef:
f2:75:d5:75:ef:cf:03:03:7d:6b:7d:29:bd:ae:4b:
83:31:a3:89:a2:41:9e:0a:96:7a:a2:e4:36:cc:f7:
0a:66:a5:79:de:ec:3f:e2:1a:c6:9d:dc:f5:c6:48:
f5:1b:7b:ff:8a:50:78:25:9c:5f:c5:23:51:5b:62:
db:ae:4e:e8:5b:77:e9:63:02:15:4e:61:5f:8a:51:
16:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:79:93:06:D9:E2:6A:21:48:3C:FA:B2:16:FB:39:7C:04:F7:D6:2D
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/BnmTBtniaiFIPPqyFvs5fAT31i0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.155.240.0/24
Signature Algorithm: sha256WithRSAEncryption
69:60:18:8a:ed:46:8d:de:68:b6:31:fd:06:b2:ad:83:df:e8:
93:87:f9:4f:e3:b2:66:f9:07:f1:38:d1:4a:5d:8c:ff:5e:2b:
03:f3:c9:b0:d6:c7:11:3d:0a:e8:45:fe:be:a6:5f:b4:92:e0:
1f:3c:fb:64:f0:5d:d9:d5:d6:6e:f9:72:b3:a2:e2:51:5e:29:
50:82:a4:5a:b1:13:8b:4f:9c:87:fa:b7:8a:16:40:42:8c:5a:
18:b9:71:11:a4:1e:d7:b8:17:0e:89:5a:ee:bd:5b:bf:e1:40:
66:2b:32:c2:4d:19:d8:a2:dd:d0:35:97:ee:9f:32:29:05:46:
96:1c:cb:14:32:46:a2:cf:8f:a1:87:0e:2b:2f:73:a6:6f:cc:
47:30:55:b4:19:b3:da:54:8d:ff:3c:61:c5:e6:29:fb:ad:8e:
a6:1f:8d:cc:91:a1:dc:a4:38:8f:0d:75:b8:df:03:31:97:8a:
75:a2:93:52:3b:85:09:76:7a:2d:27:8b:2c:c7:1a:1a:6c:91:
0f:fe:88:83:36:ed:c4:1e:a3:e7:5e:22:45:f9:71:ef:d0:3d:
00:f3:ba:46:47:b5:69:a8:8b:92:48:d8:e5:5e:de:c6:ff:15:
9f:9e:84:81:65:fa:c7:d2:fa:1c:36:1a:2b:f9:d6:34:72:35:
19:38:ab:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:48:58 2025 by rpki-client