Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/6uBgjPkXNAVoCznvVI33essgCMA.roa
File: 6uBgjPkXNAVoCznvVI33essgCMA.roa (raw, json)
Hash identifier: NYSjzCLWZEfDkYGkX1hk6rSFT0GMYYlnYQSSI72SlFE=
Subject key identifier: EA:E0:60:8C:F9:17:34:05:68:0B:39:EF:54:8D:F7:7A:CB:20:08:C0
Certificate issuer: /CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Certificate serial: 01941E6406112373BF6A3F032D4944E48DA7
Authority key identifier: BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/6uBgjPkXNAVoCznvVI33essgCMA.roa
Signing time: Tue 31 Dec 2024 20:24:19 +0000
ROA not before: Tue 31 Dec 2024 20:24:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214654
IP address blocks: 45.87.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1e:64:06:11:23:73:bf:6a:3f:03:2d:49:44:e4:8d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf41addc9a4eea246d42f98c7c72b30b68d67a97
Validity
Not Before: Dec 31 20:24:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eae0608cf9173405680b39ef548df77acb2008c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ec:61:28:b4:27:e4:c4:48:5c:d9:63:be:27:
74:13:30:5c:5e:69:55:34:5d:2c:23:ee:fd:33:03:
bb:13:f4:c3:29:a4:d5:68:5f:6d:3c:e1:6c:c1:de:
0e:9d:93:2b:7a:58:97:d9:8e:71:f1:e3:92:58:9f:
7a:da:97:ec:02:be:3a:bc:43:3b:64:8b:7f:99:17:
2c:79:3e:b9:40:4e:e9:29:ad:90:02:99:07:98:46:
a3:0b:95:a7:10:f2:8c:14:fa:96:e9:58:0e:16:ad:
47:41:59:84:f9:60:b0:7b:7d:3a:9d:37:2b:80:90:
e0:e0:b9:ae:9e:5f:a8:c3:1b:91:e9:29:25:ea:0e:
dd:81:07:e6:c4:47:84:4c:6f:4c:33:d6:ee:e1:0f:
2f:35:be:71:f0:ab:06:0d:b5:17:fd:fe:ab:58:b5:
ca:06:06:b9:8d:63:f3:a1:ad:42:06:6b:c6:96:55:
a4:14:36:25:88:6c:72:3b:08:1e:14:77:c5:41:8d:
69:7f:83:ef:8b:dc:6d:d6:fa:01:d1:1e:d2:26:6f:
a5:c2:bc:64:5f:58:f4:e8:c7:84:f2:32:5a:c4:34:
ca:b0:96:ab:09:2b:0f:f0:d0:e1:71:25:b4:95:5f:
91:cd:3e:d6:e8:b8:2d:3c:3a:30:fc:47:08:30:9b:
31:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E0:60:8C:F9:17:34:05:68:0B:39:EF:54:8D:F7:7A:CB:20:08:C0
X509v3 Authority Key Identifier:
keyid:BF:41:AD:DC:9A:4E:EA:24:6D:42:F9:8C:7C:72:B3:0B:68:D6:7A:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v0Gt3JpO6iRtQvmMfHKzC2jWepc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/6uBgjPkXNAVoCznvVI33essgCMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70fcb3-8302-41e4-836a-eead508be4ee/1/v0Gt3JpO6iRtQvmMfHKzC2jWepc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.101.0/24
Signature Algorithm: sha256WithRSAEncryption
88:4a:85:c5:ae:8f:42:bf:43:72:bc:7e:c5:2a:b9:97:26:c8:
54:a4:65:c1:33:41:1d:d0:64:cd:59:d5:b9:85:07:30:59:01:
2c:37:45:1a:32:04:66:86:5c:38:43:30:14:ff:48:8d:10:d0:
a6:ce:29:4d:f6:16:3c:b7:c4:d1:60:3a:dc:12:02:a0:6e:89:
a3:73:7d:aa:b3:cb:7a:4d:82:ae:c5:db:f9:0a:27:c8:3b:33:
37:5c:f9:44:b7:9a:51:fd:f6:f9:b4:20:aa:65:62:5e:98:59:
9c:00:4b:5e:cf:2c:db:6f:19:52:dd:e8:4f:a4:c8:19:94:32:
77:b4:7d:0e:37:64:79:fa:6b:1f:59:5e:f7:a9:60:02:39:e4:
bd:5d:25:4a:c2:65:41:d2:39:53:44:c5:83:95:dc:a4:78:a9:
b0:64:6f:00:ef:ee:e8:52:be:f7:73:0a:77:e9:bb:76:a6:8d:
dd:53:74:f8:39:82:6e:ce:d2:bf:53:5e:18:70:3e:bd:d6:5f:
f6:d5:d2:91:b9:c5:3d:81:b8:34:5f:82:ba:b2:0f:f7:cd:2e:
81:8b:cc:5d:e4:80:ea:07:1d:be:a3:37:4a:b6:ec:dc:54:f7:
3b:60:01:e0:02:50:21:0f:b6:76:b3:93:86:24:c9:66:d9:d1:
df:94:ff:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:17:52 2025 by rpki-client