Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/gHbQWii18eULuGV2iShZmJnUW-g.roa
File: gHbQWii18eULuGV2iShZmJnUW-g.roa (raw, json)
Hash identifier: 6z3TIUvYkC/noYGSKcYl6f/552f7sBvu0z3wjf2qg+k=
Subject key identifier: 80:76:D0:5A:28:B5:F1:E5:0B:B8:65:76:89:28:59:98:99:D4:5B:E8
Certificate issuer: /CN=69737c6e0602be3804e277580bab7e21e6e33474
Certificate serial: 01919CEBC578F0AF20E9AD61A6D29F1E21EF
Authority key identifier: 69:73:7C:6E:06:02:BE:38:04:E2:77:58:0B:AB:7E:21:E6:E3:34:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXN8bgYCvjgE4ndYC6t-IebjNHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/gHbQWii18eULuGV2iShZmJnUW-g.roa
Signing time: Thu 29 Aug 2024 06:56:22 +0000
ROA not before: Thu 29 Aug 2024 06:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215224
IP address blocks: 146.19.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 04:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9c:eb:c5:78:f0:af:20:e9:ad:61:a6:d2:9f:1e:21:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69737c6e0602be3804e277580bab7e21e6e33474
Validity
Not Before: Aug 29 06:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8076d05a28b5f1e50bb865768928599899d45be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:da:92:e5:20:f6:69:2e:71:03:d3:3a:0d:
e5:4b:7b:c0:bb:86:56:6c:1a:09:cf:c4:0a:2c:62:
43:0a:be:04:ee:5e:69:95:ce:7d:06:0e:59:17:21:
a8:d4:e5:fb:05:33:f8:d1:fc:9f:9c:5f:4d:45:7b:
9c:cc:cc:f9:77:6f:d1:a7:eb:24:ad:6c:f5:b4:ca:
0b:6c:7e:8b:44:b1:56:65:64:44:4d:c8:18:06:10:
75:c1:1a:5e:a5:fe:1a:da:8d:90:85:d6:c1:02:e4:
a7:d2:8e:af:cd:fe:be:e7:5c:18:16:0e:09:4a:27:
68:64:b4:bd:63:6f:72:0a:45:1a:5c:fc:40:14:63:
ff:b6:b1:41:a8:33:dc:41:3e:24:bc:46:c3:24:25:
95:6c:55:c7:36:c3:8d:22:13:cf:cc:21:44:1b:43:
45:e8:cc:d7:ae:19:b0:f5:3c:67:be:c2:b1:cb:75:
34:89:c1:21:c1:92:ec:91:1b:fe:4f:4a:81:b7:fb:
c4:c5:5f:28:d9:c7:7e:7a:b1:da:96:f3:99:fb:66:
7a:81:7e:f9:d5:d1:16:9d:d4:ba:a2:00:24:52:43:
f8:aa:59:34:4d:f1:e3:c1:76:2d:90:7e:ef:5b:c2:
91:a2:06:93:37:cd:f0:76:cf:61:d9:d3:e5:e2:b8:
67:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:76:D0:5A:28:B5:F1:E5:0B:B8:65:76:89:28:59:98:99:D4:5B:E8
X509v3 Authority Key Identifier:
keyid:69:73:7C:6E:06:02:BE:38:04:E2:77:58:0B:AB:7E:21:E6:E3:34:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXN8bgYCvjgE4ndYC6t-IebjNHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/gHbQWii18eULuGV2iShZmJnUW-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/b6af9d-47ba-4b92-b41a-838a4505735a/1/aXN8bgYCvjgE4ndYC6t-IebjNHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.122.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:0e:98:6f:38:71:1e:80:25:28:d6:26:09:0b:ad:6d:7c:d7:
08:90:e3:ec:fa:0d:52:89:6e:6a:43:44:79:2a:65:5b:c4:48:
be:06:35:21:7d:14:3b:d7:01:1b:46:b1:6c:f2:a3:d4:72:5f:
0a:1d:9c:15:cf:3a:cd:25:31:82:98:4c:0b:a8:eb:39:11:d7:
79:33:d2:28:63:fe:45:06:fc:d9:65:c7:6a:05:90:47:83:a1:
bd:4f:52:ce:f0:4f:32:97:47:be:50:57:56:4f:9c:85:3d:9f:
9c:43:d3:2b:6f:02:5f:94:50:09:f9:dc:3c:7d:45:a4:c0:aa:
06:03:4e:74:5a:84:84:6e:fc:a7:e7:df:f6:e1:1e:44:90:6c:
18:15:9e:fc:a8:fd:6a:9f:78:b4:9a:f1:45:37:b6:85:80:59:
eb:f5:1d:ef:b1:a3:d2:52:77:2d:37:a7:fe:a2:af:a4:df:d9:
44:db:3f:ac:2f:85:e4:42:35:cc:58:27:92:ba:f1:ed:76:cf:
93:51:47:30:b8:fe:d9:d7:40:ce:f7:f5:89:d3:dc:ee:ac:d1:
49:ed:35:12:0e:6e:57:61:af:3b:56:3f:4e:42:9c:ad:37:02:
05:18:08:a7:c4:f0:b6:49:2d:3c:f2:91:37:18:fb:94:d7:2e:
fd:1b:47:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:18:19 2025 by rpki-client