Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Rq1zSxdtVXu2LUpMSKA1yIAGWKU.roa
File: Rq1zSxdtVXu2LUpMSKA1yIAGWKU.roa (raw, json)
Hash identifier: w8zgWOyJSr8N0vGIVVGj4xoEJ+6DfaHVjJd8aaprm8E=
Subject key identifier: 46:AD:73:4B:17:6D:55:7B:B6:2D:4A:4C:48:A0:35:C8:80:06:58:A5
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A363ABE61ECCEA659B60EF3B4C228
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Rq1zSxdtVXu2LUpMSKA1yIAGWKU.roa
Signing time: Tue 02 Jan 2024 12:33:33 +0000
ROA not before: Tue 02 Jan 2024 12:33:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199528
IP address blocks: 95.46.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:36:3a:be:61:ec:ce:a6:59:b6:0e:f3:b4:c2:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46ad734b176d557bb62d4a4c48a035c8800658a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:59:5d:af:5b:50:04:19:9a:96:0a:7e:27:94:
9d:cf:a2:3f:92:a0:ad:82:f5:30:f5:87:d1:b0:24:
99:fc:25:49:cb:d8:9d:a1:b4:93:0e:18:e4:b8:99:
31:af:82:65:5f:a5:84:82:49:c8:ca:20:3e:9f:de:
c3:17:e0:89:e8:91:6c:ac:f5:a0:25:d4:d1:7e:3e:
8b:8f:bf:39:68:64:46:6a:e6:20:29:e9:67:67:45:
ec:e1:a5:72:53:8c:d2:ee:f0:be:93:9d:64:0f:f8:
87:72:ac:79:df:e0:27:8a:6c:bf:44:77:0e:e6:57:
03:c2:29:15:20:68:b2:92:90:b6:6d:f1:9e:66:6a:
2b:c7:18:ac:f3:1f:59:49:94:b6:dd:75:52:e6:bc:
77:ad:88:1e:3c:f2:f3:9c:e9:d9:7a:f6:75:59:63:
a4:1a:ce:c8:8c:b3:d9:56:b5:93:8e:1d:91:27:a0:
e4:31:e0:67:da:c2:3c:b5:81:df:38:e1:f2:3b:56:
2d:a1:ca:b9:72:a1:13:44:85:87:09:9b:54:36:94:
ba:0b:3b:20:39:9c:15:31:75:b9:22:c0:ae:7f:14:
79:78:44:dd:89:d7:d0:85:33:77:72:72:e7:52:94:
f2:85:ee:b3:a3:46:43:d4:0f:bc:4c:47:db:d0:fc:
5b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AD:73:4B:17:6D:55:7B:B6:2D:4A:4C:48:A0:35:C8:80:06:58:A5
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Rq1zSxdtVXu2LUpMSKA1yIAGWKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.46.5.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f7:a9:57:89:71:26:9d:79:81:a6:11:d2:3c:78:5b:d8:71:
fc:b9:c9:d7:0f:56:74:36:b6:5b:2f:78:93:aa:1b:0c:eb:93:
56:be:06:4d:c6:6f:b7:17:23:e4:16:d2:a4:72:c6:c3:d4:f5:
0d:ce:91:68:c9:18:78:91:b0:ef:3d:f8:77:5b:0e:a8:91:59:
65:57:d7:79:ef:59:60:c2:ea:bd:5d:50:cd:0e:60:e8:7a:ba:
15:2b:91:30:7f:e6:a6:18:9f:e2:14:31:92:53:07:10:7b:ff:
79:d3:22:6e:59:d4:53:b3:2a:4f:5b:8a:10:d5:4c:7d:27:42:
1d:33:85:8d:36:f1:08:3b:0a:58:ac:04:4e:13:57:f3:b8:19:
49:af:a9:4e:ac:46:57:8c:c0:6d:94:e7:3b:b9:cc:6a:b5:c2:
64:25:d0:e4:2c:29:f0:1a:58:2d:c1:c7:2b:c6:5d:5c:ec:10:
e4:3b:62:33:c3:cc:3f:cc:7c:bd:ca:78:f6:73:bd:6f:17:d9:
4a:0c:e6:e0:4a:51:af:59:d7:c5:6a:89:fa:8b:c3:18:30:37:
4a:e1:53:f8:6a:8f:4d:4b:f0:49:2f:fe:37:96:c5:54:ba:85:
b0:b3:70:40:73:27:8b:42:ca:5e:c3:5f:38:37:94:be:11:45:
1a:8f:c5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:52 2025 by rpki-client