Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/RQSO3UNuzhIZdGWi0oFBkSsRwv8.roa
File: RQSO3UNuzhIZdGWi0oFBkSsRwv8.roa (raw, json)
Hash identifier: b+neZxBZOTLDUHERZN2Tdbe6lfhPWb5sh36A+93aGXk=
Subject key identifier: 45:04:8E:DD:43:6E:CE:12:19:74:65:A2:D2:81:41:91:2B:11:C2:FF
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 019119B89D8CA261613A03293507717879C6
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/RQSO3UNuzhIZdGWi0oFBkSsRwv8.roa
Signing time: Sat 03 Aug 2024 19:30:14 +0000
ROA not before: Sat 03 Aug 2024 19:30:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 141.226.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 07:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:19:b8:9d:8c:a2:61:61:3a:03:29:35:07:71:78:79:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Aug 3 19:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45048edd436ece12197465a2d28141912b11c2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b8:72:dc:09:8c:53:8d:7a:71:75:35:58:3f:
00:94:12:fa:6a:16:76:d1:2c:a5:d4:ff:8f:d3:53:
06:c5:5a:3f:d8:6e:43:c6:e5:6e:b2:c8:83:1f:b0:
7c:82:b4:c4:c7:bf:21:32:90:5c:c9:ec:fb:1a:33:
cd:c0:fb:df:04:af:5f:44:cf:ad:82:9c:6d:2c:42:
41:97:41:46:e2:e2:0d:93:64:10:08:51:4a:66:97:
56:09:8c:16:90:6f:79:a5:2c:12:33:46:04:36:1a:
1e:3e:0b:d0:87:4b:86:41:d4:0a:88:55:28:8c:d7:
a6:28:89:a1:29:1b:5b:8d:8c:81:b4:a3:84:c6:bb:
e5:05:2c:c5:17:1b:8e:eb:ea:90:de:92:c5:a2:15:
67:36:0d:6a:4e:cf:97:3f:54:77:57:58:5c:ae:12:
92:d9:23:9f:c3:52:93:ec:f7:72:31:dd:c2:79:20:
08:61:13:45:7a:64:78:66:f3:9f:e1:49:f4:d3:f8:
ec:25:4e:eb:c9:4b:c3:a3:ca:26:41:a5:c3:b9:8c:
c1:68:8d:8d:c5:ce:e6:a6:2f:1c:c6:4a:c0:3d:0b:
32:e7:d9:c5:f4:c6:61:a4:a4:0e:c1:99:7d:4f:3b:
10:c5:59:0c:48:97:e2:fb:49:c1:08:b1:01:b7:8c:
84:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:04:8E:DD:43:6E:CE:12:19:74:65:A2:D2:81:41:91:2B:11:C2:FF
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/RQSO3UNuzhIZdGWi0oFBkSsRwv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.246.0/24
Signature Algorithm: sha256WithRSAEncryption
69:35:87:79:71:e3:6c:fd:fd:81:30:4a:68:02:94:e5:b6:58:
53:72:c6:56:0d:16:05:09:a2:20:e2:d1:18:75:4f:4d:eb:89:
82:a1:70:b0:b1:f8:d6:9b:27:b4:bb:01:78:a5:12:7c:48:d8:
f1:cd:40:f9:07:d1:6a:cf:7a:cd:11:c5:a0:2b:43:6d:1e:ec:
d4:bd:42:32:a6:0f:e4:f1:09:1d:b2:de:dc:93:57:3c:88:61:
8f:2a:ad:53:34:14:3d:2f:b0:c2:e4:69:07:60:77:ae:3c:2a:
68:fb:df:8c:a9:60:40:41:68:2b:c8:66:2e:7c:8d:8c:04:e2:
e7:1a:06:88:77:17:bb:28:3a:83:1d:df:ae:b5:ed:bc:92:13:
63:dd:a4:d7:dd:a7:ee:dc:95:0e:16:2d:94:8b:71:85:20:48:
60:35:77:84:a9:10:18:e7:9b:85:54:72:5c:b1:4e:37:45:81:
17:95:c6:61:1b:01:3d:05:b4:ec:d5:b3:bf:ee:22:2d:76:3f:
d3:dd:d6:e9:dd:d4:08:94:31:83:b2:a9:70:9b:29:16:9a:a9:
f6:37:33:a3:39:d2:42:77:cd:12:af:69:01:cd:66:16:be:a5:
bd:40:54:be:f2:78:04:d8:4c:a8:bc:c8:9b:99:36:d7:6d:f7:
3e:6b:0a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:53 2025 by rpki-client