Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/5JtV2awFr_qdoswLzD7lY5Vptcw.roa
File: 5JtV2awFr_qdoswLzD7lY5Vptcw.roa (raw, json)
Hash identifier: /3S2BXP2OqR7cyTr46kCdgrRZwNA53jmyk9W8ExKpzI=
Subject key identifier: E4:9B:55:D9:AC:05:AF:FA:9D:A2:CC:0B:CC:3E:E5:63:95:69:B5:CC
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 0191A95CE35A40375F20DDE0078A5E47FA68
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/5JtV2awFr_qdoswLzD7lY5Vptcw.roa
Signing time: Sat 31 Aug 2024 16:55:22 +0000
ROA not before: Sat 31 Aug 2024 16:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49020
IP address blocks: 46.20.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 20:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a9:5c:e3:5a:40:37:5f:20:dd:e0:07:8a:5e:47:fa:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Aug 31 16:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e49b55d9ac05affa9da2cc0bcc3ee5639569b5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:44:37:fa:c1:22:15:f9:ec:51:95:c5:c1:b4:
29:c3:7d:58:f8:31:6b:41:52:2b:0e:6b:eb:d3:30:
ce:90:d2:6c:c8:b5:71:8d:e4:09:c6:49:86:dd:f4:
13:63:2b:90:8c:a5:ed:ef:37:12:bd:cb:59:0d:df:
16:07:b6:3c:b6:24:03:e1:ba:d6:fa:2d:43:6a:37:
d4:83:d0:d5:12:43:f4:f5:a7:01:92:d9:89:99:31:
c1:ff:c8:30:b4:45:a7:f6:e3:60:d1:59:f1:7c:f3:
4b:4f:aa:1a:13:56:5e:45:eb:53:76:19:76:26:33:
76:79:b3:fb:fe:dc:f8:c4:b4:78:75:cc:0e:86:c8:
4e:00:11:1e:24:7c:87:ad:4b:6e:67:18:14:45:17:
89:f0:33:c2:c9:0e:53:9d:69:45:9b:1a:bf:b9:a3:
c8:04:5f:4b:b7:21:9a:26:63:8e:b3:2d:35:7c:48:
2f:92:ac:2c:17:b6:df:6a:2a:4f:e7:6d:69:86:09:
8c:5f:31:2f:65:55:ab:2c:98:e7:a3:f5:72:0f:41:
d4:78:10:67:c0:b1:7a:31:3d:06:bc:a6:9c:df:f5:
7d:d9:c7:f2:6a:d5:7f:59:8e:f5:8e:48:9a:bc:7f:
f6:9f:d2:5f:c5:dd:38:79:46:07:e6:4d:ff:9e:96:
b2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:9B:55:D9:AC:05:AF:FA:9D:A2:CC:0B:CC:3E:E5:63:95:69:B5:CC
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/5JtV2awFr_qdoswLzD7lY5Vptcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.104.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ba:91:06:c3:a3:e7:ff:23:10:50:d5:85:64:53:9c:a6:c9:
9a:c0:90:ac:73:a8:0f:26:9d:93:f0:fa:95:2b:fb:b0:92:ed:
b6:b9:9d:4e:81:02:ba:aa:30:91:93:51:38:a0:eb:16:44:f0:
f7:f8:cd:ce:9d:af:28:5b:b7:2d:7a:46:32:bc:1a:9b:07:97:
c3:7a:56:04:2c:ec:91:15:c2:ce:b8:ff:ce:19:39:35:eb:b3:
13:05:60:2a:ec:50:7e:60:58:38:b7:1a:32:22:27:55:43:5f:
f2:42:21:14:e9:bb:d0:88:2a:e0:db:11:f4:b2:57:1d:fd:57:
bc:6f:a7:05:f5:e6:c5:b1:27:88:55:5b:de:f5:92:2d:8d:d3:
63:ae:c2:5d:db:c5:ab:f0:25:31:45:f4:1c:fa:5f:62:c5:bc:
d6:cb:c7:1d:af:9a:51:ac:b9:fb:ed:be:4c:39:f3:68:0b:76:
ad:da:37:7c:4d:c5:1e:8b:4a:d3:02:d3:a0:72:8d:a6:81:4a:
21:03:ec:44:a3:3e:bf:3b:82:57:a4:80:13:b1:49:a3:66:51:
2a:e5:10:03:49:0a:39:aa:24:51:72:c7:e7:cc:69:f0:d1:db:
fa:57:bd:03:cb:ee:c9:6c:e6:45:0d:e6:6d:b1:0d:2d:58:52:
f6:a5:43:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:13:51 2025 by rpki-client