Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/AKf6sty_QH4aqrg2Rv3wfZzy5Ws.roa
File: AKf6sty_QH4aqrg2Rv3wfZzy5Ws.roa (raw, json)
Hash identifier: VgeZftJcTAeDmU7q8crwqu+AFM/bBLBObG3X1qtiGL4=
Subject key identifier: 00:A7:FA:B2:DC:BF:40:7E:1A:AA:B8:36:46:FD:F0:7D:9C:F2:E5:6B
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 0191C7DF4111250F7D402F52FC275FCAD864
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/AKf6sty_QH4aqrg2Rv3wfZzy5Ws.roa
Signing time: Fri 06 Sep 2024 15:06:22 +0000
ROA not before: Fri 06 Sep 2024 15:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199239
IP address blocks: 46.20.104.0/24 maxlen: 24
185.100.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c7:df:41:11:25:0f:7d:40:2f:52:fc:27:5f:ca:d8:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Sep 6 15:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00a7fab2dcbf407e1aaab83646fdf07d9cf2e56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6b:b6:a4:a1:45:4c:04:26:c6:94:74:99:2b:
7c:49:68:97:52:c5:d9:2c:50:40:c6:13:ff:c1:4a:
7c:a8:f2:05:5b:83:09:64:b2:42:53:28:fd:4b:d6:
6f:e2:f1:c3:f9:14:51:30:d0:29:07:49:79:7b:17:
27:73:c6:3f:07:ab:9c:ac:95:6e:8d:cf:83:5d:b6:
c8:84:17:43:c5:f3:f9:cb:7d:fc:4c:69:4a:90:60:
6c:bb:c2:ac:72:65:85:f6:2d:c7:fb:ad:f2:b9:d0:
28:fa:30:14:a7:01:22:2d:7d:74:8a:0e:76:e4:31:
4f:7a:20:b8:66:41:4b:46:df:06:6f:81:47:09:ba:
50:e7:58:98:3a:19:e4:34:ee:9c:e9:b9:32:e6:a4:
eb:5e:7a:a2:e3:98:1a:c5:7a:24:4c:78:55:c8:57:
d9:70:ff:ac:4c:fe:6e:e6:7e:e7:0d:3a:58:46:26:
f2:7b:12:70:f1:5a:a1:09:7b:2d:c7:fe:36:62:96:
1a:4e:3a:da:1b:4f:3f:da:2b:7e:03:dc:fd:14:d2:
10:c6:33:e8:a5:2d:45:89:88:17:af:02:9e:6c:8d:
fb:e7:ba:aa:9d:62:19:a1:da:b5:1d:3b:05:70:74:
22:55:e6:75:0e:a6:60:69:16:68:18:c7:63:b5:03:
14:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A7:FA:B2:DC:BF:40:7E:1A:AA:B8:36:46:FD:F0:7D:9C:F2:E5:6B
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/AKf6sty_QH4aqrg2Rv3wfZzy5Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.104.0/24
185.100.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:80:d9:95:fc:b8:27:3a:28:cd:90:32:d0:d0:b9:10:aa:32:
4d:20:0c:8c:e2:26:ed:7a:64:09:79:10:c6:37:5e:0f:56:45:
59:73:9c:b5:36:de:4d:07:4d:ec:ce:fb:df:11:56:bf:42:10:
49:81:36:18:aa:4b:ee:95:1c:9a:53:cc:91:6a:97:ac:87:25:
ba:2d:3e:d8:d0:e1:e6:f8:42:15:dd:05:3e:2a:19:6b:0e:a9:
07:5b:1b:16:ee:18:eb:ff:99:e8:25:a5:de:2f:c0:06:da:c7:
4f:3b:81:87:b0:d5:68:39:08:52:2d:30:2e:9b:1c:4a:9c:c0:
42:ab:b0:3d:5d:e1:d2:10:cd:3f:49:4c:a8:07:88:12:d7:56:
e9:ca:10:7d:7f:1a:7c:f1:28:6e:6f:55:b4:f1:74:5d:1b:78:
3a:16:25:9a:2e:57:86:07:5e:e7:e3:63:12:d1:2c:94:58:b2:
aa:62:85:ea:b8:66:e5:51:9d:76:10:1c:72:99:73:6f:04:cb:
56:fb:a0:43:5f:be:d6:90:18:15:4a:c4:ed:0b:2f:fa:37:15:
74:74:19:7e:4a:5c:a8:83:38:b6:88:74:cc:72:9e:e3:fe:2c:
5f:28:29:71:ff:3d:f4:5c:bc:2f:a2:ec:11:41:c2:30:8e:b2:
60:90:39:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:15:36 2025 by rpki-client