Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/JruvBhM4J4tY_yal2sOi9uiohWo.roa
File: JruvBhM4J4tY_yal2sOi9uiohWo.roa (raw, json)
Hash identifier: pkIbENcfT1xlfldgMckJ4v0WmR5fGNlbUQHT/vZ3hF0=
Subject key identifier: 26:BB:AF:06:13:38:27:8B:58:FF:26:A5:DA:C3:A2:F6:E8:A8:85:6A
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 018CC9BC6EBC751C13B121FFFA50E6896136
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/JruvBhM4J4tY_yal2sOi9uiohWo.roa
Signing time: Tue 02 Jan 2024 10:33:38 +0000
ROA not before: Tue 02 Jan 2024 10:33:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206505
IP address blocks: 46.20.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 14:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:6e:bc:75:1c:13:b1:21:ff:fa:50:e6:89:61:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Jan 2 10:33:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26bbaf061338278b58ff26a5dac3a2f6e8a8856a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:55:9b:e9:f1:5a:60:e7:0a:2f:36:3a:53:d4:
17:db:98:44:4e:9a:f7:96:b2:bc:25:3d:f3:a7:af:
46:27:fc:e3:93:71:6c:b0:5f:71:98:6e:70:f5:7d:
4b:52:28:04:97:e6:f6:6d:a8:ff:69:37:17:6b:c6:
51:2c:39:5f:68:f0:e2:d4:61:03:1d:59:3a:03:5e:
88:73:c9:87:73:ef:ae:c1:e3:dc:03:98:af:a7:d8:
3c:31:89:96:3b:18:b6:f9:11:0a:74:dd:05:33:b8:
aa:61:b0:3c:ee:d5:37:6e:3a:f6:b1:ce:1c:3b:05:
b7:5b:08:71:76:38:c0:30:55:3a:6a:d8:fb:56:f3:
c4:0d:36:31:91:71:cd:56:12:84:0d:f2:45:d8:a8:
23:6a:d6:ea:f4:a6:f2:7d:1c:39:ce:1e:33:0e:40:
a0:38:77:f7:39:a9:08:ea:54:7a:1e:1d:90:17:a7:
9e:45:4b:52:34:50:d1:16:9a:61:e8:49:58:90:5a:
03:44:8d:4f:c3:61:93:e0:1d:9f:98:d2:1d:99:4a:
8c:80:40:70:f2:32:13:27:3b:3f:c6:9a:4a:c6:81:
49:c7:25:cf:92:04:b2:35:5c:aa:21:cd:c7:1d:db:
54:6b:34:4c:85:69:67:39:b0:27:20:90:38:8f:86:
aa:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:BB:AF:06:13:38:27:8B:58:FF:26:A5:DA:C3:A2:F6:E8:A8:85:6A
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/JruvBhM4J4tY_yal2sOi9uiohWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.100.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:20:d1:59:e7:4a:45:b5:11:86:94:37:6c:78:f6:a0:69:25:
78:7a:19:a9:4a:47:19:89:72:ab:a9:fa:92:e0:56:cf:7d:1d:
9c:38:6b:a1:9f:78:be:29:99:4c:eb:bc:0e:fc:3b:fe:45:8f:
67:1f:9c:58:71:8e:0f:e2:16:a3:25:15:44:77:49:1b:8b:30:
38:cb:98:88:78:a8:b9:44:04:29:b6:90:ba:e6:8b:72:4a:e2:
4c:2d:fa:76:81:ba:6f:5c:73:ee:e6:a7:4e:98:5d:a8:c8:06:
bb:8b:06:c8:1c:2a:8e:b1:7f:76:b3:a2:4d:2e:48:72:07:56:
cc:ff:a8:b4:31:63:52:a7:78:71:de:0d:95:c8:24:22:dd:18:
6c:76:13:99:52:c6:2c:da:ef:5a:a5:92:dd:ac:f9:b3:f4:fa:
30:bb:71:58:f9:41:8b:fe:58:e8:90:13:98:6e:3e:0e:26:b9:
68:0b:33:43:f9:39:29:4a:20:fc:7a:19:ab:df:08:36:1d:0d:
3e:44:ee:5f:9d:14:55:90:1a:50:78:c5:c9:bd:de:ad:55:84:
59:25:5a:cf:e9:45:73:e3:ad:b0:32:07:0e:8c:1f:71:25:af:
84:2f:7d:b3:e5:ae:f8:f8:ad:ff:0a:b2:c1:31:0a:af:97:b7:
10:fd:a5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:27:02 2025 by rpki-client