Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/avFxM8dmzoY4VqfZZd756BSsY-4.roa
File: avFxM8dmzoY4VqfZZd756BSsY-4.roa (raw, json)
Hash identifier: PN2NW9v3bCFtIEUD9Aqn5aiK8oLsiWzuPBNdFq1tqSc=
Subject key identifier: 6A:F1:71:33:C7:66:CE:86:38:56:A7:D9:65:DE:F9:E8:14:AC:63:EE
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 0191B9A373EDB12CEA2B456A43C203D51EA5
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/avFxM8dmzoY4VqfZZd756BSsY-4.roa
Signing time: Tue 03 Sep 2024 20:46:22 +0000
ROA not before: Tue 03 Sep 2024 20:46:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4199239
IP address blocks: 46.20.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 15:06:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b9:a3:73:ed:b1:2c:ea:2b:45:6a:43:c2:03:d5:1e:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Sep 3 20:46:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6af17133c766ce863856a7d965def9e814ac63ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:32:ee:8d:0b:1a:eb:2b:de:b7:df:16:18:97:
ab:a9:14:e2:67:46:50:1f:3e:49:7e:a6:69:0f:fb:
f3:22:e7:a2:81:9a:ee:1e:9b:ff:4d:1b:bc:f2:f3:
02:bd:e2:d8:41:2f:c7:8e:0c:27:a0:8d:64:bd:75:
ed:c0:83:a2:26:cf:36:80:75:23:0c:9e:bf:4e:d0:
e2:9e:ed:5e:9a:43:af:58:b8:b1:ff:f9:95:56:fb:
78:83:85:46:23:de:72:64:fc:1f:5a:0c:aa:30:9a:
17:02:83:b2:4e:60:7b:6d:6e:3b:a3:b5:1c:1e:2b:
16:e7:90:3b:aa:32:fc:f8:15:95:5e:0c:68:17:45:
2c:04:33:29:ff:62:1f:5e:8e:45:74:3e:0c:b3:54:
31:5a:b2:b9:85:82:57:b2:bc:23:40:03:92:2d:43:
81:16:6b:51:fe:2e:72:a3:04:f5:ea:cc:48:d9:29:
b5:0f:02:58:e8:b9:b6:c2:73:f7:c8:0a:ca:4a:19:
e3:03:c7:60:76:0e:59:2d:eb:7b:ad:de:49:ec:a7:
47:05:e8:15:7c:d4:c2:57:ed:b3:69:ef:4d:6c:7e:
a6:5f:4a:23:ca:74:bb:60:c2:3f:87:ab:98:77:28:
44:31:36:73:d4:69:ea:f1:80:b4:72:ea:f6:53:b5:
a7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F1:71:33:C7:66:CE:86:38:56:A7:D9:65:DE:F9:E8:14:AC:63:EE
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/avFxM8dmzoY4VqfZZd756BSsY-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.104.0/24
Signature Algorithm: sha256WithRSAEncryption
32:59:56:ed:20:a2:be:94:b7:09:2f:0e:ab:62:54:de:f4:27:
94:b0:a4:03:6e:16:86:b1:69:0d:09:f3:68:50:b5:2d:8f:18:
98:ae:32:69:ce:39:6a:67:de:37:31:0b:ab:44:3c:5d:c4:d2:
4c:51:0e:13:89:ea:5a:2b:6d:b0:0d:dc:9e:07:8e:b3:d1:61:
7c:a2:44:2f:ce:9f:30:48:1b:f9:f9:74:6b:78:02:2d:2b:61:
7e:2d:da:87:a8:3a:14:0d:ac:2c:54:db:38:81:fc:5a:2a:6e:
7a:58:49:f1:e2:9b:8e:70:89:99:91:34:bf:38:ab:28:87:2b:
49:c1:33:56:46:7d:c5:ac:ff:5a:cb:6a:5a:34:fe:90:7a:97:
85:f2:88:26:3a:78:78:53:af:9f:ff:47:af:6e:93:6a:31:d7:
63:0f:77:18:0f:9b:ad:b5:63:dd:a7:70:75:cf:75:e4:9d:46:
d5:ee:e1:05:05:9b:44:5c:49:14:36:5d:c7:85:95:9a:ba:6b:
e7:1a:64:a0:8e:47:c6:ec:3c:7e:f2:9d:67:89:1d:b8:35:61:
75:4b:95:cc:b0:b0:5c:8e:67:0e:40:11:48:63:f7:ee:cc:5d:
5d:08:08:01:33:5f:7f:ed:35:98:c2:1a:76:f6:58:04:f0:8c:
c8:1b:82:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:23:44 2025 by rpki-client