Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/koMBxoOSd5asDgzrO7PTIhF2lvw.roa
File: koMBxoOSd5asDgzrO7PTIhF2lvw.roa (raw, json)
Hash identifier: NtTM76ztbgtbd2oYRPUJ6Lb9A7/oAaLUzCw3i49ZePA=
Subject key identifier: 92:83:01:C6:83:92:77:96:AC:0E:0C:EB:3B:B3:D3:22:11:76:96:FC
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 018EF01EFB32BCA026AF7B52EE5752C8CDB3
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/koMBxoOSd5asDgzrO7PTIhF2lvw.roa
Signing time: Thu 18 Apr 2024 07:32:25 +0000
ROA not before: Thu 18 Apr 2024 07:32:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 46.20.99.0/24 maxlen: 24
185.160.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 09:54:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:1e:fb:32:bc:a0:26:af:7b:52:ee:57:52:c8:cd:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Apr 18 07:32:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=928301c683927796ac0e0ceb3bb3d322117696fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a4:e5:ea:ed:71:87:84:e9:d7:0c:e6:6f:6d:
dc:4a:0a:d3:48:38:28:93:31:02:66:9a:d5:d4:3a:
bf:e5:7f:b2:df:72:57:50:e0:01:56:25:42:c4:fb:
ed:28:aa:d4:cc:09:0f:84:06:d0:9f:02:b0:f5:65:
85:de:75:d0:4a:14:90:ed:29:bf:4c:fa:35:48:a6:
78:10:81:4f:1f:2e:11:fc:ef:ae:33:d4:fa:95:03:
d5:99:9b:08:4f:93:ed:23:16:7f:10:29:c9:4a:d4:
ab:f7:b8:2a:74:26:ca:ed:53:e4:07:35:67:23:ef:
69:d2:bd:5c:c0:cb:1a:ce:2e:b4:75:e6:a7:50:11:
d2:fb:77:9b:82:88:c3:9e:f1:75:94:b9:8b:7d:07:
fa:d2:de:ff:a7:37:7a:dc:32:92:69:72:43:15:aa:
06:85:15:47:92:ad:c3:9e:3a:76:98:66:22:98:c4:
18:db:3b:d8:2e:4e:4a:d7:43:dc:ab:a4:dc:bf:09:
12:a7:d8:6c:98:92:40:98:a4:a8:b3:5f:5a:d7:b4:
43:51:d3:af:43:4c:53:63:86:ac:36:59:3a:8b:b8:
89:38:4d:3f:da:bc:29:23:20:f7:11:82:fe:7f:d2:
fd:fb:5d:de:99:a1:03:6f:3a:1e:54:7e:10:28:38:
a1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:83:01:C6:83:92:77:96:AC:0E:0C:EB:3B:B3:D3:22:11:76:96:FC
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/koMBxoOSd5asDgzrO7PTIhF2lvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.99.0/24
185.160.193.0/24
Signature Algorithm: sha256WithRSAEncryption
81:e3:6f:97:a7:70:e0:a6:af:1b:11:ca:42:ca:b5:1e:a4:1c:
12:cc:ca:6a:32:e7:22:82:64:c8:dd:df:f4:df:5a:9c:aa:b0:
a7:00:19:b5:3a:19:c6:d0:d7:c4:48:a9:55:65:5f:d0:47:3e:
72:35:a3:e4:d7:c8:56:63:04:90:a9:3b:a6:d8:c8:36:b6:ed:
8f:b2:84:e9:f1:f5:9c:aa:c6:ec:0d:97:46:f4:e1:2a:2a:c7:
13:73:08:cd:5e:c3:ef:2d:c0:83:96:e5:ab:8d:aa:85:ab:69:
33:de:40:6b:22:05:18:e8:e2:bb:e0:4c:0e:4a:85:6d:20:13:
bf:db:e3:13:3f:4b:96:fb:d9:e7:65:b8:d2:9b:56:4e:8a:bd:
18:95:21:21:47:6f:29:e6:59:55:c6:9a:0b:6a:08:7a:6a:09:
c6:b3:6c:b7:3b:c9:38:f6:8f:c5:28:ec:0e:48:aa:90:2a:38:
30:c8:b2:55:58:e9:ba:9c:e1:4c:8d:d4:c1:d0:33:09:08:54:
ab:90:b5:3b:91:68:c8:6d:7d:ed:57:25:90:32:7a:44:3a:41:
05:68:45:a3:51:39:ac:a2:78:8f:a1:b4:63:e2:ce:75:26:9f:
5c:ba:84:ae:dd:57:30:48:7e:4f:4d:62:cd:22:bf:27:ba:66:
46:dd:ef:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:16:46 2025 by rpki-client