Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/_x3cOsfdKk7It9NO1P9YV5VrA40.roa
File: _x3cOsfdKk7It9NO1P9YV5VrA40.roa (raw, json)
Hash identifier: 7/aVmz1S3dcgYB+auhMjYJgUdXi3N2iEpmvOOy3p86s=
Subject key identifier: FF:1D:DC:3A:C7:DD:2A:4E:C8:B7:D3:4E:D4:FF:58:57:95:6B:03:8D
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 019378A306A36702848A01162629D7918FCD
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/_x3cOsfdKk7It9NO1P9YV5VrA40.roa
Signing time: Fri 29 Nov 2024 15:56:09 +0000
ROA not before: Fri 29 Nov 2024 15:56:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50338
IP address blocks: 46.38.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:78:a3:06:a3:67:02:84:8a:01:16:26:29:d7:91:8f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Nov 29 15:56:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff1ddc3ac7dd2a4ec8b7d34ed4ff5857956b038d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ec:f6:40:40:6c:fe:dd:00:61:3d:fe:12:15:
4f:5f:b7:52:04:7a:0d:43:f3:3f:b0:13:73:99:8a:
82:85:34:39:4e:99:31:35:1d:e6:33:ae:59:0e:2e:
9e:a7:f7:a3:f8:05:db:b4:62:64:b7:bd:c7:53:55:
f4:65:3c:c1:fc:9e:f6:07:75:e1:84:8f:a8:ae:a7:
ca:76:f0:29:a2:07:9b:84:60:7c:db:0e:17:65:6e:
2c:74:c4:54:0a:c1:c2:37:12:18:ff:e7:8f:75:b1:
c9:ad:f8:d6:f7:24:60:06:70:f3:8e:0d:da:fe:da:
41:d9:17:c8:49:21:f1:86:18:3a:f4:c1:1c:38:0c:
4f:5a:bb:24:83:eb:b5:5c:5a:75:7f:27:70:d3:dd:
35:85:64:95:22:e2:91:ce:23:fc:fb:df:4d:5c:49:
70:99:d7:d9:86:76:23:8a:80:75:3c:1e:5c:a5:7a:
c1:7d:c5:2e:6b:3b:b7:21:0f:f8:93:0f:e5:6a:84:
6d:39:64:cc:40:a3:fc:71:d5:70:eb:ec:7c:26:7a:
ab:46:f9:a6:58:15:41:89:60:95:cb:ab:1f:85:98:
a6:f8:8b:c0:c9:d4:68:a3:9d:1c:f7:6d:fe:91:24:
92:ae:f2:f7:b8:b4:1a:32:47:04:9d:25:5e:ff:b7:
7f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1D:DC:3A:C7:DD:2A:4E:C8:B7:D3:4E:D4:FF:58:57:95:6B:03:8D
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/_x3cOsfdKk7It9NO1P9YV5VrA40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.157.0/24
Signature Algorithm: sha256WithRSAEncryption
97:6a:75:d0:eb:b2:cf:a9:71:90:22:6b:16:f3:47:99:36:1e:
9b:51:37:cc:d9:76:d3:24:fe:c6:7f:44:fb:04:3d:9f:dc:1e:
8f:a7:2f:05:96:71:30:5c:2a:f7:e4:80:ed:de:02:36:65:b5:
91:45:c0:85:85:9d:e9:7a:4a:3e:9e:de:1b:80:26:39:0a:0f:
63:c6:2c:97:8f:f2:2c:a2:d3:9e:31:2e:5e:5f:6c:3a:34:85:
51:f8:81:43:32:98:9e:c9:16:e0:fe:01:e0:5c:e1:83:fd:7a:
2f:4c:fa:7e:f8:ce:07:3f:92:4e:31:e7:10:85:fb:fc:28:70:
b9:8b:60:1c:51:d0:28:e5:90:32:2c:c4:fc:c8:7b:77:28:d1:
00:51:8e:70:b8:dd:f6:22:17:1f:73:53:a3:b0:59:b2:66:55:
dc:8e:58:f5:d5:c5:f4:85:41:8b:7b:92:c0:e1:3e:91:79:11:
42:c1:46:4f:91:1f:b2:fc:33:06:e2:4d:2e:68:92:69:95:95:
06:0d:19:39:a4:f7:40:01:c9:fe:56:c3:22:54:66:39:b2:31:
68:39:59:a3:32:78:85:1c:7f:6c:2c:f8:0c:99:ba:23:20:09:
69:d6:48:a8:76:84:fe:83:b6:89:51:47:60:e1:28:b0:ef:55:
1b:c7:60:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:41:33 2025 by rpki-client