Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/1qm3Mf0sxLsm_3eFprF7b8EXIRs.roa
File: 1qm3Mf0sxLsm_3eFprF7b8EXIRs.roa (raw, json)
Hash identifier: 3LfqRVXKyl3+Y7d3t9hKEGcLEPbZlfpC1NsjE8HFirw=
Subject key identifier: D6:A9:B7:31:FD:2C:C4:BB:26:FF:77:85:A6:B1:7B:6F:C1:17:21:1B
Certificate issuer: /CN=a4bcc12afa4f05739f45f605e221c64c3c0d2ed6
Certificate serial: 018CC34955BC41167849AFDCED11A6AC24E1
Authority key identifier: A4:BC:C1:2A:FA:4F:05:73:9F:45:F6:05:E2:21:C6:4C:3C:0D:2E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pLzBKvpPBXOfRfYF4iHGTDwNLtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/1qm3Mf0sxLsm_3eFprF7b8EXIRs.roa
Signing time: Mon 01 Jan 2024 04:30:12 +0000
ROA not before: Mon 01 Jan 2024 04:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211967
IP address blocks: 46.229.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:55:bc:41:16:78:49:af:dc:ed:11:a6:ac:24:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4bcc12afa4f05739f45f605e221c64c3c0d2ed6
Validity
Not Before: Jan 1 04:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6a9b731fd2cc4bb26ff7785a6b17b6fc117211b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:18:b8:5d:cd:c0:ec:5d:0b:ff:59:02:fe:36:
38:ed:36:11:94:8d:df:04:c2:f3:96:9a:8b:9a:1a:
7d:df:f2:72:cd:5f:54:52:6c:d4:22:fd:24:9b:48:
87:8a:8a:85:34:de:64:16:a9:93:2b:1f:f0:39:19:
3f:33:99:91:16:2a:c3:24:08:d7:35:5e:a9:80:a4:
a3:1e:9c:40:ab:1e:7d:dc:4d:87:56:32:1e:0b:bd:
fd:23:37:2c:74:69:4f:4b:6e:52:21:6e:27:4d:1a:
06:86:1e:2c:88:e3:4c:fa:59:43:f0:08:14:3c:d8:
71:3f:b1:e9:a4:3d:bb:92:2d:3b:ac:6e:ed:a7:f1:
c1:8a:37:7b:18:13:3f:06:8b:f0:2f:9f:de:fd:d5:
70:71:be:5f:d4:16:27:78:21:96:b9:c3:9f:8a:0e:
c7:4c:7c:76:a7:d0:00:ed:f8:7f:36:c3:7e:3c:98:
85:28:66:34:17:63:c2:eb:62:ba:b8:a2:d0:e7:59:
33:bf:ea:dc:fa:44:0c:4e:1e:eb:6d:95:af:27:58:
d7:06:3c:7d:f9:d8:b8:68:18:ca:ac:15:92:11:ad:
5e:d9:54:65:31:93:6b:75:af:f2:38:e7:aa:5f:b4:
1a:03:ab:6f:e6:ec:12:7e:32:93:59:7a:e2:86:cf:
d7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A9:B7:31:FD:2C:C4:BB:26:FF:77:85:A6:B1:7B:6F:C1:17:21:1B
X509v3 Authority Key Identifier:
keyid:A4:BC:C1:2A:FA:4F:05:73:9F:45:F6:05:E2:21:C6:4C:3C:0D:2E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pLzBKvpPBXOfRfYF4iHGTDwNLtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/1qm3Mf0sxLsm_3eFprF7b8EXIRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bb140a-2a21-4f5f-bdcc-88b016bbd581/1/pLzBKvpPBXOfRfYF4iHGTDwNLtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.53.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:fa:a6:20:62:e4:d3:ed:21:04:1b:71:7c:98:9a:bf:82:14:
54:1e:65:6d:86:2d:f6:2e:65:83:5d:e6:35:fa:81:a6:c9:e4:
73:b8:15:e3:a4:30:15:6e:5b:b5:39:5e:fe:51:b1:53:b9:b8:
9f:13:64:a6:8e:f0:c5:98:ec:0f:cf:b8:5c:11:5b:59:72:bb:
c3:54:77:20:37:66:ae:66:31:9c:0d:69:15:64:de:fa:9a:b3:
12:f9:d8:f7:6f:8d:aa:37:cd:1e:6a:5b:27:f5:62:6c:20:ca:
98:bd:ce:95:64:21:a5:fd:ec:be:50:5e:ed:0e:7d:af:91:f1:
5a:76:ec:ee:55:4b:a9:32:40:59:ea:12:f0:0f:0a:55:fd:2e:
ab:f9:70:6b:7b:f2:4b:8a:81:7c:f9:24:1a:fe:39:a9:ca:a5:
b4:b3:0d:04:fb:cc:25:8a:9e:a0:6b:77:07:22:37:18:da:2f:
f8:14:9b:be:e5:6f:d4:1f:e1:88:8c:66:32:b7:90:4e:76:52:
a0:fb:3c:27:93:0a:60:73:e5:f9:24:ba:db:69:c0:e3:35:89:
47:a9:aa:90:62:17:8d:11:7c:00:6b:47:63:6c:21:c9:c3:a3:
b0:f6:96:d2:a2:10:fc:ae:62:1f:d9:0b:57:41:01:32:8a:64:
a9:d6:e6:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSVW8QRZ4Sa/c7RGmrCThMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0YmNjMTJhZmE0ZjA1NzM5ZjQ1ZjYwNWUyMjFjNjRjM2Mw
ZDJlZDYwHhcNMjQwMTAxMDQzMDEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmE5YjczMWZkMmNjNGJiMjZmZjc3ODVhNmIxN2I2ZmMxMTcyMTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBi4Xc3A7F0L/1kC/jY47TYRlI3f
BMLzlpqLmhp93/JyzV9UUmzUIv0km0iHioqFNN5kFqmTKx/wORk/M5mRFirDJAjX
NV6pgKSjHpxAqx593E2HVjIeC739IzcsdGlPS25SIW4nTRoGhh4siONM+llD8AgU
PNhxP7HppD27ki07rG7tp/HBijd7GBM/BovwL5/e/dVwcb5f1BYneCGWucOfig7H
THx2p9AA7fh/NsN+PJiFKGY0F2PC62K6uKLQ51kzv+rc+kQMTh7rbZWvJ1jXBjx9
+di4aBjKrBWSEa1e2VRlMZNrda/yOOeqX7QaA6tv5uwSfjKTWXrihs/X+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNaptzH9LMS7Jv93haaxe2/BFyEbMB8GA1UdIwQY
MBaAFKS8wSr6TwVzn0X2BeIhxkw8DS7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEx6Qkt2cFBCWE9mUmZZRjRpSEdURHdOTHRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9iYjE0MGEtMmEyMS00ZjVmLWJkY2Mt
ODhiMDE2YmJkNTgxLzEvMXFtM01mMHN4THNtXzNlRnByRjdiOEVYSVJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9iYjE0MGEtMmEyMS00ZjVmLWJkY2MtODhiMDE2YmJkNTgx
LzEvcEx6Qkt2cFBCWE9mUmZZRjRpSEdURHdOTHRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALuU1MA0G
CSqGSIb3DQEBCwUAA4IBAQCt+qYgYuTT7SEEG3F8mJq/ghRUHmVthi32LmWDXeY1
+oGmyeRzuBXjpDAVblu1OV7+UbFTubifE2SmjvDFmOwPz7hcEVtZcrvDVHcgN2au
ZjGcDWkVZN76mrMS+dj3b42qN80ealsn9WJsIMqYvc6VZCGl/ey+UF7tDn2vkfFa
duzuVUupMkBZ6hLwDwpV/S6r+XBre/JLioF8+SQa/jmpyqW0sw0E+8wlip6ga3cH
IjcY2i/4FJu+5W/UH+GIjGYyt5BOdlKg+zwnkwpgc+X5JLrbacDjNYlHqaqQYheN
EXwAa0djbCHJw6Ow9pbSohD8rmIf2QtXQQEyimSp1uaT
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:57 2025 by rpki-client