Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/edan4jvAAfQ7wQMzPQc3Kvw2E3Y.roa
File: edan4jvAAfQ7wQMzPQc3Kvw2E3Y.roa (raw, json)
Hash identifier: q2g+say1HVLXGXkDasSevbvzUylsZD3nn9NXtLC8Fvk=
Subject key identifier: 79:D6:A7:E2:3B:C0:01:F4:3B:C1:03:33:3D:07:37:2A:FC:36:13:76
Certificate issuer: /CN=24d9da4ffb1bb6d273de1bad5dbbf0d1ff47f0cf
Certificate serial: 0192B8D7662A623F77582BDDE4CAEC8BA383
Authority key identifier: 24:D9:DA:4F:FB:1B:B6:D2:73:DE:1B:AD:5D:BB:F0:D1:FF:47:F0:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JNnaT_sbttJz3hutXbvw0f9H8M8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/edan4jvAAfQ7wQMzPQc3Kvw2E3Y.roa
Signing time: Wed 23 Oct 2024 10:06:16 +0000
ROA not before: Wed 23 Oct 2024 10:06:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48065
IP address blocks: 46.213.128.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 29 Oct 2024 11:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b8:d7:66:2a:62:3f:77:58:2b:dd:e4:ca:ec:8b:a3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24d9da4ffb1bb6d273de1bad5dbbf0d1ff47f0cf
Validity
Not Before: Oct 23 10:06:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79d6a7e23bc001f43bc103333d07372afc361376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:42:56:1b:b5:01:78:d4:35:71:2e:b5:12:fc:
96:a1:bc:27:59:f9:1b:1f:f7:b0:82:84:bc:1f:c3:
5c:58:cd:70:82:9a:23:4e:6f:f2:d5:ae:56:f3:84:
18:00:96:3b:d7:9c:95:e9:4a:57:23:0e:e2:90:62:
31:75:fe:ed:f2:60:4c:6a:d0:c6:bb:2c:55:db:3d:
1f:77:b2:7f:c1:04:ba:fb:e3:ff:1c:e0:6e:92:1c:
97:3a:f8:14:62:f3:df:a6:e2:2e:3d:b2:38:a5:c1:
dd:a1:09:71:b6:6c:bc:69:3d:49:d0:67:cf:37:ae:
05:15:a5:8b:8c:9c:c4:21:53:74:35:7a:67:e0:94:
69:b1:2c:aa:31:15:37:c6:4e:70:5a:03:23:b9:17:
fb:8c:0e:fc:5a:69:1c:7d:02:87:75:14:d5:68:fa:
ea:24:e4:d0:64:1b:45:8d:b3:99:94:2f:cd:e0:13:
ac:dd:84:66:58:05:af:28:c9:6e:a8:e2:34:97:fe:
3d:0c:50:7b:09:6a:43:42:9e:2d:b8:ae:f3:ae:6f:
41:17:37:92:c2:e9:ae:e9:16:d2:09:33:a4:57:9e:
91:3e:af:3b:64:fc:e8:8a:ba:88:82:f7:5b:ab:b8:
c0:d7:c3:42:f9:c5:ab:9c:cb:06:60:85:88:60:22:
39:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D6:A7:E2:3B:C0:01:F4:3B:C1:03:33:3D:07:37:2A:FC:36:13:76
X509v3 Authority Key Identifier:
keyid:24:D9:DA:4F:FB:1B:B6:D2:73:DE:1B:AD:5D:BB:F0:D1:FF:47:F0:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JNnaT_sbttJz3hutXbvw0f9H8M8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/edan4jvAAfQ7wQMzPQc3Kvw2E3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1eb120-687c-4993-857f-8a03a7c1fe9b/1/JNnaT_sbttJz3hutXbvw0f9H8M8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.213.128.0/21
Signature Algorithm: sha256WithRSAEncryption
66:07:30:85:cf:8c:e0:2f:44:ff:ba:1b:96:87:6d:f0:cd:6a:
39:6b:03:24:05:c9:56:67:8a:31:6e:85:ec:80:e9:d9:ed:5b:
07:a4:cd:f7:a8:7a:6c:53:f9:b4:ee:95:87:41:bb:a0:0d:33:
ec:21:91:54:10:65:c8:c9:f1:ae:1d:52:83:91:d4:f3:21:4b:
23:fc:c4:ec:18:82:05:7c:f1:f4:7e:a8:06:49:c6:05:31:ac:
e2:1a:93:ab:52:ba:41:89:5c:00:de:22:3d:3f:79:d6:ff:b1:
df:2a:ad:77:8b:14:bf:bb:8d:68:b7:30:98:3f:68:1a:16:ae:
4c:52:9d:73:1a:3b:ce:8e:d6:b2:b0:23:d2:53:c1:4b:19:a0:
cf:0c:b3:95:d2:66:bb:e1:f4:ba:b6:55:30:0d:9a:64:29:2a:
ea:86:7a:7a:b6:74:58:b9:fc:f6:38:0d:b0:35:a2:ec:71:e6:
90:1f:89:a5:5f:d4:f6:60:35:4b:25:ea:6f:f6:ac:25:45:5f:
0d:0f:38:fe:34:b6:d6:e5:15:f7:de:57:0a:78:08:d6:3a:5a:
ba:db:60:83:ad:65:4f:2e:dd:f0:c6:4a:7d:41:22:6b:35:24:
4f:29:79:1e:72:ba:a6:6b:93:c5:bb:11:ca:5f:3d:b3:6c:5e:
a2:0b:0b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:23:57 2025 by rpki-client