Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/4tyIfTVc-LmsbEafXSnIKgi8DjY.roa
File: 4tyIfTVc-LmsbEafXSnIKgi8DjY.roa (raw, json)
Hash identifier: s5qYlB7zAegFOVA9jymvwpG447e4NeExc6Txp59YX8A=
Subject key identifier: E2:DC:88:7D:35:5C:F8:B9:AC:6C:46:9F:5D:29:C8:2A:08:BC:0E:36
Certificate issuer: /CN=f73cdc6751d7c59073e4b706402d3691af09086f
Certificate serial: 0193681C5EFF63F27E9E694E2C02B4CC03FC
Authority key identifier: F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/4tyIfTVc-LmsbEafXSnIKgi8DjY.roa
Signing time: Tue 26 Nov 2024 10:55:09 +0000
ROA not before: Tue 26 Nov 2024 10:55:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52056
IP address blocks: 46.23.160.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 26 Nov 2024 13:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:1c:5e:ff:63:f2:7e:9e:69:4e:2c:02:b4:cc:03:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f73cdc6751d7c59073e4b706402d3691af09086f
Validity
Not Before: Nov 26 10:55:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2dc887d355cf8b9ac6c469f5d29c82a08bc0e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:16:a4:70:97:cc:c3:8a:9a:37:da:1b:ac:7d:
cd:46:d9:5e:6d:1a:83:ff:09:b6:ef:c2:2d:fc:8c:
52:92:8e:b2:36:c5:4f:d7:6e:b7:8a:ce:80:3b:bd:
c0:ea:9d:45:46:99:c0:45:cd:7f:a4:14:61:02:c8:
62:b3:60:1b:62:67:70:62:43:cd:7d:e9:c8:49:dd:
85:14:8f:44:ed:e5:bb:58:8e:60:63:56:49:b9:f7:
0a:dd:50:5c:ad:6d:a6:2d:7b:bc:0f:66:ee:9a:dd:
d7:da:9f:e8:d8:12:76:81:cf:bb:ec:da:0f:24:68:
cb:86:15:75:48:0b:f8:4c:07:9f:8f:d0:91:a2:cd:
b1:e0:f8:66:d9:39:14:81:ba:88:fa:d8:bb:64:14:
41:b9:80:0d:c6:35:a1:c3:8a:03:b7:34:94:0b:9c:
86:ed:f0:0f:fb:93:5c:02:65:84:13:70:43:b6:cc:
90:22:24:8a:ef:2b:32:ee:cb:f8:47:e3:38:40:89:
eb:44:0e:29:f6:b3:54:42:ce:d7:64:67:da:db:9c:
d5:49:27:f2:77:91:80:ae:18:ff:dc:67:0f:b2:32:
ee:cc:f9:5c:7e:33:0e:34:d3:50:59:db:b0:b5:fa:
00:51:38:29:e2:e3:7e:aa:56:00:1b:15:3d:b6:79:
11:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DC:88:7D:35:5C:F8:B9:AC:6C:46:9F:5D:29:C8:2A:08:BC:0E:36
X509v3 Authority Key Identifier:
keyid:F7:3C:DC:67:51:D7:C5:90:73:E4:B7:06:40:2D:36:91:AF:09:08:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zzcZ1HXxZBz5LcGQC02ka8JCG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/4tyIfTVc-LmsbEafXSnIKgi8DjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/855002-d823-41fe-8f9a-718fd195c5eb/1/9zzcZ1HXxZBz5LcGQC02ka8JCG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.160.0/20
Signature Algorithm: sha256WithRSAEncryption
b3:ca:ba:3b:d5:1d:22:9f:1a:03:19:e6:12:48:13:53:44:6d:
36:bb:4e:07:b4:38:14:a0:ce:13:9b:8e:ee:f2:07:7a:1a:30:
b9:78:8c:08:33:65:2b:b5:21:c2:36:4f:52:30:93:a8:2e:4d:
eb:dc:f6:1a:66:eb:e2:a5:74:19:22:bc:f3:e8:e7:96:fa:b6:
b7:0a:40:6a:b7:d6:4c:07:82:12:7c:11:93:b3:ce:4f:d8:80:
a3:f8:53:2b:8a:e1:3e:16:e6:b9:dd:aa:c5:35:16:40:be:30:
1d:44:63:8f:54:e6:ef:d7:c7:b8:fe:06:ad:eb:d9:6e:c5:67:
5d:eb:cd:d8:54:60:a1:71:d1:b4:ee:1f:c0:2e:76:83:5a:0c:
45:bd:a3:33:f3:a8:f6:a0:b6:58:03:c3:2b:e6:b5:c4:76:4e:
12:40:6a:0d:77:03:b5:2b:c5:01:4a:f2:89:84:50:dc:fc:9c:
8b:9d:fd:fd:4c:07:83:0d:73:7e:2a:3d:26:cf:2f:2c:2d:b7:
4b:bf:c8:10:91:70:76:00:cb:52:20:f5:47:5e:5a:90:97:14:
84:6c:b7:fc:ba:fa:45:ee:97:6d:85:f3:b3:ce:6b:13:e6:7d:
25:25:6f:dc:20:92:7e:c7:12:38:cc:b7:bd:f7:b0:b8:a6:73:
46:05:ef:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 08:55:16 2025 by rpki-client