Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/asxRauhLpoO1eN3kwVxmDp2d32E.roa
File: asxRauhLpoO1eN3kwVxmDp2d32E.roa (raw, json)
Hash identifier: 7ptDrpAe8KBuyoo9rI0UnLlfTwP6vSq64hFPoiw4EF4=
Subject key identifier: 6A:CC:51:6A:E8:4B:A6:83:B5:78:DD:E4:C1:5C:66:0E:9D:9D:DF:61
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0190823CC4CAC2962F6E3E5EF5CFCC3D5D72
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/asxRauhLpoO1eN3kwVxmDp2d32E.roa
Signing time: Fri 05 Jul 2024 09:32:18 +0000
ROA not before: Fri 05 Jul 2024 09:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206735
IP address blocks: 109.176.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 19:43:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:82:3c:c4:ca:c2:96:2f:6e:3e:5e:f5:cf:cc:3d:5d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jul 5 09:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6acc516ae84ba683b578dde4c15c660e9d9ddf61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:63:d8:6c:fb:f1:b0:07:57:f1:e1:f7:7c:c5:
f8:d9:27:06:ee:12:d5:15:63:80:bb:99:e3:e2:94:
68:e7:14:25:cb:f0:c1:f6:49:ae:53:b7:c4:bb:04:
c3:cf:20:3b:64:16:2a:ee:fb:e1:4a:f5:d0:08:3b:
1b:18:ec:66:01:da:7a:4a:04:8c:de:79:6c:4b:41:
af:23:e0:4d:c3:6e:66:46:15:3e:4a:30:b7:4f:49:
3c:87:6c:da:75:5f:8d:0d:b8:b4:9c:05:52:fb:e5:
a4:9f:96:ca:49:ef:3b:3a:f5:99:ba:17:8e:35:2b:
01:e7:b0:67:fb:bb:ef:05:c6:71:54:00:27:30:2e:
94:c0:c3:be:42:a4:3a:20:af:bb:11:a5:59:8e:5b:
aa:ba:c5:3c:64:82:30:de:11:b5:25:0a:48:e1:a5:
b3:0d:47:89:10:83:26:4e:ca:ba:94:ed:bc:02:fd:
a0:1d:56:57:a5:d5:00:23:6a:94:3d:14:84:50:02:
f2:3f:99:54:64:63:e9:ef:28:8e:ea:9c:e2:9f:47:
74:cd:1d:4b:1b:d3:98:9c:b5:3d:8c:60:c9:24:e8:
30:8d:22:d8:15:d1:d6:27:49:11:35:2c:c7:80:2a:
4f:89:53:ab:30:90:d1:9b:91:0c:1f:2a:63:4b:b5:
be:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CC:51:6A:E8:4B:A6:83:B5:78:DD:E4:C1:5C:66:0E:9D:9D:DF:61
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/asxRauhLpoO1eN3kwVxmDp2d32E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.176.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:63:bf:3f:92:06:46:c7:1f:62:e5:c1:f6:7a:af:5c:50:e3:
04:26:fe:aa:40:e0:10:eb:19:fb:38:02:63:94:e1:3e:3f:29:
ed:93:16:23:39:0e:75:25:90:e4:19:d0:33:e6:a4:8d:4d:49:
d2:38:ba:cd:2f:06:d2:f5:51:0c:5a:df:59:1c:49:14:9d:7a:
c8:f3:38:24:6c:a6:98:6f:d2:5b:b9:6d:fb:f6:10:05:98:3b:
aa:c4:5c:d3:7c:e6:0e:57:14:16:61:01:83:91:6a:43:ec:ff:
2a:f9:44:31:97:67:25:0b:fa:d2:ee:48:dd:46:be:f9:b3:2f:
87:f0:03:e7:c2:c0:ba:db:9c:bd:65:65:16:a7:98:1f:e1:61:
e0:a2:05:96:10:39:57:fb:23:98:2c:fa:9f:41:01:d9:74:2b:
db:9a:6f:ef:b9:e6:a6:f3:b7:cc:9a:a5:93:5f:27:58:3f:4f:
c8:b3:72:4d:71:6f:d7:ac:e4:b9:45:7e:3b:84:f4:4d:84:d2:
61:f6:8d:7f:67:4a:61:60:c0:bf:85:8a:10:07:c8:05:54:c0:
7c:34:ef:e0:87:de:22:63:eb:3f:cd:f1:9c:91:60:78:94:82:
e5:4b:f1:95:85:fe:5f:89:06:f1:88:77:f5:b3:e3:f8:b9:72:
a8:23:d4:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:05:49 2025 by rpki-client