Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8o7PoXOD3rb2Mo74n5kGRj0Io9E.roa
File: 8o7PoXOD3rb2Mo74n5kGRj0Io9E.roa (raw, json)
Hash identifier: lxGGkMBst8vJUB2LOpckhb5MfOevlrZWDPGIdiiGPDY=
Subject key identifier: F2:8E:CF:A1:73:83:DE:B6:F6:32:8E:F8:9F:99:06:46:3D:08:A3:D1
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 01937C4D7086548383964669DCB5A6628A3B
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8o7PoXOD3rb2Mo74n5kGRj0Io9E.roa
Signing time: Sat 30 Nov 2024 09:01:09 +0000
ROA not before: Sat 30 Nov 2024 09:01:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214275
IP address blocks: 46.107.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7c:4d:70:86:54:83:83:96:46:69:dc:b5:a6:62:8a:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Nov 30 09:01:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f28ecfa17383deb6f6328ef89f9906463d08a3d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:73:05:c6:21:4a:1d:f8:b9:21:5d:9f:85:62:
6c:85:4d:11:a2:f6:bc:01:8c:9e:30:95:f7:00:c7:
c8:6a:bb:07:4d:5a:cb:88:05:d1:a3:ad:44:e0:9e:
53:df:9c:ee:dc:e3:3b:39:15:67:1e:36:ea:ef:2b:
b7:fc:ae:7c:5a:5f:0b:1a:14:2d:18:8d:7e:ad:90:
d4:37:89:ac:c8:77:56:38:96:a7:35:d8:e9:cb:95:
7d:85:d2:91:50:c5:ea:10:87:2f:38:54:6c:8f:7d:
2e:a3:7b:01:b9:20:69:5b:d1:ce:d6:08:b4:2c:12:
5e:14:98:1c:aa:10:df:d2:e8:62:ce:cb:c1:7e:8e:
34:35:0b:39:c9:12:7e:a2:3d:ae:58:24:bf:43:6c:
20:79:a9:44:c6:6e:35:5c:dc:39:a7:8b:d4:41:cf:
e4:a1:ee:a5:9d:75:46:68:ae:ba:1b:f8:33:69:54:
91:d6:c8:60:e7:c6:e2:7b:07:43:58:66:e5:a2:ed:
66:90:9b:d1:af:a3:8a:55:f3:2b:ac:f6:a1:01:b1:
85:a5:df:a0:b3:e0:97:f3:d3:5c:dd:42:fb:2c:cf:
58:f5:cc:87:8b:99:a4:53:6d:d8:8b:f6:b7:d8:1f:
9a:a1:33:10:f3:3a:06:6b:93:ef:41:04:73:bb:c3:
b0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8E:CF:A1:73:83:DE:B6:F6:32:8E:F8:9F:99:06:46:3D:08:A3:D1
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8o7PoXOD3rb2Mo74n5kGRj0Io9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.107.11.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:59:f3:75:d8:fb:02:58:60:a6:51:e2:68:1e:1e:b0:4e:cb:
ba:62:ee:65:47:b0:c9:7a:66:9e:7d:e1:67:16:41:cf:97:43:
b1:27:49:c8:c1:e5:db:4e:f8:a1:9d:c2:ac:b7:fb:61:fb:23:
87:18:68:d5:a8:d8:eb:c0:16:8d:a8:46:91:95:1d:c5:59:c9:
8b:d1:27:d1:2e:39:d8:8d:54:05:4b:ab:0b:1e:ca:d2:b2:c7:
75:23:15:b3:f5:6d:1e:a1:22:a7:e1:67:f0:d9:52:ab:b4:5d:
e2:99:8b:1a:b9:34:4f:da:a1:68:b2:ea:a7:09:f6:f4:28:47:
f5:25:c3:c3:7d:61:ba:2c:0a:12:5f:ac:ee:89:fe:f5:f1:8f:
02:56:90:8e:2a:28:d1:e8:ff:7a:7b:25:23:18:31:6d:4a:c4:
e7:05:36:67:df:fb:5d:66:1f:ce:0b:73:53:53:04:50:13:dc:
c1:7a:a7:3b:63:e8:2d:6a:3c:6f:61:38:c6:70:13:65:30:d4:
39:07:cd:38:72:2e:8b:ba:24:00:39:27:56:88:61:75:25:f9:
45:5b:11:96:9c:f5:93:62:96:7d:79:ba:fe:31:7c:c7:1a:fa:
9e:df:12:86:66:d5:14:2a:a7:5d:36:3a:17:71:62:a5:fd:48:
c3:7e:02:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZN8TXCGVIODlkZp3LWmYoo7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4
YWFlN2IwHhcNMjQxMTMwMDkwMTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjhlY2ZhMTczODNkZWI2ZjYzMjhlZjg5Zjk5MDY0NjNkMDhhM2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXMFxiFKHfi5IV2fhWJshU0Rova8
AYyeMJX3AMfIarsHTVrLiAXRo61E4J5T35zu3OM7ORVnHjbq7yu3/K58Wl8LGhQt
GI1+rZDUN4msyHdWOJanNdjpy5V9hdKRUMXqEIcvOFRsj30uo3sBuSBpW9HO1gi0
LBJeFJgcqhDf0uhizsvBfo40NQs5yRJ+oj2uWCS/Q2wgealExm41XNw5p4vUQc/k
oe6lnXVGaK66G/gzaVSR1shg58biewdDWGblou1mkJvRr6OKVfMrrPahAbGFpd+g
s+CX89Nc3UL7LM9Y9cyHi5mkU23Yi/a32B+aoTMQ8zoGa5PvQQRzu8Ow9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPKOz6Fzg9629jKO+J+ZBkY9CKPRMB8GA1UdIwQY
MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt
MjkyYWU0NmU2MzAyLzEvOG83UG9YT0QzcmIyTW83NG41a0dSajBJbzlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy
LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALmsLMA0G
CSqGSIb3DQEBCwUAA4IBAQBtWfN12PsCWGCmUeJoHh6wTsu6Yu5lR7DJemaefeFn
FkHPl0OxJ0nIweXbTvihncKst/th+yOHGGjVqNjrwBaNqEaRlR3FWcmL0SfRLjnY
jVQFS6sLHsrSssd1IxWz9W0eoSKn4Wfw2VKrtF3imYsauTRP2qFosuqnCfb0KEf1
JcPDfWG6LAoSX6zuif718Y8CVpCOKijR6P96eyUjGDFtSsTnBTZn3/tdZh/OC3NT
UwRQE9zBeqc7Y+gtajxvYTjGcBNlMNQ5B804ci6LuiQAOSdWiGF1JflFWxGWnPWT
YpZ9ebr+MXzHGvqe3xKGZtUUKqddNjoXcWKl/UjDfgKP
-----END CERTIFICATE-----
Generated at Tue Apr 15 04:38:26 2025 by rpki-client