Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/JrCcSTYjyu9WLrYS9xffg01Zsto.roa
File: JrCcSTYjyu9WLrYS9xffg01Zsto.roa (raw, json)
Hash identifier: 0m8/QsQ05rnt5T/MUKl1+eJTAhBgQuZh2WLJm0cpPXg=
Subject key identifier: 26:B0:9C:49:36:23:CA:EF:56:2E:B6:12:F7:17:DF:83:4D:59:B2:DA
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 018CC3B6D5714D48E9B5CF6C70F911B49E86
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/JrCcSTYjyu9WLrYS9xffg01Zsto.roa
Signing time: Mon 01 Jan 2024 06:29:48 +0000
ROA not before: Mon 01 Jan 2024 06:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26968
IP address blocks: 46.8.200.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 09:03:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:d5:71:4d:48:e9:b5:cf:6c:70:f9:11:b4:9e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Jan 1 06:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26b09c493623caef562eb612f717df834d59b2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f8:95:54:72:d2:eb:cc:ff:4b:9f:c6:ff:1f:
57:47:8f:d5:70:73:4e:6b:95:7c:98:5a:75:6e:92:
fd:18:ae:5f:5f:43:02:b3:d3:99:be:47:57:ad:a6:
9d:1d:13:8d:76:3a:c5:2d:f3:da:92:60:7b:28:8d:
05:7a:55:0e:34:9d:09:37:43:16:59:de:e0:a6:4d:
8e:3b:0b:fb:37:3a:52:f8:f5:f8:c9:28:e2:3e:a8:
b9:a1:22:2b:f7:8d:0f:5b:a6:82:de:ee:7a:51:5d:
e0:3c:f4:25:62:87:93:86:d2:51:25:67:6c:19:04:
68:e9:9c:22:7b:3c:c2:e4:95:9b:b7:33:ca:68:a8:
67:50:8f:e4:b5:c7:20:6d:88:6d:b6:2e:ce:23:fd:
99:6c:5e:4e:06:82:ec:9c:80:0b:f9:e8:bb:d3:03:
da:38:74:87:32:c7:96:e8:7d:4d:a2:d4:e3:1c:67:
c7:ef:2a:f0:e1:7b:9b:00:1b:2e:ea:3c:10:58:7f:
9e:6b:4f:d8:33:4b:f4:21:7d:fc:c7:1c:36:a9:4d:
19:01:e5:83:36:a3:ef:c7:e8:39:4e:f9:b2:e4:01:
1a:f4:11:0a:3b:c4:89:aa:40:4c:d9:fa:95:3f:14:
07:6d:82:db:14:b7:e3:c6:fb:28:23:2f:e9:b7:d0:
16:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B0:9C:49:36:23:CA:EF:56:2E:B6:12:F7:17:DF:83:4D:59:B2:DA
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/JrCcSTYjyu9WLrYS9xffg01Zsto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.200.0/23
Signature Algorithm: sha256WithRSAEncryption
46:5e:d0:8c:8e:12:2f:b2:f2:15:f9:0d:e9:41:78:62:6f:9c:
f9:82:5f:f0:16:88:3f:84:80:ce:07:e1:88:10:40:27:73:bb:
e3:81:5a:2c:a2:aa:1b:66:f2:ba:50:20:fd:b2:74:78:bd:8f:
72:ba:e4:24:4a:91:f1:1c:be:08:68:3f:c1:b3:01:8f:a4:de:
a0:c3:02:ba:5f:a4:80:8d:0e:ee:28:a3:e2:50:7e:a2:81:6d:
6c:9b:f8:84:29:c3:8f:49:1d:ce:13:f5:e3:38:f2:84:b3:a0:
ce:f5:96:66:5f:22:6c:98:80:c3:3f:10:a0:f9:b1:93:18:c8:
83:da:f1:e0:fb:90:92:e2:c5:43:82:f0:01:80:2a:68:a2:92:
a1:7c:c4:51:19:ea:9b:a1:5a:b2:32:ad:42:21:9a:d8:c7:d8:
3a:87:dd:9e:de:c0:7d:ad:07:89:29:8d:2d:c9:95:99:6f:92:
70:91:fb:e6:3d:2c:8a:ec:6f:7a:6c:88:87:2f:ea:11:ea:b6:
83:b3:2b:18:72:ce:6c:3c:a3:26:d7:1e:10:20:b3:7d:92:83:
56:65:94:70:f6:7b:42:e8:20:a1:ee:8c:b8:b2:b8:3d:12:e8:
98:1a:db:90:33:af:eb:bd:09:9b:c8:8f:74:6d:76:ac:08:4a:
1c:c6:6d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:08 2025 by rpki-client