Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/pNoleN_UwSr7jHrqGPGswJwBjWY.roa
File: pNoleN_UwSr7jHrqGPGswJwBjWY.roa (raw, json)
Hash identifier: himcsNkVDWnnxUdt4nnjy8tiLTHeWI5S8WxnBjj5ahM=
Subject key identifier: A4:DA:25:78:DF:D4:C1:2A:FB:8C:7A:EA:18:F1:AC:C0:9C:01:8D:66
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 0191326105E7F76F056542C298BB3D626E7B
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/pNoleN_UwSr7jHrqGPGswJwBjWY.roa
Signing time: Thu 08 Aug 2024 14:25:04 +0000
ROA not before: Thu 08 Aug 2024 14:25:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395839
IP address blocks: 46.8.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 06:04:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:32:61:05:e7:f7:6f:05:65:42:c2:98:bb:3d:62:6e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Aug 8 14:25:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4da2578dfd4c12afb8c7aea18f1acc09c018d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:68:60:2c:78:72:d8:60:6f:23:53:cf:6a:10:
5e:e5:c3:c6:c6:0e:78:aa:6c:2d:4e:02:f7:6d:62:
30:c3:ad:ee:92:5a:3e:55:87:55:76:fb:f5:53:c9:
87:50:46:84:38:2e:be:ad:22:7f:bf:aa:03:ce:49:
1b:0b:76:de:d5:95:dc:b0:66:82:f3:95:4f:4f:5e:
3a:05:f6:35:df:a9:9b:7e:7d:72:22:d9:81:26:ed:
8c:dd:23:91:0f:9b:06:1b:e1:cb:40:a5:47:92:c4:
14:57:5d:63:7a:d9:af:e5:53:0b:14:74:5e:8c:be:
38:52:04:c4:a1:32:fa:7f:28:97:b7:f9:34:2f:c4:
47:0c:87:77:ee:fc:4a:b4:e6:bd:18:6f:bf:80:54:
a3:f5:90:08:38:29:88:d6:55:26:77:f6:ce:af:16:
7a:13:d6:19:d6:1a:6e:75:b9:c2:ff:bf:5b:88:49:
f1:98:e7:67:21:d6:b0:1f:4a:60:ac:45:83:8c:f8:
27:e0:53:33:b3:e8:0d:ca:f1:d1:0f:e2:56:12:e0:
1e:a0:00:eb:35:51:35:c0:b3:39:49:0b:01:82:56:
20:63:76:91:36:ec:c6:08:fb:e0:f6:7b:6e:72:53:
5b:f2:5d:fe:38:64:3e:15:66:d0:63:81:1d:c0:85:
ea:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DA:25:78:DF:D4:C1:2A:FB:8C:7A:EA:18:F1:AC:C0:9C:01:8D:66
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/pNoleN_UwSr7jHrqGPGswJwBjWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
51:98:ff:13:bb:9a:41:b7:14:f8:99:89:d2:06:f1:bf:06:92:
2d:93:32:19:31:b9:ad:d4:ad:21:50:7a:88:17:26:06:67:32:
d8:c1:03:c9:50:1b:7f:c8:5a:2e:a6:5d:95:6b:46:1e:72:73:
f4:99:f8:03:6e:3e:ee:1d:9a:8d:3a:93:8f:c9:9c:24:5e:20:
03:67:54:91:a8:32:98:b8:2d:3f:fe:c8:6b:95:76:0b:4a:aa:
06:02:40:60:79:43:c1:b1:94:d2:3c:e3:d9:d7:bb:57:d4:b9:
cb:07:4f:bd:f7:02:57:fd:64:9a:c8:04:b7:1f:ad:d1:f2:42:
05:79:b7:37:92:57:00:29:8a:f4:54:9d:ec:3d:2b:7e:e0:00:
fb:f0:cf:d1:51:62:a3:db:f4:fd:23:80:57:08:94:3e:00:34:
23:a2:49:f7:4c:e0:f5:e2:71:d4:5b:9e:a2:89:a5:20:4d:f5:
4e:17:1b:e4:01:7e:00:a6:01:99:52:9a:50:62:c0:39:cd:1e:
f0:76:3d:e9:3a:d2:43:9d:a2:c1:9e:33:91:45:e6:e5:c2:04:
85:f9:e1:4f:4e:06:15:5c:d0:82:0a:26:3e:c1:da:5a:96:0d:
ff:2d:2e:9a:05:60:f1:d8:77:e5:9c:bf:10:bf:ae:76:c8:68:
4a:32:d2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:35 2025 by rpki-client