Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/L60-TewIwkaOl73nluzxoEfs2tk.roa
File: L60-TewIwkaOl73nluzxoEfs2tk.roa (raw, json)
Hash identifier: CM3WO9++M+MSmxK5AwdL6YdU26+qw8gi1Prod3BklBw=
Subject key identifier: 2F:AD:3E:4D:EC:08:C2:46:8E:97:BD:E7:96:EC:F1:A0:47:EC:DA:D9
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0194F7C704958B184BF7A8C851490FE69551
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/L60-TewIwkaOl73nluzxoEfs2tk.roa
Signing time: Wed 12 Feb 2025 01:30:02 +0000
ROA not before: Wed 12 Feb 2025 01:30:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 194.246.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Mar 2025 00:12:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f7:c7:04:95:8b:18:4b:f7:a8:c8:51:49:0f:e6:95:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Feb 12 01:30:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fad3e4dec08c2468e97bde796ecf1a047ecdad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b6:ef:5b:77:56:f0:dd:8c:7c:93:41:a5:e6:
77:b0:eb:b5:76:d1:a2:b0:b8:4a:4b:c9:ba:22:e2:
12:96:ca:0b:78:3d:4e:aa:02:a1:c3:28:04:cb:93:
1f:14:79:40:f8:96:5a:19:01:b0:6d:f3:40:98:a0:
dc:e2:38:e9:e2:05:e4:5c:96:93:5c:42:62:4e:2e:
fb:88:4d:7a:5b:5b:83:8e:ad:ae:ac:24:79:90:7e:
48:ae:16:80:d1:45:90:27:24:44:80:ca:95:0b:25:
75:ab:05:81:b1:e9:fe:69:7c:5a:18:2c:0d:38:89:
b8:a7:04:d4:18:13:38:57:d5:a0:22:22:91:c3:2c:
a4:c8:e9:e2:46:21:26:7c:4b:e4:52:b1:59:21:88:
01:3e:e0:52:e3:fe:e3:f9:66:28:74:d7:c8:11:5b:
b7:e5:13:14:c0:6a:98:d0:88:26:32:0c:4f:06:a1:
2c:05:07:b3:7b:d2:10:4d:d5:bb:b7:3c:a4:78:bc:
60:d2:f4:d6:e0:13:63:4f:16:32:2f:b5:26:de:eb:
5f:68:73:9b:69:f6:0f:82:12:6e:9a:73:17:45:7e:
90:e2:a6:e5:bb:12:ec:87:f8:8d:7a:84:92:92:6c:
ad:19:01:8e:01:03:f8:b3:cb:fe:b3:3a:91:16:73:
1a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AD:3E:4D:EC:08:C2:46:8E:97:BD:E7:96:EC:F1:A0:47:EC:DA:D9
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/L60-TewIwkaOl73nluzxoEfs2tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
53:d0:d4:b4:a9:9b:50:1a:54:6b:1a:ae:3d:ac:cb:15:ba:82:
4b:d5:c0:15:f3:b3:eb:4f:c3:f8:a0:07:02:3b:89:6c:d6:5c:
8a:08:41:2e:50:7f:f9:35:4c:7f:ea:be:51:ac:6c:7c:cc:20:
d4:3d:29:2e:89:7f:29:70:85:e5:5e:65:6b:64:26:23:d4:d4:
5c:a9:7f:81:78:c9:db:78:c5:bb:c7:c2:82:d8:7a:8b:7b:cd:
9e:a3:0c:74:52:e1:3b:fe:10:1b:64:35:53:41:e1:6f:20:90:
10:2c:e0:c4:be:1e:7d:f8:04:aa:9e:e1:43:c7:a6:c1:49:1b:
07:e7:a1:0e:41:9d:e0:99:d2:b6:43:c9:7f:e1:21:62:27:6f:
ee:bb:ce:3b:59:01:b5:96:8e:a7:7d:7e:d1:1c:a4:8e:c4:6a:
29:4a:98:be:95:b4:0e:8a:34:ef:2d:36:d9:6a:80:9c:d6:50:
46:28:46:07:7d:ab:77:1f:50:0d:25:14:06:25:70:83:77:b7:
3b:fd:51:69:46:d3:fc:8f:82:52:c8:bd:38:42:5d:e3:34:7f:
98:cb:6b:fd:a7:44:39:7b:4a:0d:f8:d3:19:96:f5:bf:30:24:
8d:8e:17:f5:99:14:5c:7b:7d:a9:46:c0:a0:48:04:b8:28:68:
fb:44:13:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:57:43 2025 by rpki-client