Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RmuaurN0RyoMxVsT9cvyT40ulHA.roa
File: RmuaurN0RyoMxVsT9cvyT40ulHA.roa (raw, json)
Hash identifier: 7mjZnys/1HkAM/M1cZA03BUdLGZYRWC4s+ZgUY0Mk9s=
Subject key identifier: 46:6B:9A:BA:B3:74:47:2A:0C:C5:5B:13:F5:CB:F2:4F:8D:2E:94:70
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196352FB048B86FD2E94B72E330195933E4
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RmuaurN0RyoMxVsT9cvyT40ulHA.roa
Signing time: Mon 14 Apr 2025 16:43:59 +0000
ROA not before: Mon 14 Apr 2025 16:43:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 45.94.47.0/24 maxlen: 24
2a11:3500::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 18 Apr 2025 10:40:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:35:2f:b0:48:b8:6f:d2:e9:4b:72:e3:30:19:59:33:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 14 16:43:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=466b9abab374472a0cc55b13f5cbf24f8d2e9470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:a1:2d:85:82:c5:64:0e:3c:ba:12:46:5c:
37:15:9d:a8:39:f1:a6:fb:79:b6:68:e8:c9:91:72:
98:50:8b:49:ec:48:ab:b4:0b:ac:f7:dd:1c:24:db:
7e:c0:25:f9:47:fe:1a:2c:dd:4a:9f:c6:88:fe:63:
29:54:32:5e:21:24:c6:a1:63:a7:d7:8f:fb:0b:65:
d7:fe:51:30:d7:b9:82:c1:d9:cf:87:67:b6:e7:df:
b5:3e:d7:05:a1:2b:7a:d3:83:36:75:63:cf:a1:57:
82:10:b5:3d:e4:24:b1:e5:9c:ef:b3:c5:63:14:dd:
d2:a6:c5:20:68:c3:5d:df:a1:2a:47:39:9e:a6:5b:
07:67:ed:b0:ff:1e:8b:4f:86:b5:64:2a:ea:2b:fe:
73:9d:d0:63:10:1c:8d:57:eb:cc:0c:83:de:a2:2d:
fd:67:91:61:11:ad:f1:5f:b3:6b:39:30:b6:db:5e:
a1:f0:3e:ac:5b:97:e2:24:5b:8d:67:bc:a1:ae:7a:
0e:fe:96:cc:79:fa:fe:cc:84:6f:9e:9c:08:5d:18:
6c:90:38:30:20:78:83:96:0f:a8:50:22:e5:23:48:
49:15:ff:e4:1d:41:87:da:be:b4:75:eb:c8:3e:65:
c1:e7:f9:58:47:53:28:c2:38:d6:ff:68:f2:e4:ed:
9b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:6B:9A:BA:B3:74:47:2A:0C:C5:5B:13:F5:CB:F2:4F:8D:2E:94:70
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RmuaurN0RyoMxVsT9cvyT40ulHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.47.0/24
IPv6:
2a11:3500::/29
Signature Algorithm: sha256WithRSAEncryption
9f:24:da:b4:3f:05:59:9e:98:c9:b6:99:22:87:bc:13:c4:de:
e9:38:7d:e9:f7:26:e6:f8:94:c1:a8:15:59:17:2e:0b:ef:5f:
33:d4:85:ab:75:63:1f:9e:61:76:e6:00:6d:40:52:ad:1c:54:
02:84:91:35:ca:23:d3:5a:34:53:64:39:13:d1:81:a6:c9:c9:
1d:13:66:60:30:dc:46:c4:9a:bd:eb:90:b9:df:2a:d8:3d:21:
6f:48:39:22:0a:65:04:6b:7b:04:c9:2e:19:a5:d8:b2:cb:51:
60:b2:a7:db:b3:27:d3:bd:ed:56:67:47:fc:70:42:e1:ff:66:
e7:34:6a:1c:1e:8b:a5:58:7f:a2:73:a9:f1:c1:2e:74:26:20:
ba:d9:ac:c8:90:f6:0c:76:85:5b:85:73:fc:cd:eb:52:1d:3a:
71:23:d5:64:7f:03:da:83:98:0a:8c:b9:65:fd:8a:c6:31:62:
ee:05:0d:7f:d2:b1:bd:ce:35:89:b7:fb:b5:bd:1b:4a:0b:15:
56:d7:52:42:3a:ab:04:84:6c:36:22:3b:4f:68:93:16:6a:fc:
49:92:78:65:35:9d:70:37:2a:14:09:a6:8c:39:2f:c3:4c:b3:
b4:e0:f6:2b:15:f6:a2:f5:f0:8d:63:35:46:5c:3e:34:3f:d8:
39:46:99:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:00 2025 by rpki-client