Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/0DkJi8rwX4-44cjOSjNEmtfryO0.roa
File: 0DkJi8rwX4-44cjOSjNEmtfryO0.roa (raw, json)
Hash identifier: Ka0WBZrGRWFYrWlYbNUNsYGtlht2xT4sXFaVL4I2lBE=
Subject key identifier: D0:39:09:8B:CA:F0:5F:8F:B8:E1:C8:CE:4A:33:44:9A:D7:EB:C8:ED
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01930128F541838888479E2C2D0953434DAB
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/0DkJi8rwX4-44cjOSjNEmtfryO0.roa
Signing time: Wed 06 Nov 2024 11:08:01 +0000
ROA not before: Wed 06 Nov 2024 11:08:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200435
IP address blocks: 46.37.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:01:28:f5:41:83:88:88:47:9e:2c:2d:09:53:43:4d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Nov 6 11:08:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d039098bcaf05f8fb8e1c8ce4a33449ad7ebc8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:07:d2:7b:c7:16:22:00:aa:48:0b:01:d1:14:
7c:ff:25:72:93:f5:00:25:da:81:cf:34:8f:b1:f6:
8a:40:fd:ca:e6:3b:ce:ef:20:06:1c:1f:1c:50:12:
bf:86:29:d0:24:9c:29:07:09:fe:f0:85:be:7a:c5:
28:39:d3:63:fc:4c:71:20:76:7b:94:ca:f4:67:7a:
b6:e5:7e:0c:80:10:9a:57:9d:f1:de:94:41:53:c2:
05:ed:b0:61:2c:8f:57:8a:49:d5:3b:da:b5:1d:ba:
42:0a:63:08:df:d8:fb:29:eb:1a:a5:53:7b:7b:45:
0b:e4:27:d2:10:73:18:24:2e:cf:2c:2d:19:3b:16:
bc:d1:66:01:8a:d7:a5:c9:1b:76:7f:c8:1e:4b:20:
14:f6:ea:2e:e9:b2:45:8c:e8:a3:e4:ed:f6:03:59:
bc:9e:a3:f6:14:96:00:77:35:db:1c:ad:aa:3a:55:
83:fd:be:4f:63:b1:7a:2b:e3:28:53:2f:27:60:e7:
cd:52:45:97:e6:78:00:d5:01:72:67:60:e4:0c:68:
28:99:66:3a:3f:77:40:65:e0:6d:db:22:cb:cb:87:
29:da:91:b4:cb:94:08:86:2c:ed:66:22:db:7f:eb:
82:f5:bb:30:03:d8:32:66:39:8d:52:fe:21:d8:12:
84:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:39:09:8B:CA:F0:5F:8F:B8:E1:C8:CE:4A:33:44:9A:D7:EB:C8:ED
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/0DkJi8rwX4-44cjOSjNEmtfryO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.120.0/24
Signature Algorithm: sha256WithRSAEncryption
12:70:db:08:c4:40:fe:a7:aa:40:a1:ce:37:6c:ca:d5:05:08:
8d:64:15:08:1d:94:41:f4:76:12:f8:2a:5b:85:4f:e2:73:b4:
e9:51:6f:8c:77:17:1f:66:ef:89:42:87:d6:e4:36:4f:32:9f:
fa:cc:48:5a:5f:fe:45:ab:5f:ea:38:96:91:0f:3c:16:54:d4:
1d:94:cd:ca:08:49:ed:8e:a1:0c:ca:12:31:7e:97:93:83:80:
70:3b:61:3a:d9:39:81:4b:4a:df:84:c1:fb:46:fc:4b:cf:36:
45:f4:fc:70:01:0f:95:9f:37:fd:df:0e:07:d3:b3:56:8a:c8:
20:88:9c:06:cb:b3:93:48:f4:e0:f4:57:ea:de:19:d2:22:a3:
89:1e:6f:67:08:1e:f9:b6:76:9b:25:de:71:84:ce:15:12:33:
b3:b2:f1:7a:8d:9a:9a:8a:be:18:00:9c:69:f0:9b:7a:24:c8:
03:ef:9d:f0:47:e3:54:28:7e:73:d2:2d:45:15:d1:7f:a4:ce:
6e:26:7f:ac:b9:96:0a:62:bf:9f:95:0f:ee:4d:01:f8:23:24:
96:01:b0:0d:c1:a2:85:10:2b:9b:2d:cb:f5:31:ce:4b:d8:23:
fc:c2:8a:1e:5e:30:1a:40:42:85:9d:a4:8d:49:05:5c:b6:52:
fc:0b:44:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:18 2025 by rpki-client