Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/BNFeraR6tpHYAERUVxvgh-RwBGc.roa
File: BNFeraR6tpHYAERUVxvgh-RwBGc.roa (raw, json)
Hash identifier: t5maWHTq4u4ty9XXsgdBHQXIYSEdjmAqEBfk3KFu7cs=
Subject key identifier: 04:D1:5E:AD:A4:7A:B6:91:D8:00:44:54:57:1B:E0:87:E4:70:04:67
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0194C53DC2730942573FC281258B50B44AD6
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/BNFeraR6tpHYAERUVxvgh-RwBGc.roa
Signing time: Sun 02 Feb 2025 05:59:06 +0000
ROA not before: Sun 02 Feb 2025 05:59:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 46.37.98.0/24 maxlen: 24
46.37.99.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Feb 2025 22:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:3d:c2:73:09:42:57:3f:c2:81:25:8b:50:b4:4a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Feb 2 05:59:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=04d15eada47ab691d8004454571be087e4700467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fd:fa:be:54:57:1e:c3:ac:bc:69:e2:87:71:
16:1a:51:f3:90:87:4b:38:ce:ba:35:b6:d3:68:38:
a3:3a:56:a1:23:54:40:ec:9a:bd:92:e7:fe:67:9c:
e7:2e:60:d8:c7:65:99:fa:08:af:69:6a:d6:62:e5:
49:ab:25:e1:28:66:34:a3:11:c4:3d:6f:cb:f0:94:
d8:f9:f5:49:ba:a5:f6:94:0d:04:6e:36:19:2a:c6:
55:75:e7:fe:e4:12:b5:0b:3c:84:43:46:0a:a9:8a:
e7:b6:60:40:ac:85:ff:4a:2b:68:84:92:64:3f:af:
d9:c7:f6:f3:34:6c:0b:3f:c3:1a:99:00:2d:6b:56:
e6:0a:f0:e3:fe:12:d0:e4:54:b8:8a:c8:b1:4b:10:
e2:2a:5d:a5:73:39:dc:89:77:78:1e:8b:69:03:ce:
9d:d3:e7:08:87:cb:87:1f:a9:94:52:07:91:70:4e:
63:c6:07:91:29:c9:f8:fc:4d:56:98:8e:b5:d4:0b:
85:35:4e:17:c2:74:d6:24:d6:77:e9:83:ca:95:5a:
17:d8:f7:e3:49:80:7e:73:32:f5:45:dd:28:99:9b:
f9:fa:92:75:c2:15:3a:ce:1d:63:bf:4f:e4:12:93:
5c:16:5e:71:f0:c7:5e:61:3e:5d:01:24:cc:d7:19:
80:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D1:5E:AD:A4:7A:B6:91:D8:00:44:54:57:1B:E0:87:E4:70:04:67
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/BNFeraR6tpHYAERUVxvgh-RwBGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.98.0/23
46.37.113.0/24
Signature Algorithm: sha256WithRSAEncryption
46:5c:30:f1:6d:58:12:bf:0b:b0:a6:2b:1b:71:90:78:93:02:
53:22:c8:32:b2:b3:3f:fc:71:17:ee:b2:59:2c:d9:32:5a:07:
25:20:e9:b3:aa:6a:54:b2:6b:7f:f1:15:19:9f:66:d0:b0:4d:
5d:60:8b:a0:1a:ac:4a:fc:c4:8c:55:0c:8a:ec:02:84:ae:7e:
d8:47:3a:be:73:9a:52:c6:38:40:76:5e:66:83:28:51:88:44:
fc:62:9b:b2:97:5b:1a:37:93:6f:2c:04:e3:09:1e:a2:9a:a0:
4c:ed:30:db:68:af:24:0a:51:af:04:97:38:aa:df:91:2e:4b:
46:91:6a:a8:d8:dd:71:3f:4d:7c:a2:bd:0e:32:21:17:a1:d7:
6e:46:f2:03:9d:52:f7:1a:b0:ae:ef:48:53:e9:08:af:5a:f5:
9d:09:88:96:8f:69:02:55:a0:12:5c:83:7c:80:2e:96:a8:9a:
d7:d6:5a:c7:9b:2b:f0:6a:4e:15:56:54:a8:68:f2:6c:5b:03:
a9:f0:71:ae:d6:da:98:43:05:83:de:50:ae:d4:e0:3b:c7:69:
12:52:f0:b9:cb:f1:1b:68:0b:e6:74:09:fa:23:25:33:18:31:
fd:6a:0e:64:1b:5b:fb:49:04:47:7e:be:a6:08:ed:5a:bf:e7:
f1:12:75:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 02:17:29 2025 by rpki-client