Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/Mi67ygrCUYWwuTRAs7C61jqEvzU.roa
File: Mi67ygrCUYWwuTRAs7C61jqEvzU.roa (raw, json)
Hash identifier: nAe39lJ7Byg3iqnt88paTJUwXKzPMW1LkJgT/hMMaIw=
Subject key identifier: 32:2E:BB:CA:0A:C2:51:85:B0:B9:34:40:B3:B0:BA:D6:3A:84:BF:35
Certificate issuer: /CN=2be53d340a8bf47c1bf34d3255e102efb181ad19
Certificate serial: 018CC9BC33E2BD3B0AD5CE045A1815545086
Authority key identifier: 2B:E5:3D:34:0A:8B:F4:7C:1B:F3:4D:32:55:E1:02:EF:B1:81:AD:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-U9NAqL9Hwb800yVeEC77GBrRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/Mi67ygrCUYWwuTRAs7C61jqEvzU.roa
Signing time: Tue 02 Jan 2024 10:33:23 +0000
ROA not before: Tue 02 Jan 2024 10:33:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16645
IP address blocks: 46.236.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 11:52:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:33:e2:bd:3b:0a:d5:ce:04:5a:18:15:54:50:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2be53d340a8bf47c1bf34d3255e102efb181ad19
Validity
Not Before: Jan 2 10:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=322ebbca0ac25185b0b93440b3b0bad63a84bf35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:75:02:d4:63:53:70:a1:76:bc:1e:91:3b:ab:
5e:08:bb:c5:e8:e3:ec:74:de:d2:a2:f4:4b:a5:d5:
19:fa:e8:50:c5:bf:3b:56:64:a6:83:8b:48:df:1f:
13:2f:33:c6:75:78:f9:c1:0d:b2:58:20:16:2e:a7:
11:f9:9a:15:ea:11:76:02:d9:75:f5:72:c1:fe:54:
be:c0:a6:d8:2d:b0:c3:cf:8b:43:df:a8:79:77:1b:
24:86:34:8a:e0:10:18:77:33:af:a2:ff:76:61:df:
d4:6d:55:63:ee:0c:fc:ff:0c:28:06:cc:6b:d4:96:
7f:3d:45:c3:70:f3:b8:58:45:09:b2:3b:4c:e4:78:
6c:bf:95:1d:7f:df:ed:82:c0:db:38:de:e7:41:f4:
d7:f1:a4:91:3c:ed:df:23:7c:03:9b:fa:c4:56:90:
02:32:6a:c6:22:e2:4e:f3:34:92:0b:4c:36:b9:71:
1c:94:74:4e:41:51:4c:55:60:99:8c:19:1f:d9:bd:
2f:2a:4d:88:0e:4a:b3:7d:b0:51:07:45:58:26:b0:
ea:0f:d7:48:30:34:7c:c0:b3:2e:10:2a:53:49:8d:
2f:8e:2f:4c:6f:fa:79:b6:98:ef:e5:e5:58:fd:c7:
16:f6:a8:e1:34:da:9d:e7:eb:a3:d2:a0:1c:ad:26:
a7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:2E:BB:CA:0A:C2:51:85:B0:B9:34:40:B3:B0:BA:D6:3A:84:BF:35
X509v3 Authority Key Identifier:
keyid:2B:E5:3D:34:0A:8B:F4:7C:1B:F3:4D:32:55:E1:02:EF:B1:81:AD:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-U9NAqL9Hwb800yVeEC77GBrRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/Mi67ygrCUYWwuTRAs7C61jqEvzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/f72562-45f5-4019-83a1-74f0c3e663cb/1/K-U9NAqL9Hwb800yVeEC77GBrRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.56.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:2d:e0:9a:6e:3f:fd:07:3f:4d:50:69:82:f5:f9:16:80:ce:
09:eb:a5:6b:95:00:21:51:e8:57:ef:3e:90:bb:20:9c:3d:55:
89:bb:40:0e:51:28:80:e0:62:de:4d:29:f3:f3:81:2a:de:dc:
04:a8:74:6e:a2:f1:69:6b:e6:41:48:4f:e7:c2:84:27:e7:0e:
5d:62:be:bb:63:7f:de:1d:d2:a1:30:76:bf:a8:89:06:6c:8c:
97:4c:f9:82:c0:07:ea:47:76:29:7c:3c:ac:9b:5e:34:ac:af:
f7:3a:f2:1f:86:9c:03:af:1a:ba:d8:62:67:c1:f7:4f:99:23:
38:c8:ac:19:8f:20:9a:8d:cc:8a:87:2e:1e:c2:a4:65:d1:fe:
14:a2:05:a4:7e:7f:f8:85:58:85:79:04:00:74:7c:1f:87:c6:
d4:6f:1a:49:18:9c:db:2e:eb:1f:8d:43:d7:9d:33:47:79:dc:
f6:80:23:f6:7b:52:c9:d0:45:21:6a:e2:67:52:6f:0b:e4:ca:
95:89:4c:7b:c5:3a:83:41:a8:86:a7:2e:b0:8b:51:a9:b1:ee:
5d:1b:6a:5d:5a:f5:34:b8:1a:8d:74:a0:37:bc:a8:15:6c:24:
52:89:01:93:05:a7:26:de:df:68:43:38:7e:1f:a7:f8:48:15:
e6:e5:a8:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:23 2025 by rpki-client