Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/tphqvhGk1Sb3iMRvpSRiFw8EWYA.roa
File: tphqvhGk1Sb3iMRvpSRiFw8EWYA.roa (raw, json)
Hash identifier: O05a4Xjj9hHmCxOQwgDJFYJLV4CRB1XQ7XPwPFAIMhM=
Subject key identifier: B6:98:6A:BE:11:A4:D5:26:F7:88:C4:6F:A5:24:62:17:0F:04:59:80
Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial: 019233C17236E4C2B6263F0ECD27CDF54536
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/tphqvhGk1Sb3iMRvpSRiFw8EWYA.roa
Signing time: Fri 27 Sep 2024 13:52:48 +0000
ROA not before: Fri 27 Sep 2024 13:52:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 178.17.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 30 Dec 2024 13:17:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:33:c1:72:36:e4:c2:b6:26:3f:0e:cd:27:cd:f5:45:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Validity
Not Before: Sep 27 13:52:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6986abe11a4d526f788c46fa52462170f045980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:8c:39:2e:ea:cc:e6:13:dd:28:90:ec:4f:
2a:39:a0:c1:80:8b:84:f3:12:ec:68:44:c4:a0:bf:
51:14:af:41:7f:01:ab:84:06:2c:54:05:58:a3:d3:
6a:bc:53:b3:74:b1:b0:ce:64:82:e4:85:cf:1f:c5:
48:c9:3d:87:a2:23:8a:4e:2c:0a:90:26:74:b8:d3:
89:3f:a4:62:7c:9b:d9:83:aa:c0:4a:a7:21:03:fc:
c8:02:19:08:3a:0a:c3:32:51:4f:09:67:2f:3e:82:
9d:d0:f3:13:dc:4e:78:15:c1:dd:1e:21:fe:95:3c:
7f:16:cb:ef:d9:d9:0d:50:34:0c:8f:13:83:e4:e6:
16:a9:5d:9e:56:9c:b9:0b:bd:e3:85:45:fe:1a:0a:
3e:a7:56:70:a5:11:4d:f2:e2:e6:7f:f4:57:ca:34:
ad:ce:dc:4b:58:a4:a7:5f:f4:ca:b9:e6:65:af:89:
4d:93:7b:0e:ec:c9:cf:57:76:6d:c3:c5:dc:fc:30:
3b:8c:60:c2:11:e8:4b:89:e3:b3:d9:0e:17:70:f3:
ee:67:93:0e:42:3a:e0:bc:fd:01:79:14:d0:36:31:
2e:73:31:ef:26:f2:70:74:fb:e8:aa:17:f4:c1:7d:
89:53:d2:fd:64:74:21:6f:ca:0b:44:08:f5:7a:b0:
5b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:98:6A:BE:11:A4:D5:26:F7:88:C4:6F:A5:24:62:17:0F:04:59:80
X509v3 Authority Key Identifier:
keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/tphqvhGk1Sb3iMRvpSRiFw8EWYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.17.48.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:3a:49:ba:31:a5:17:07:66:82:43:a1:84:3f:0c:80:8e:c4:
0b:d7:e2:40:4a:07:27:5c:6a:ca:7e:18:53:f0:4a:3d:a9:8c:
eb:7e:6c:2c:71:e4:0b:dc:06:95:5c:65:83:25:81:fd:e1:0c:
d4:92:de:56:18:09:c5:f6:7f:06:0f:c7:24:5c:0e:5b:8f:24:
2b:f8:5f:82:7f:93:a1:84:6d:33:49:75:25:2d:bd:f8:d9:66:
c5:8d:58:bd:06:6f:8a:8c:ef:a1:16:53:44:83:ca:09:1c:ea:
ea:d4:ce:a4:af:4f:cf:be:24:62:50:cb:d8:5f:eb:46:9c:6f:
3c:ff:6e:04:55:b1:4d:39:86:65:d8:69:1a:cd:4f:e5:69:27:
22:e2:c6:03:fe:f7:97:93:45:bd:c0:db:54:1c:74:26:f8:3c:
cf:99:97:f8:11:2e:3a:a4:ce:03:8a:22:f6:ac:ed:66:fd:22:
9c:d8:36:cd:48:1b:cf:8a:de:e3:65:3e:cc:da:d2:f5:49:3e:
8c:51:f0:fc:cc:10:2d:48:54:b9:41:27:f1:02:92:27:b0:9a:
1c:36:14:4e:fb:cc:d5:c4:c2:6d:82:22:2b:0e:2f:4d:b7:a1:
97:95:0c:c6:7a:ca:a0:7d:24:1f:de:1b:05:eb:4c:d5:16:a6:
e8:ba:8d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:40 2025 by rpki-client