Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa
File: AS22427.roa (raw, json)
Hash identifier: U4Cb5mckWDIUl9CvQ4d9tWbbS1ZmDVjxpY8rjLLpYeg=
Subject key identifier: DC:F3:A6:6F:F3:2F:39:76:EB:4C:6C:53:79:E2:48:60:26:8D:64:35
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 02273765C412D71E665B2A2A7278007425B5510D
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa
Signing time: Wed 04 Dec 2024 01:22:40 +0000
ROA not before: Wed 04 Dec 2024 01:17:40 +0000
ROA not after: Wed 03 Dec 2025 01:22:40 +0000
asID: 22427
IP address blocks: 46.203.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 00:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:27:37:65:c4:12:d7:1e:66:5b:2a:2a:72:78:00:74:25:b5:51:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Dec 4 01:17:40 2024 GMT
Not After : Dec 3 01:22:40 2025 GMT
Subject: CN=DCF3A66FF32F3976EB4C6C5379E24860268D6435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f7:34:d5:2e:a6:98:49:0c:2c:56:63:b2:65:
7e:df:25:d6:db:0d:02:94:91:dd:dc:34:d3:97:a3:
a6:ee:ae:1c:39:b2:47:97:38:c7:ef:b2:14:63:3a:
20:ad:b1:88:80:ff:1b:35:15:c3:74:96:f2:95:82:
e2:3e:0f:60:f2:b5:65:a5:8a:d8:3a:e5:31:e3:d8:
ca:f3:00:c5:9b:78:20:5f:ef:1e:97:de:ed:40:77:
89:c6:45:04:b1:b2:4c:76:30:8f:ae:35:8e:1f:b3:
ab:14:32:a2:94:79:30:3e:2c:e3:ae:49:2b:24:27:
22:96:f7:86:f0:36:2f:44:26:e1:7a:bf:e8:23:99:
2b:20:f2:59:3b:c8:a8:f2:24:4d:96:9f:15:2e:37:
49:ee:3b:2f:81:81:b4:cf:0a:ce:be:0c:40:e9:3b:
fd:87:dc:b6:61:a1:33:39:7b:42:e2:5d:9b:e7:30:
17:49:c7:e4:11:19:cd:f8:c3:3c:55:08:d3:52:76:
af:93:e0:e9:26:1d:59:ee:aa:8f:a7:52:da:e2:e4:
76:54:e7:44:e4:08:00:ce:87:4d:3b:df:fd:e3:e4:
7b:84:4c:fe:93:d8:78:92:0d:2a:82:b1:f6:1b:42:
45:9b:58:fb:ea:5d:4a:a3:9c:45:bf:0b:02:08:f3:
d1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F3:A6:6F:F3:2F:39:76:EB:4C:6C:53:79:E2:48:60:26:8D:64:35
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS22427.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.106.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:96:dd:86:e0:ae:d0:b7:ed:f5:81:01:d5:c7:63:e4:63:cf:
f9:de:c1:e7:70:b6:76:b0:00:a9:1c:46:7d:01:63:1f:67:1b:
5c:83:04:0d:26:f3:c9:6c:54:0a:85:54:63:07:9f:53:a2:3b:
28:18:54:9e:e4:3d:b5:40:5b:f6:81:de:72:4a:7c:be:9f:0e:
cd:48:99:7a:27:af:32:a4:2a:62:45:b6:14:4e:e5:71:b8:3b:
60:91:bb:00:05:06:98:4a:5c:42:55:d4:8b:1a:43:df:9e:c1:
81:da:dd:d4:ff:0e:46:5f:01:91:be:bb:71:37:21:35:38:19:
f3:97:fb:c4:cd:58:56:3e:7d:fa:a8:00:5b:f1:26:70:70:c0:
64:d4:4e:de:97:50:70:4a:4b:d6:c5:5d:64:e3:e3:1c:87:43:
62:1d:03:4a:b6:5d:22:25:9d:bd:da:32:f5:8c:8a:37:7f:8c:
45:5f:8b:2d:66:23:2c:b0:fe:b0:b9:3a:79:b7:1d:3e:00:3c:
f6:8d:5a:8d:2c:4b:99:fb:54:47:7e:59:a8:8c:ce:24:93:6c:
e0:1d:de:32:3d:05:70:08:8f:40:b4:bb:60:86:0f:67:55:71:
44:25:f5:bb:74:b1:71:5b:e5:74:77:75:04:17:b5:b0:e5:0a:
a5:6f:ef:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 17:06:29 2025 by rpki-client