Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ia8DS8beKa88m5_hC29ljWJOxc4.roa
File: ia8DS8beKa88m5_hC29ljWJOxc4.roa (raw, json)
Hash identifier: 768OG+qAZ/ztXy4N09vl1tmbKAu3EvFbFmHjfCMwiQs=
Subject key identifier: 89:AF:03:4B:C6:DE:29:AF:3C:9B:9F:E1:0B:6F:65:8D:62:4E:C5:CE
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 018D8D4F75BD9993D7DB40F6399728A383F9
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ia8DS8beKa88m5_hC29ljWJOxc4.roa
Signing time: Fri 09 Feb 2024 10:00:11 +0000
ROA not before: Fri 09 Feb 2024 10:00:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 176.46.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Feb 2024 09:42:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8d:4f:75:bd:99:93:d7:db:40:f6:39:97:28:a3:83:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Feb 9 10:00:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89af034bc6de29af3c9b9fe10b6f658d624ec5ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:82:ff:e0:48:a4:0f:e2:49:bc:c5:1e:7e:9c:
4f:85:4d:bd:13:10:99:02:31:5e:6e:70:51:11:fd:
2e:ef:b3:fd:81:ba:d0:ad:67:d5:0f:80:a4:1b:a4:
08:54:d6:9e:40:4e:65:cd:54:36:8c:69:3e:c3:67:
1d:36:e0:74:03:f5:0c:35:67:66:5b:88:01:28:33:
d2:36:c1:fb:67:d6:07:12:b7:2c:41:06:73:78:43:
95:c7:07:34:9f:e9:86:cd:41:ea:97:15:ee:79:86:
6a:e6:84:0a:7e:05:ad:26:73:35:cd:c7:d6:69:07:
8b:e0:9f:a7:d0:76:84:42:4b:ab:16:f3:e8:15:cd:
f8:de:30:0b:73:00:d4:e6:a9:2e:54:7c:47:9c:eb:
0b:c7:e1:44:1e:77:a1:d4:68:dd:4c:4b:e9:d6:61:
22:4f:72:e5:7e:55:a0:ca:e1:74:6d:7f:11:12:0c:
fa:58:c9:dc:1f:df:e2:1c:b0:c5:33:52:07:7f:39:
f2:a3:af:73:8d:4d:1c:61:ef:d9:b3:cc:37:08:06:
45:05:e8:97:88:79:25:70:0a:82:c3:02:18:6c:2a:
48:7b:d1:43:e3:4f:2d:11:c9:31:bd:ef:3e:0b:09:
66:79:22:af:95:51:4c:8f:1f:34:bf:3b:af:32:05:
3b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AF:03:4B:C6:DE:29:AF:3C:9B:9F:E1:0B:6F:65:8D:62:4E:C5:CE
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/ia8DS8beKa88m5_hC29ljWJOxc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.46.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f3:e9:db:55:f8:3e:50:33:2b:eb:a1:2b:2b:fb:15:c2:92:
24:a9:0f:19:b5:88:5f:8a:2b:6f:fe:6c:05:f7:c9:ff:bc:f7:
e5:89:be:61:67:45:ef:2a:3d:75:ca:6b:f7:a1:d9:91:7c:b8:
56:3d:e9:b6:f5:f1:48:8c:2e:9c:da:eb:70:f4:b2:af:5b:31:
f0:2d:5f:d5:66:ae:c0:b7:43:cb:4a:64:62:ff:04:ff:14:97:
b6:41:59:82:99:fa:0a:63:ea:1e:82:bc:8f:41:ef:60:3f:76:
aa:f2:6c:64:62:41:7a:e8:c3:c3:37:83:45:99:cc:df:b9:9e:
3c:e1:93:d2:8a:e8:cc:8e:72:7c:d6:a1:27:cc:d5:04:55:34:
f8:e1:c8:b1:3c:97:6f:64:0d:e8:37:52:ad:43:86:b3:9e:cd:
75:7f:0c:d6:2b:33:08:18:33:14:e5:95:f2:4e:7d:f9:03:7f:
18:c0:5d:25:cf:3c:91:7e:27:12:a8:de:ac:21:b0:3a:44:df:
5f:17:b6:38:a3:cc:3f:27:0b:c1:cd:be:61:6a:b0:0e:2e:13:
72:e6:0b:6b:66:6d:8c:d9:ea:fa:a8:ed:81:eb:d2:ec:98:66:
3c:92:2d:4b:2e:10:a8:fe:bb:59:a0:8f:35:38:40:18:56:0f:
ec:39:d5:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:21:10 2025 by rpki-client