Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/iF2AUuMEHfC2ErOTni1C9Nc_nCI.roa
File: iF2AUuMEHfC2ErOTni1C9Nc_nCI.roa (raw, json)
Hash identifier: yY7SZqqjG1LJCVrsbHfQfWXdIaiiI/Hw4lkXIpk+vWs=
Subject key identifier: 88:5D:80:52:E3:04:1D:F0:B6:12:B3:93:9E:2D:42:F4:D7:3F:9C:22
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018F58BA9FD5FC6A6242A96FE22E5D430265
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/iF2AUuMEHfC2ErOTni1C9Nc_nCI.roa
Signing time: Wed 08 May 2024 15:02:56 +0000
ROA not before: Wed 08 May 2024 15:02:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62163
IP address blocks: 46.161.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 17:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:ba:9f:d5:fc:6a:62:42:a9:6f:e2:2e:5d:43:02:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 8 15:02:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=885d8052e3041df0b612b3939e2d42f4d73f9c22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ef:d1:aa:30:61:7f:e7:22:bd:46:5f:ec:dd:
d5:79:92:9e:5b:21:27:e5:76:5b:f1:7f:fa:a7:a8:
a1:61:bb:78:75:ad:51:2f:15:e5:21:4f:1b:e0:b9:
04:14:88:b1:d9:c4:39:5a:38:b5:18:c2:16:f8:c3:
22:fa:43:a5:13:a1:e8:31:8b:0f:a9:ce:7a:9f:d2:
b8:52:57:50:98:eb:ec:e6:3c:65:aa:3a:98:37:af:
79:02:3d:91:fc:84:ef:e4:c8:66:43:a6:95:2a:03:
08:e6:09:4d:2f:b9:41:d5:fb:a1:49:d8:f2:49:7b:
5a:6d:b7:09:51:b1:64:01:ce:89:78:0f:f9:51:aa:
81:2e:29:00:c6:a7:1e:01:5d:ac:e5:9c:91:14:95:
c3:b5:ca:4d:df:2d:64:f3:4a:76:6d:bc:0e:8e:a2:
c1:02:bc:c6:36:74:b7:51:63:26:24:58:2f:69:b9:
df:71:b6:1b:91:0b:90:9e:76:86:80:52:2e:52:cf:
0e:30:70:64:86:8b:a8:f5:1d:32:76:fa:7e:49:ab:
70:95:17:a0:84:db:c0:c6:bd:78:f4:94:29:9e:fb:
f5:7e:f4:0f:7e:d7:3c:69:28:2b:f1:d5:5e:d7:01:
88:96:e2:2e:3a:1f:25:3b:5a:45:38:05:20:4c:7d:
02:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5D:80:52:E3:04:1D:F0:B6:12:B3:93:9E:2D:42:F4:D7:3F:9C:22
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/iF2AUuMEHfC2ErOTni1C9Nc_nCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:a3:6d:93:11:70:c9:1c:7f:41:ba:bc:c6:55:fa:22:0c:20:
9b:fb:12:9a:da:45:d7:5a:21:68:d8:f5:8f:ce:9f:eb:41:85:
06:9b:e6:f9:83:97:d9:a7:49:8f:60:00:8e:16:1f:33:4f:3f:
56:c9:5b:25:ca:84:f4:42:26:3b:23:cb:06:2f:fc:29:87:68:
ef:f5:fa:f4:79:89:c0:75:36:ff:e0:4c:01:87:09:7b:90:40:
45:d5:e5:52:de:61:9d:27:18:2e:b9:4f:3b:eb:91:cd:ad:58:
09:45:fb:a1:cd:31:20:90:d0:79:c7:2b:f1:44:2d:2d:eb:ed:
40:cf:8e:2c:5f:c5:59:3f:b9:ea:e6:c9:a2:da:63:a8:b3:a1:
17:c1:3a:65:a3:4e:22:b0:c1:3e:a6:81:da:6f:18:92:7c:1d:
ef:f0:9c:26:c6:c4:f3:9e:88:e1:09:10:15:12:9c:ab:17:30:
e2:43:df:44:e6:c9:18:e7:d4:d2:3e:91:59:4f:dd:aa:94:93:
7e:7a:02:c3:63:98:34:42:68:37:08:40:6b:cc:58:f0:d8:c4:
96:c9:68:ea:c0:17:26:ca:b0:1f:bd:68:08:96:43:0b:16:77:
68:21:f5:3e:8e:90:32:99:8d:a2:2a:db:bf:7c:6f:bc:50:4f:
a8:b8:5e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:08:26 2025 by rpki-client