Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/sQ00TBCKCEreWSQY5EWMmNIr2hw.roa
File: sQ00TBCKCEreWSQY5EWMmNIr2hw.roa (raw, json)
Hash identifier: McgU5/rETfrMgs8cMDxyd9C9epdRh1hIUm0pgz86l/U=
Subject key identifier: B1:0D:34:4C:10:8A:08:4A:DE:59:24:18:E4:45:8C:98:D2:2B:DA:1C
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 019420D5DAD015FEA2BF38B40A146D5C6BEA
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/sQ00TBCKCEreWSQY5EWMmNIr2hw.roa
Signing time: Wed 01 Jan 2025 07:47:53 +0000
ROA not before: Wed 01 Jan 2025 07:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47959
IP address blocks: 46.23.110.0/26 maxlen: 26
Validation: Failed, certificate revoked on Tue 07 Jan 2025 20:29:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:da:d0:15:fe:a2:bf:38:b4:0a:14:6d:5c:6b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 07:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b10d344c108a084ade592418e4458c98d22bda1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bd:95:68:37:7d:fc:a8:fc:41:36:ea:0f:8e:
4d:5e:6c:9e:de:7c:9b:7a:d6:b4:43:bf:91:1d:b4:
e2:16:ea:69:b5:5f:da:0d:bc:55:6c:27:7c:12:b5:
f0:e9:4d:99:63:79:9e:bb:49:f6:72:28:f0:20:8a:
14:8d:39:90:4e:c5:f6:20:20:f5:77:54:42:7b:28:
54:8e:1b:14:0a:57:4e:02:1e:6f:a7:0b:ee:77:26:
3e:5f:f1:b3:a4:5e:59:dd:af:f9:79:e8:90:13:ba:
6a:49:26:56:8e:ae:9a:40:97:c3:f7:98:b3:9f:2d:
db:31:c0:fb:c8:a8:f3:93:3d:4d:42:f6:ad:6b:b1:
ab:aa:73:63:ad:0c:60:81:c3:51:6c:76:ad:0f:33:
94:45:24:4f:30:97:c5:94:b7:a9:ce:98:5e:95:28:
1b:8a:80:b9:62:f4:9d:7a:78:93:10:48:64:16:51:
5e:d5:7a:f4:e1:1a:f4:e3:ac:b1:60:87:80:32:a4:
31:bd:a0:71:cf:b6:e2:6c:89:8b:70:e4:6a:98:27:
90:38:96:5b:b8:d4:08:f5:e5:27:dc:3e:1e:d1:78:
17:78:b0:65:1c:7c:bd:ee:88:db:91:15:da:79:31:
53:a9:98:0a:b0:2c:e3:b7:59:9b:c9:e7:7d:67:ce:
12:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0D:34:4C:10:8A:08:4A:DE:59:24:18:E4:45:8C:98:D2:2B:DA:1C
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/sQ00TBCKCEreWSQY5EWMmNIr2hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/26
Signature Algorithm: sha256WithRSAEncryption
7b:e7:21:93:de:17:d7:1d:6e:52:0a:7e:07:aa:6b:b4:6f:37:
9b:49:f0:cf:46:83:50:5b:6a:26:51:53:e6:9c:d1:f8:fa:e8:
5f:78:8c:6e:9b:f4:33:2e:92:d4:1e:a2:92:17:c6:74:1c:98:
97:a7:b7:d6:2c:35:5e:1e:80:9a:b0:ad:7d:4a:a2:55:2c:94:
62:84:d0:b6:2f:10:5b:86:8f:5c:9d:91:a3:43:e8:95:4d:d8:
24:03:44:18:88:99:e0:c0:cd:09:e9:c4:d9:9f:24:8a:17:a8:
f2:35:3f:44:ee:df:7d:a1:77:7e:5d:dd:b0:69:fb:06:ed:cd:
b0:d8:a7:73:3e:bc:a7:e1:11:1a:4d:63:bd:e3:60:36:66:89:
b2:d0:df:cc:8c:2f:17:1a:1c:c1:e7:2e:8b:99:b4:0c:35:a4:
80:2b:c0:d7:16:d6:26:00:8b:22:27:d3:da:f6:c9:42:e4:e6:
02:7f:48:1d:04:09:30:59:69:d9:ff:e0:5f:6e:71:75:0c:ad:
08:00:e7:9c:f8:f9:13:6a:2e:dd:89:4f:de:cc:2d:fe:22:73:
6b:b4:76:66:9e:8c:0d:01:fa:2f:0e:ac:2d:29:9c:49:3a:ba:
c7:95:a1:ef:33:8e:41:8a:35:17:b2:b4:d9:95:11:b1:43:ad:
fa:4e:e1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:38:31 2025 by rpki-client