Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/bDMID2gMThhr33FxcTs5R360q04.roa
File: bDMID2gMThhr33FxcTs5R360q04.roa (raw, json)
Hash identifier: pMqZDas5SK+DeUwiUBmLcfheqcu2lXC8CNKCHkVXiig=
Subject key identifier: 6C:33:08:0F:68:0C:4E:18:6B:DF:71:71:71:3B:39:47:7E:B4:AB:4E
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 01856F66C41435761F29AAB5CE55422B2F00
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/bDMID2gMThhr33FxcTs5R360q04.roa
Signing time: Sun 01 Jan 2023 22:14:43 +0000
ROA not before: Sun 01 Jan 2023 22:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60128
IP address blocks: 46.236.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:c4:14:35:76:1f:29:aa:b5:ce:55:42:2b:2f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 22:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c33080f680c4e186bdf7171713b39477eb4ab4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fb:e4:2c:19:cf:a8:85:da:0b:13:60:2c:70:
7f:22:75:ce:82:b1:9b:41:d1:b2:c4:f7:53:86:af:
52:62:34:0e:44:dd:2c:13:88:a9:6a:d4:16:2e:b9:
36:4d:c6:54:64:98:99:eb:16:ce:2d:2f:b8:ec:19:
74:c3:5a:7c:8b:dc:08:17:18:9d:e7:99:3e:30:77:
6d:d0:ed:79:64:91:d7:c7:ef:aa:ef:ac:0f:1e:25:
0b:60:be:41:c2:0a:c9:ce:f2:78:dc:b4:a7:db:09:
ed:7a:61:2d:e7:a6:83:de:4c:40:ae:ef:10:32:7b:
57:9f:c5:a5:e5:84:ca:00:a5:5c:ee:01:de:cf:7f:
fe:52:0b:a4:4f:c1:d7:d6:1a:eb:e4:57:e3:9a:46:
06:35:9e:62:94:6e:c1:45:38:54:3c:50:46:e2:63:
bd:0a:ef:cd:cc:22:da:57:20:a8:76:9f:f9:f9:c1:
50:fc:af:fb:6e:90:ce:10:09:77:b9:7f:dd:58:b8:
53:33:40:c9:28:39:a4:6e:42:1e:4c:d5:48:06:57:
0e:01:40:be:7f:da:84:27:82:de:49:45:b9:bf:97:
eb:8d:cf:1d:42:80:e9:d3:73:63:bc:36:f9:88:a7:
db:a4:6d:5f:50:9b:f0:a8:0e:6d:51:46:c2:98:2b:
f6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:33:08:0F:68:0C:4E:18:6B:DF:71:71:71:3B:39:47:7E:B4:AB:4E
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/bDMID2gMThhr33FxcTs5R360q04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.218.0/24
Signature Algorithm: sha256WithRSAEncryption
23:50:34:a3:91:df:f8:a4:8b:10:70:62:47:98:9f:9d:1b:2f:
2c:68:b1:b7:26:33:cc:f7:39:75:2a:9c:b8:46:b4:05:ed:de:
c6:15:43:fe:40:3d:f7:0c:71:8b:e3:63:10:94:fe:aa:14:da:
28:0f:47:f0:56:d1:65:e1:18:66:09:20:9a:21:2c:e6:d7:1d:
25:94:c8:fd:39:f8:07:02:53:03:e3:24:1c:2f:bb:70:11:6e:
7b:21:08:f5:2a:9a:e1:8d:7f:79:12:30:14:da:54:48:2c:2c:
e7:51:48:e5:c6:de:17:8b:57:2d:c9:90:45:1a:3a:7f:4d:96:
d0:4c:f6:4a:06:2b:01:24:9c:72:34:4b:f0:8a:fc:64:5c:c4:
4e:7c:f0:74:02:1e:fc:65:e0:2b:88:01:67:c9:00:87:83:35:
d8:94:24:71:94:f5:9b:62:29:63:af:c4:6d:d0:41:c9:d0:70:
a7:c8:d9:5a:bf:2f:98:0c:78:75:81:87:3b:c0:bb:c8:3a:7e:
ab:01:5b:5e:b1:5a:aa:3e:48:76:7e:51:45:f5:81:a2:28:01:
7a:6c:ba:fb:a5:04:53:50:88:e9:47:cd:55:9d:8b:e7:3a:ad:
fd:6d:b0:50:45:26:1c:86:dd:c0:cf:53:1b:4c:a7:66:85:45:
d1:27:24:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org