Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/im85xILleHQTOhsJfO_-qGjEoSc.roa
File: im85xILleHQTOhsJfO_-qGjEoSc.roa (raw, json)
Hash identifier: 3i+IYGmLGa7UN2sqit/AJ5OkHHGZDRgR9aGlG4z3xAg=
Subject key identifier: 8A:6F:39:C4:82:E5:78:74:13:3A:1B:09:7C:EF:FE:A8:68:C4:A1:27
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 018F013C6E38F25498BCEAB95172C88E0F7D
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/im85xILleHQTOhsJfO_-qGjEoSc.roa
Signing time: Sun 21 Apr 2024 15:18:08 +0000
ROA not before: Sun 21 Apr 2024 15:18:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 46.148.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 09:47:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:01:3c:6e:38:f2:54:98:bc:ea:b9:51:72:c8:8e:0f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Apr 21 15:18:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a6f39c482e57874133a1b097ceffea868c4a127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:13:67:8f:bf:f5:06:02:02:93:ab:b5:c0:e4:
9e:67:ca:a5:90:82:33:91:99:4b:dc:e1:86:64:12:
c8:41:99:4d:49:12:8a:62:c1:db:8a:c9:a7:67:6b:
30:59:ac:7e:ef:49:5a:49:9d:c0:5f:77:d9:cf:cd:
ec:5d:4c:39:61:93:ac:65:8a:d0:d6:b3:0b:d2:10:
75:ff:b6:68:7b:dc:1c:1d:b9:a5:9c:1d:e7:39:80:
53:5b:86:5f:72:c5:b3:db:5d:24:80:26:72:9d:54:
6e:2e:8b:a7:ba:99:90:42:f8:0a:bc:65:bd:98:67:
8c:54:22:04:0e:b4:0e:cf:b3:c5:f8:d7:0b:ce:5f:
b9:90:54:12:36:00:cf:b7:97:ff:82:bf:f0:32:33:
f6:f1:8b:c1:5d:01:d3:03:a4:8f:f0:1a:5c:1a:59:
9d:a3:a8:e6:4a:a4:27:e6:82:59:9a:83:ef:28:35:
a8:bf:e4:a2:49:fb:ea:b0:67:77:9b:49:57:c9:70:
b0:a7:2a:66:c1:04:e8:ac:60:47:8f:79:8f:1b:7e:
77:f1:71:62:2e:fa:de:82:95:2e:52:5f:76:e1:9b:
8a:99:08:ed:f5:00:86:00:96:cc:22:62:fd:8c:2f:
c8:88:35:0d:03:8f:dd:20:96:4a:9c:ba:7f:a6:69:
2a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6F:39:C4:82:E5:78:74:13:3A:1B:09:7C:EF:FE:A8:68:C4:A1:27
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/im85xILleHQTOhsJfO_-qGjEoSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.40.0/24
Signature Algorithm: sha256WithRSAEncryption
82:fa:27:09:1f:71:8d:df:15:96:e4:10:98:19:88:9c:d6:9e:
50:ec:0e:5e:77:9e:b2:8f:0f:13:2f:92:7e:48:b5:7f:a5:35:
97:02:7b:21:3d:f2:94:9b:ee:81:5e:08:cd:40:56:c4:0c:81:
53:b2:b0:47:e2:17:80:44:cb:20:db:79:1e:79:f5:ea:71:81:
f2:ea:50:82:05:ce:fe:07:51:28:7f:2d:3d:ca:50:71:e1:d4:
d9:51:4d:4b:1d:7e:e3:46:d1:61:51:64:c4:59:56:10:ca:5e:
62:d3:91:df:6f:d0:69:93:d0:49:c1:60:f3:93:48:b4:d3:55:
4b:3d:ab:14:07:48:22:0c:7b:7a:14:4a:c6:36:d9:2d:60:73:
88:bf:6a:c2:c3:ee:9a:f0:41:31:1c:92:84:82:33:ed:58:d1:
c7:6d:f6:58:9c:c4:2d:09:d8:31:74:6e:bf:fe:db:17:bf:5c:
15:6e:da:a4:04:09:e3:c3:52:a0:ca:0a:2f:52:0e:6c:2a:fc:
9a:54:ad:d3:e3:c8:00:db:a3:8f:35:8a:68:54:ca:b8:4f:78:
ab:57:94:c1:3c:1c:74:8e:a9:8e:7d:a1:40:20:03:2c:3e:e4:
7b:9e:56:fc:be:72:d6:fc:fb:5f:88:5b:29:cd:01:73:0e:1d:
e6:1b:96:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 12:29:54 2024 by rpki-client on console-ams.rpki-client.org