Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/nnhA9W6MBcrmpbCT7i5nARhDcIk.roa
File: nnhA9W6MBcrmpbCT7i5nARhDcIk.roa (raw, json)
Hash identifier: r6AZOCt06xLRTLbo0Be9oRAgTeST3rYVLUyrumW0KS0=
Subject key identifier: 9E:78:40:F5:6E:8C:05:CA:E6:A5:B0:93:EE:2E:67:01:18:43:70:89
Certificate issuer: /CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Certificate serial: 01856ECB6BF457C14FA60246E8B47FBE651B
Authority key identifier: C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/nnhA9W6MBcrmpbCT7i5nARhDcIk.roa
Signing time: Sun 01 Jan 2023 19:25:03 +0000
ROA not before: Sun 01 Jan 2023 19:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207724
IP address blocks: 46.148.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:6b:f4:57:c1:4f:a6:02:46:e8:b4:7f:be:65:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c89c2cc489ebe48f490584ac866fe362c4117e75
Validity
Not Before: Jan 1 19:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e7840f56e8c05cae6a5b093ee2e670118437089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:47:70:ec:a5:ad:5d:3c:7e:b5:bf:c3:74:55:
10:31:f6:bd:13:2d:82:5f:40:27:7b:49:2d:cb:c9:
09:e7:20:c0:4c:63:7a:58:ed:2c:ef:95:aa:cc:58:
30:7b:7b:33:4b:08:10:1c:bd:33:30:a6:ae:af:cf:
6d:97:c2:21:8c:f2:c1:af:29:e8:f9:b5:0f:be:2f:
fb:66:4a:69:bc:d3:01:b9:cb:22:ab:91:07:ec:e2:
b0:8f:63:11:93:66:eb:c2:97:cc:93:ae:39:af:a1:
a8:a8:1a:49:34:b1:ed:6e:5f:d9:af:aa:70:e4:75:
ee:7d:da:bc:55:ca:39:5d:5f:69:44:40:fd:02:c4:
f9:33:78:8c:95:6e:82:62:4c:e5:d0:a6:26:a6:75:
f3:06:0b:da:b6:be:15:27:7d:60:a6:e2:1f:bf:c5:
51:bb:2c:ad:ac:38:65:55:19:09:cf:ff:89:b5:51:
84:0d:ac:95:eb:32:2a:52:54:7e:c4:fb:0a:fb:61:
f8:07:a1:c1:d6:d8:2c:03:b5:b7:e3:e1:5d:b8:4f:
9e:cd:5b:39:59:ff:33:bc:75:4d:4f:00:0d:f2:3b:
46:c4:81:fd:74:00:e3:5d:54:76:74:6a:e3:9a:33:
89:96:2f:b1:60:2d:93:54:26:98:71:6e:16:9f:56:
82:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:78:40:F5:6E:8C:05:CA:E6:A5:B0:93:EE:2E:67:01:18:43:70:89
X509v3 Authority Key Identifier:
keyid:C8:9C:2C:C4:89:EB:E4:8F:49:05:84:AC:86:6F:E3:62:C4:11:7E:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yJwsxInr5I9JBYSshm_jYsQRfnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/nnhA9W6MBcrmpbCT7i5nARhDcIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/a00be2-877d-40e7-8a8a-af2cfa622d18/1/yJwsxInr5I9JBYSshm_jYsQRfnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.43.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ee:6a:9d:20:f8:86:08:a7:f5:f3:a3:f5:6e:a4:33:f1:46:
4c:1c:ff:19:d9:21:8c:1d:37:59:0c:cf:80:28:f8:48:e9:60:
94:db:bc:b2:42:5b:2c:4d:d0:6a:ff:dd:c5:da:eb:2e:e1:73:
4e:8a:4c:e7:7c:8f:f0:03:84:70:0d:4e:cb:8a:98:54:99:67:
98:06:a5:6e:6c:39:38:a3:2b:24:9b:ed:74:b1:ff:2f:f6:d5:
14:a6:89:91:db:bd:64:d4:9d:d2:e9:63:a2:31:53:42:ed:97:
b6:68:fb:40:c6:70:8b:11:47:72:35:58:8e:aa:58:53:26:c9:
d2:ff:61:cb:5c:c3:cb:a2:6c:77:73:41:8d:9e:c0:c1:5b:eb:
94:1e:cd:c8:53:96:3c:ed:61:3a:8e:6a:a2:80:46:11:66:bf:
0a:fc:30:6b:0e:8e:dc:18:17:a8:32:97:70:59:f9:da:f5:8b:
a7:1a:d8:c5:e5:d0:e8:56:72:6b:95:f8:fc:9c:b3:63:8e:33:
6f:bd:3d:d6:e7:ef:88:39:3c:e4:90:1c:9d:b1:69:1b:9b:b1:
a3:30:2a:9e:79:b5:14:cb:b8:62:ca:36:30:02:68:34:5b:62:
6c:a7:0a:5e:0e:1f:33:d1:3c:c9:83:c6:de:d9:1a:94:39:d5:
31:e5:f0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:47 2024 by rpki-client on console-ams.rpki-client.org