Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/kY544fNtOrE1xbYnhAr8iBa7JMg.roa
File: kY544fNtOrE1xbYnhAr8iBa7JMg.roa (raw, json)
Hash identifier: 4jX3MhOnPSLJwWy9HqBewiv0V6l0PNdtTdi4I+lGRuE=
Subject key identifier: 91:8E:78:E1:F3:6D:3A:B1:35:C5:B6:27:84:0A:FC:88:16:BB:24:C8
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 018C59036E725A31D53007E78A9197375200
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/kY544fNtOrE1xbYnhAr8iBa7JMg.roa
Signing time: Mon 11 Dec 2023 13:14:06 +0000
ROA not before: Mon 11 Dec 2023 13:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211309
IP address blocks: 46.252.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:59:03:6e:72:5a:31:d5:30:07:e7:8a:91:97:37:52:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Dec 11 13:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=918e78e1f36d3ab135c5b627840afc8816bb24c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:78:a1:42:fc:c9:88:63:e1:2d:07:95:e4:4d:
52:ca:61:6b:eb:02:b7:a5:78:94:2a:d4:8a:b8:dd:
ca:58:b3:f7:0c:32:00:55:f4:98:7f:7d:90:ef:8e:
17:a4:32:4c:7b:82:69:e0:40:dd:c7:95:b0:53:12:
16:0e:60:07:b0:ea:78:47:b5:14:8f:12:fe:51:7d:
0a:9a:fd:be:44:a9:b7:f5:45:84:5d:39:09:d8:44:
dc:87:8d:6b:b8:8f:aa:4d:38:37:18:a8:8a:8e:3b:
3e:46:0c:a2:52:23:3c:0c:34:eb:20:eb:c5:06:bb:
f2:60:67:c8:bf:a8:50:3b:f1:28:43:3f:9d:25:86:
a9:b0:17:44:ee:22:84:2f:e2:97:7e:85:7c:31:b5:
f4:a9:a2:27:64:c8:87:bc:e3:e9:b1:75:4d:e8:c0:
df:ae:06:59:af:41:e9:18:1b:f4:0b:04:75:ca:01:
48:f1:fa:55:d0:65:2f:15:7e:25:62:b7:dd:68:99:
be:c2:ee:85:6d:33:44:88:f5:ad:0c:a4:e2:01:0b:
fa:4b:7a:9a:80:29:5d:55:3d:d3:c9:f7:3b:f7:11:
aa:a2:e9:f9:cc:f8:6c:cb:56:e4:88:ba:ac:e9:b7:
5b:e6:d3:4f:b7:d1:a5:32:89:24:8a:09:f6:9d:1c:
3b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8E:78:E1:F3:6D:3A:B1:35:C5:B6:27:84:0A:FC:88:16:BB:24:C8
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/kY544fNtOrE1xbYnhAr8iBa7JMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.7.0/24
Signature Algorithm: sha256WithRSAEncryption
12:76:b2:5a:a0:fc:85:6b:aa:51:84:32:8d:76:47:22:26:97:
b2:54:69:10:6d:7b:ec:a6:7d:3e:56:cd:c5:5a:1f:62:00:7d:
70:2f:64:a9:5f:3c:1e:1c:85:22:7b:6f:2a:77:b5:9f:e3:9e:
58:70:05:e2:2d:ce:c4:60:96:e1:f6:d9:ed:f0:9f:8f:48:4b:
81:20:57:83:89:99:40:b3:e6:c2:c3:69:84:f3:19:9e:31:8b:
36:23:c5:ff:14:8e:e7:11:17:82:88:ee:db:11:22:a5:6c:e2:
7e:d5:d4:db:7a:c9:d3:42:a4:0b:fd:3a:8f:8d:00:de:c7:90:
7c:a4:89:87:f4:e1:09:a1:ca:d4:0b:5d:1c:f5:23:66:b2:ca:
4c:8f:18:df:de:82:79:3b:4c:73:4b:68:e7:f0:8b:54:05:91:
5c:77:98:04:28:73:29:25:d2:b1:fe:4f:89:1c:07:d6:ba:20:
2a:25:6c:8b:39:51:1d:67:58:fc:01:18:8a:11:c6:2c:99:9c:
e2:49:f7:92:11:e6:73:fd:c2:f3:29:4d:00:00:7b:9d:88:02:
35:13:44:52:d0:02:8f:8c:60:10:3f:d1:46:6e:e7:97:7f:db:
5a:24:8a:42:ba:8b:c2:d8:45:6d:64:16:c5:8f:6a:25:ca:2c:
c2:bd:7d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:46 2024 by rpki-client on console-ams.rpki-client.org