Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/esWUzXCb4CrXwTjOy_q3k5g15K8.roa
File: esWUzXCb4CrXwTjOy_q3k5g15K8.roa (raw, json)
Hash identifier: FIbp90Rd3V8HGZvIUEayR1RMeWFcMc+5LqEYhy9fOUw=
Subject key identifier: 7A:C5:94:CD:70:9B:E0:2A:D7:C1:38:CE:CB:FA:B7:93:98:35:E4:AF
Certificate issuer: /CN=f7aa039b886b226578bdb6a42781bf59044bb138
Certificate serial: 01856E5D4D56AF811FB86AE4B51E431D0CB5
Authority key identifier: F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/esWUzXCb4CrXwTjOy_q3k5g15K8.roa
Signing time: Sun 01 Jan 2023 17:24:46 +0000
ROA not before: Sun 01 Jan 2023 17:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48225
IP address blocks: 46.252.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:4d:56:af:81:1f:b8:6a:e4:b5:1e:43:1d:0c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa039b886b226578bdb6a42781bf59044bb138
Validity
Not Before: Jan 1 17:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ac594cd709be02ad7c138cecbfab7939835e4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1a:ab:b8:8a:e2:28:30:87:46:8c:a3:85:e8:
c8:a6:98:88:88:7e:da:c7:64:ba:6e:7c:19:1c:55:
a7:a8:57:a2:d5:fd:d6:49:e0:cf:ed:1e:f8:09:a3:
81:c4:5f:5b:76:17:21:ba:3b:7a:a1:76:e7:38:38:
7c:4b:0f:99:1f:31:b4:b6:2f:0f:8c:0b:f8:4a:db:
12:49:1b:0e:1a:26:5b:7c:ae:a7:75:ec:78:f6:d3:
3b:0b:78:06:e5:4c:86:d7:02:8d:a3:b1:17:2f:93:
46:c9:93:99:18:fb:76:c6:f1:23:10:1d:c2:85:d2:
43:c0:02:f2:f6:cf:68:df:17:8d:0d:22:be:40:b7:
0c:2f:cc:69:9d:0c:98:fe:bd:72:c7:4f:49:f2:a2:
24:85:72:ee:c3:d0:52:4f:43:65:b6:ef:76:ff:37:
34:88:9f:27:b1:03:b6:e8:fa:26:e2:c5:cd:b9:06:
75:99:ca:48:4d:55:10:9e:28:fe:d5:28:09:ee:98:
91:00:85:96:d5:1d:55:ef:86:3c:c8:70:f9:6d:71:
c4:f6:ba:0f:ed:ba:65:40:ab:94:81:34:a8:33:2a:
ec:3c:51:60:7f:48:e0:0b:4a:dc:88:13:8c:81:43:
ab:73:32:d3:ed:99:a4:32:d3:d8:2a:4a:42:95:68:
b5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C5:94:CD:70:9B:E0:2A:D7:C1:38:CE:CB:FA:B7:93:98:35:E4:AF
X509v3 Authority Key Identifier:
keyid:F7:AA:03:9B:88:6B:22:65:78:BD:B6:A4:27:81:BF:59:04:4B:B1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96oDm4hrImV4vbakJ4G_WQRLsTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/esWUzXCb4CrXwTjOy_q3k5g15K8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4bbd6c-91ef-4461-821b-6f621d736aff/1/96oDm4hrImV4vbakJ4G_WQRLsTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.251.0/24
Signature Algorithm: sha256WithRSAEncryption
27:7b:c6:dd:f4:36:3c:d2:d6:da:06:b9:6f:9d:b8:bb:88:fb:
88:58:fb:f5:ec:2f:83:60:cb:84:1d:c5:04:7e:96:75:61:2f:
b3:40:2b:c0:ae:18:22:52:25:6c:be:25:39:de:0d:0e:57:5d:
92:f7:f1:43:19:dc:e9:52:1d:53:bc:08:9c:e0:bb:19:a0:08:
50:73:d0:5c:f9:8e:10:8b:0c:bf:f5:7e:9f:56:27:fa:7e:fd:
b6:16:ec:74:62:ba:a8:db:26:34:5a:0d:16:48:59:70:a5:cf:
d9:98:ce:40:5f:84:36:03:58:d0:93:e3:a2:6a:5a:f5:d2:af:
25:f6:40:79:28:59:85:71:3f:e0:bd:26:a0:3d:0f:a6:0f:6b:
62:a3:78:e5:cd:85:bf:d9:c5:3b:e3:29:e4:61:f5:ce:c4:f3:
20:f7:c8:f8:8a:4f:47:2e:99:4b:46:b7:be:2b:c4:52:91:87:
99:ab:92:29:47:30:25:ba:67:af:4f:5b:73:25:2f:d2:18:f8:
19:86:ce:ec:4a:54:54:57:06:46:fd:05:5a:04:8b:f7:7d:a7:
d4:ea:f7:ee:52:55:12:d5:87:22:9e:05:c0:4f:75:ae:20:0d:
c9:a6:c2:20:84:32:99:29:72:3e:45:a9:1b:aa:09:42:58:15:
7e:58:cf:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:05 2024 by rpki-client on console-ams.rpki-client.org