Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/3YYrKuGpe-2kN2NVSCKoBZo5g2I.roa
File: 3YYrKuGpe-2kN2NVSCKoBZo5g2I.roa (raw, json)
Hash identifier: sjMfdZgCKftPnaERBkEKwE0QQVZmR0dcpFCfGqm1HCY=
Subject key identifier: DD:86:2B:2A:E1:A9:7B:ED:A4:37:63:55:48:22:A8:05:9A:39:83:62
Certificate issuer: /CN=83c6ca86519b56d4d1873af6e257de7e97f3c8ac
Certificate serial: 018CC7948CA4A0BD6609FAFA33B146E64A91
Authority key identifier: 83:C6:CA:86:51:9B:56:D4:D1:87:3A:F6:E2:57:DE:7E:97:F3:C8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8bKhlGbVtTRhzr24lfefpfzyKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/3YYrKuGpe-2kN2NVSCKoBZo5g2I.roa
Signing time: Tue 02 Jan 2024 00:30:50 +0000
ROA not before: Tue 02 Jan 2024 00:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15699
IP address blocks: 46.226.40.0/21 maxlen: 21
2a0b:9d80::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 07 Feb 2024 08:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:8c:a4:a0:bd:66:09:fa:fa:33:b1:46:e6:4a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c6ca86519b56d4d1873af6e257de7e97f3c8ac
Validity
Not Before: Jan 2 00:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd862b2ae1a97beda43763554822a8059a398362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:e0:5b:82:51:22:30:9f:c8:14:da:7a:6f:
e6:24:0a:cb:c8:bd:8a:09:ee:99:65:d0:f1:be:2e:
93:d1:91:2c:30:e2:30:9f:c0:01:70:be:9b:0a:a9:
92:58:a1:70:2c:28:8b:69:86:52:40:09:4e:10:87:
9f:9e:40:ae:83:0d:e9:3a:56:89:57:00:72:bf:e1:
37:7c:61:6d:ea:6c:68:61:ed:e7:93:d7:95:7d:30:
2a:a2:a4:08:7b:2f:c7:c5:2c:91:80:eb:f0:db:0a:
5a:d0:b9:ee:1c:e0:7c:4c:e3:df:e3:a4:1d:54:c6:
b1:7b:10:95:89:c5:eb:ff:d3:58:26:29:ff:66:8e:
35:a0:c1:e0:89:a0:60:c4:ee:4b:c6:e2:81:e7:55:
03:c9:12:0c:68:72:cd:03:d1:d8:15:03:57:31:c9:
ed:62:0d:51:57:10:88:9f:6d:bf:91:64:e1:5b:0a:
6f:db:6d:29:43:db:6d:5f:b8:89:6e:e5:77:b3:9b:
f2:60:53:44:8f:13:d9:f4:b1:4b:fd:40:7b:9c:35:
48:0c:c3:20:55:12:28:be:42:b1:1b:0b:0b:52:ff:
37:12:d7:4b:a6:ad:5d:61:f0:c6:fa:d5:1c:6f:c0:
b3:98:f1:d8:f6:2f:01:21:33:ff:c9:1a:b1:27:ee:
22:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:86:2B:2A:E1:A9:7B:ED:A4:37:63:55:48:22:A8:05:9A:39:83:62
X509v3 Authority Key Identifier:
keyid:83:C6:CA:86:51:9B:56:D4:D1:87:3A:F6:E2:57:DE:7E:97:F3:C8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8bKhlGbVtTRhzr24lfefpfzyKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/3YYrKuGpe-2kN2NVSCKoBZo5g2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/g8bKhlGbVtTRhzr24lfefpfzyKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.40.0/21
IPv6:
2a0b:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
6e:29:4d:c9:52:f3:f4:b3:f6:8d:37:fb:5d:24:bf:1f:cb:e2:
7e:25:93:91:cc:a1:a6:61:e8:6d:22:ec:00:90:d9:b1:ae:a9:
f8:0d:e1:4d:f0:d1:74:e5:26:c7:39:6f:9b:ca:17:0c:8e:de:
39:1c:8b:9e:ad:7a:3b:3c:a1:eb:0a:93:2d:5a:d7:d5:02:ea:
14:b4:11:d9:83:f6:40:6f:40:2a:a7:17:1e:52:71:16:f2:7c:
95:ac:72:ab:e0:d4:bb:6a:d7:9d:31:90:a2:64:ee:52:17:8f:
55:6a:16:89:9c:b4:c5:fa:97:69:43:50:e6:0b:b2:37:1f:ba:
7d:ea:6d:57:fe:e7:94:f4:ee:a1:b2:bf:4f:5b:fe:ca:cd:0b:
e5:af:0d:ac:d5:2e:db:80:1b:10:ae:ff:23:3b:5d:5e:5b:03:
f2:6e:e8:55:7d:fe:3a:66:9c:f6:64:24:48:86:a0:26:46:79:
71:21:8c:54:94:08:a2:51:55:23:19:75:14:38:4c:d8:61:9d:
f9:98:1c:53:96:27:98:f6:43:37:e9:13:c5:03:58:8f:c1:b2:
34:87:cf:a8:90:5a:0e:dd:ed:34:a6:25:fb:64:cd:06:5b:cf:
6e:62:27:9d:19:f9:00:4e:97:eb:9b:58:50:4f:fc:87:8a:74:
b1:45:f6:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:13 2024 by rpki-client on console-fra.rpki-client.org