Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/2yKVskp839m6MwgdfjcswUNRtU0.roa
File: 2yKVskp839m6MwgdfjcswUNRtU0.roa (raw, json)
Hash identifier: ufxOD010IQte9B/+XD2L5jTkQsjB+nbdwlWWPa0WYL0=
Subject key identifier: DB:22:95:B2:4A:7C:DF:D9:BA:33:08:1D:7E:37:2C:C1:43:51:B5:4D
Certificate issuer: /CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Certificate serial: 0187C1B42A526BDE3AA5829618374C8DA69E
Authority key identifier: A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/2yKVskp839m6MwgdfjcswUNRtU0.roa
Signing time: Thu 27 Apr 2023 07:53:42 +0000
ROA not before: Thu 27 Apr 2023 07:53:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 46.17.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Apr 2023 08:19:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c1:b4:2a:52:6b:de:3a:a5:82:96:18:37:4c:8d:a6:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Validity
Not Before: Apr 27 07:53:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db2295b24a7cdfd9ba33081d7e372cc14351b54d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b8:d6:5c:e9:4d:71:80:69:ef:9d:24:e1:e1:
c4:f9:9d:31:91:84:39:68:08:a9:c0:1c:7a:02:00:
55:43:52:ff:8f:5a:71:00:2a:c5:e2:e6:d7:62:4a:
45:01:3f:51:73:61:63:9c:ee:22:1f:73:f0:83:6d:
cb:e5:96:01:a4:a8:f1:65:14:1e:a4:89:49:e7:a6:
3e:4a:a7:ec:73:df:1e:de:f9:36:75:f4:bd:08:65:
de:15:88:f1:27:94:23:ba:c2:f7:97:a8:c3:70:31:
c7:76:b1:2d:47:d4:eb:6e:7d:66:9c:80:68:e1:95:
12:26:57:33:88:09:a5:6a:fa:ab:21:c5:19:3f:fc:
2f:bb:69:75:55:d8:d2:34:d0:a9:f0:70:b0:ca:6a:
ab:18:6a:1a:66:9a:c8:6f:c4:e5:a1:13:1a:ff:86:
36:8e:2d:67:a3:9c:94:3d:5b:b5:36:ee:22:8c:bd:
6f:5a:83:54:5e:00:70:7a:83:05:67:91:32:27:58:
63:28:e6:c6:ff:ae:43:75:9a:da:3b:79:73:b0:5d:
c7:10:7e:2b:92:e4:36:b4:9d:dd:54:00:ba:e7:90:
6e:ac:44:fd:55:c3:10:c1:0a:bc:2e:ed:4e:8b:8c:
a7:d3:0f:ea:40:bd:08:6e:d5:ad:4b:b6:02:f6:7b:
02:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:22:95:B2:4A:7C:DF:D9:BA:33:08:1D:7E:37:2C:C1:43:51:B5:4D
X509v3 Authority Key Identifier:
keyid:A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/2yKVskp839m6MwgdfjcswUNRtU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oKhjHm5aesZtpPsWD9W0_Kk3iAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.216.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6e:cf:82:71:5a:a1:71:86:0d:79:08:e3:e4:a0:1d:48:5d:
d7:34:fd:c6:23:76:27:e8:97:09:16:c1:d0:e4:08:66:84:a9:
fb:bc:e0:e0:f4:31:54:a1:66:08:85:4c:c3:25:83:eb:10:de:
9a:1e:88:13:41:ce:2f:0d:88:67:5a:6c:a7:e5:35:76:30:12:
39:79:a0:87:40:8e:2a:0a:2d:b4:df:b4:71:30:c5:85:7a:24:
71:20:7d:35:08:32:f4:55:47:cb:0c:89:2b:00:ec:fa:31:0f:
71:74:cd:17:26:96:27:00:6b:1a:f8:3a:3d:62:91:bc:ad:a5:
3e:aa:c1:2d:23:e3:f7:ef:6e:70:ac:3f:91:78:1e:7d:0f:e8:
18:52:c5:52:07:c0:82:1a:1b:f7:0c:c4:26:ee:ca:1c:e0:79:
f6:58:6d:75:6e:f4:6d:0a:e9:a7:a3:a6:55:40:3b:b4:e0:49:
7b:c2:37:a2:b5:6c:1d:1f:94:c7:c8:ee:c5:4b:e4:bc:c5:5d:
c8:ff:95:45:da:74:84:bf:e2:de:f1:f4:fe:89:14:54:ba:40:
ff:14:8b:b8:9f:3e:89:fc:d1:40:69:88:aa:ef:b1:38:5c:9a:
61:39:8c:0c:de:b9:56:1f:77:65:3e:5f:49:44:88:77:6c:28:
b1:ab:01:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org