Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/b7w4Dj6YgnmmtZcr3b3WdUrYVmw.roa
File: b7w4Dj6YgnmmtZcr3b3WdUrYVmw.roa (raw, json)
Hash identifier: 7IuZHAQ03q67c0DJ+d9DqSTnzw7RY5J2t7BTerFn/Sg=
Subject key identifier: 6F:BC:38:0E:3E:98:82:79:A6:B5:97:2B:DD:BD:D6:75:4A:D8:56:6C
Certificate issuer: /CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Certificate serial: 0188DD4E7B8EB89022F94359DBFE10DC2C11
Authority key identifier: A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/b7w4Dj6YgnmmtZcr3b3WdUrYVmw.roa
Signing time: Wed 21 Jun 2023 09:34:48 +0000
ROA not before: Wed 21 Jun 2023 09:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60198
IP address blocks: 46.17.216.0/24 maxlen: 24
2a02:4f63::/32 maxlen: 32
2a02:4f61::/32 maxlen: 32
2a02:4f64::/32 maxlen: 32
2a02:4f67::/32 maxlen: 32
2a02:4f60::/32 maxlen: 32
2a02:4f66::/32 maxlen: 32
2a02:4f65::/32 maxlen: 32
2a02:4f62::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:4e:7b:8e:b8:90:22:f9:43:59:db:fe:10:dc:2c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Validity
Not Before: Jun 21 09:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fbc380e3e988279a6b5972bddbdd6754ad8566c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1c:0f:47:cd:53:53:ee:b0:14:e6:37:f2:cc:
3d:c6:ba:ad:e4:b1:aa:bb:a7:48:91:ca:66:42:87:
49:52:2f:23:e2:e3:e9:14:f4:01:4e:1a:0b:b6:99:
ed:a4:0a:82:16:6c:a0:0e:3f:01:0b:db:c5:af:3d:
cf:0f:c7:fe:f9:3c:80:17:ab:1e:44:4f:fd:76:a6:
8d:d8:c9:59:b7:4f:13:4c:15:47:95:4e:44:24:31:
42:ad:45:53:32:52:17:e4:5e:9c:68:6a:c2:13:bb:
f7:66:1b:f6:3d:ef:f2:c7:55:3c:26:45:9a:db:43:
3a:7f:ba:6b:06:e8:f2:3b:42:7f:02:87:38:c3:ba:
1f:10:c3:b6:34:d8:ef:b6:d4:45:9d:a2:9f:69:58:
42:21:ea:85:7e:f0:94:d3:e1:74:f5:60:cd:d0:4d:
c3:b5:91:3d:a1:21:ad:0d:c1:df:c1:30:10:d3:fa:
88:9b:55:c4:7b:b1:0e:c7:28:53:68:84:3b:ab:81:
9f:c8:3e:5d:97:ec:73:c2:bb:60:33:7f:86:bb:18:
62:36:dd:b0:39:2e:2d:e2:3b:0d:c8:a5:7a:9f:02:
f7:ee:9c:b3:c0:3b:1e:01:ba:50:cd:d8:01:82:74:
62:f5:43:0a:fe:59:6b:23:61:01:a1:1e:df:7e:e6:
f8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BC:38:0E:3E:98:82:79:A6:B5:97:2B:DD:BD:D6:75:4A:D8:56:6C
X509v3 Authority Key Identifier:
keyid:A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/b7w4Dj6YgnmmtZcr3b3WdUrYVmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oKhjHm5aesZtpPsWD9W0_Kk3iAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.216.0/24
IPv6:
2a02:4f60::/29
Signature Algorithm: sha256WithRSAEncryption
6b:00:1f:c1:b8:04:9c:48:60:e9:42:a2:39:2b:55:f0:c6:c5:
ad:a9:66:07:78:22:b4:8a:ec:a5:0f:12:65:e4:a3:d6:36:61:
5c:f7:9d:9b:47:53:85:fd:c6:20:53:22:ba:70:ad:b1:ee:ca:
fa:14:88:22:8a:03:91:0e:4d:12:cf:cf:60:53:65:96:b8:e3:
a7:5b:38:07:a1:5e:c4:d3:b0:7e:d7:7c:26:c7:24:43:bf:29:
c8:af:23:05:ef:58:61:3a:f3:43:9c:47:cb:50:64:29:9a:58:
82:e7:65:21:da:83:c0:3e:01:a9:7b:61:a7:90:d4:ce:25:22:
0b:9c:b9:b2:76:46:10:fa:95:c6:44:4b:90:50:16:70:3b:8f:
6f:86:05:d2:3f:a7:13:3b:ca:45:30:45:f7:8c:c3:eb:59:7a:
41:56:b4:1a:4e:fa:90:77:aa:6b:b2:57:7d:bf:d9:e3:f0:9d:
c7:f2:4e:f9:40:88:87:e0:dd:eb:6b:28:a5:8b:fd:d0:3f:89:
f1:53:c3:a6:d4:a6:b7:ee:63:01:b2:1e:9a:6a:13:52:bc:4a:
2c:57:85:db:7b:d0:27:27:1e:8a:a2:94:46:74:a7:9c:98:ca:
d1:4b:6f:eb:1e:46:ea:6f:42:96:68:5f:4e:bf:14:fe:b1:97:
55:1b:ff:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org