Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oD7fkqXLlsDPQJtPvirS6dH0T2I.roa
File: oD7fkqXLlsDPQJtPvirS6dH0T2I.roa (raw, json)
Hash identifier: 8+NDnkmMcIeODqCa8W6CRudWbJPh4W3LIM0kjC9WJEE=
Subject key identifier: A0:3E:DF:92:A5:CB:96:C0:CF:40:9B:4F:BE:2A:D2:E9:D1:F4:4F:62
Certificate issuer: /CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Certificate serial: 0187D13F07904B5FC8D567925D0713264BBF
Authority key identifier: A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oD7fkqXLlsDPQJtPvirS6dH0T2I.roa
Signing time: Sun 30 Apr 2023 08:19:41 +0000
ROA not before: Sun 30 Apr 2023 08:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 46.17.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d1:3f:07:90:4b:5f:c8:d5:67:92:5d:07:13:26:4b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Validity
Not Before: Apr 30 08:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a03edf92a5cb96c0cf409b4fbe2ad2e9d1f44f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fd:bc:5a:fa:5f:bd:0f:86:2c:19:08:43:5e:
12:05:8a:8d:d9:52:7d:83:f8:5e:bb:2d:89:41:64:
71:e2:a3:33:87:ec:ea:ea:d0:d2:32:9f:d6:c8:03:
56:31:cb:b1:9f:fc:b7:b1:07:92:af:06:14:5f:be:
65:93:a2:4d:9e:93:91:95:a7:1c:78:6c:a3:3a:e0:
d0:36:54:e4:1b:00:e7:91:da:27:56:04:cc:4b:78:
9a:24:e5:27:8c:16:97:67:10:bd:80:92:cd:4b:e0:
03:fb:b6:80:06:c6:cf:66:8b:b8:a0:d9:07:93:a7:
41:3f:0d:f8:44:59:43:9b:a1:18:80:f1:99:48:ba:
25:3d:1c:36:35:17:f0:88:d3:60:fa:c8:ce:d2:66:
f6:aa:0a:c5:05:10:7d:d8:59:ee:41:57:d5:80:5c:
30:46:39:89:b7:33:ab:ac:5b:24:81:a8:d9:02:7c:
e2:3a:88:81:5a:3c:20:8b:d5:d8:93:f6:fa:47:b3:
55:d0:88:16:e8:27:ac:92:1f:bc:f6:59:1d:79:bf:
15:95:48:3c:cb:f5:b0:53:df:9d:f1:0c:5a:34:b6:
a1:1c:dd:1f:ee:6d:77:5b:43:aa:e6:17:91:27:13:
d1:54:64:7f:a5:40:9d:32:02:19:d5:14:60:a7:dc:
63:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3E:DF:92:A5:CB:96:C0:CF:40:9B:4F:BE:2A:D2:E9:D1:F4:4F:62
X509v3 Authority Key Identifier:
keyid:A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oD7fkqXLlsDPQJtPvirS6dH0T2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oKhjHm5aesZtpPsWD9W0_Kk3iAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.216.0/24
Signature Algorithm: sha256WithRSAEncryption
93:b4:62:7a:1a:45:67:d3:1a:3b:fe:84:a2:2e:7c:54:3e:db:
75:ed:ba:84:52:00:ab:81:03:2c:54:32:51:f2:9c:b6:3a:e2:
81:f0:c0:47:62:31:59:80:af:da:c9:e2:a3:11:30:80:c8:d6:
9c:9f:71:43:eb:47:3f:2d:af:e8:45:64:fc:a1:59:dd:60:24:
3a:46:fb:de:26:e7:55:6b:db:dd:e6:18:99:6d:ac:8d:92:44:
96:99:47:19:f5:93:98:dd:32:ba:c9:29:6a:f9:1a:08:f9:29:
75:72:fb:ca:4b:59:5a:e4:82:31:93:35:e3:52:0c:68:66:cb:
9a:19:2b:4a:d3:85:18:63:df:0b:cb:69:bd:5a:16:f1:e3:72:
5c:38:79:0a:5f:04:72:05:8d:95:02:a7:d4:f8:de:e5:6e:be:
cf:b2:db:7c:de:cc:5b:fc:ea:85:1e:d4:51:a5:04:3b:4a:37:
ee:35:fa:b9:33:f5:1b:72:e7:35:74:a1:a2:74:ea:9d:8a:24:
99:43:be:3a:72:9a:c6:79:45:5e:a4:23:c1:d5:2b:eb:4e:c0:
f0:3a:c8:cf:8f:92:f6:5a:0d:06:35:2a:7e:35:97:5a:f0:55:
b7:77:7b:eb:3e:33:8d:d2:db:fd:69:70:ad:7d:0e:f8:72:e0:
73:de:99:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:15 2024 by rpki-client on console-fra.rpki-client.org