Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/QSE3ASjbN12jPYIlx335HMSvaP8.roa
File: QSE3ASjbN12jPYIlx335HMSvaP8.roa (raw, json)
Hash identifier: uyo7HTDG5ovw14wc2tDIZiFeXf7/R0dgdhbaIMzVBFs=
Subject key identifier: 41:21:37:01:28:DB:37:5D:A3:3D:82:25:C7:7D:F9:1C:C4:AF:68:FF
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018BD2155C3E42D8D2A90D250E4E22507FC3
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/QSE3ASjbN12jPYIlx335HMSvaP8.roa
Signing time: Wed 15 Nov 2023 08:24:57 +0000
ROA not before: Wed 15 Nov 2023 08:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12189
IP address blocks: 46.226.160.0/21 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Dec 2023 11:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:15:5c:3e:42:d8:d2:a9:0d:25:0e:4e:22:50:7f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Nov 15 08:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4121370128db375da33d8225c77df91cc4af68ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3d:0a:60:16:0c:58:10:62:3e:fe:af:66:25:
63:79:8c:86:70:e5:a3:e1:91:0b:69:d1:3f:51:35:
b4:4d:2c:58:ab:51:e0:3c:a4:ca:1f:92:f8:85:cf:
99:e4:99:28:98:40:79:0b:79:08:0b:de:d6:44:98:
cf:34:76:06:02:0b:60:57:65:6e:f6:4c:e0:6b:20:
0c:28:b5:5b:06:c8:62:29:9d:1d:55:c7:1a:b7:f0:
34:3d:b7:28:d8:47:01:a7:f6:73:ed:23:64:92:bf:
d1:93:f1:71:df:9d:d2:8f:a7:c3:7b:21:21:21:c3:
ad:b9:4d:99:ac:d5:4f:c3:e5:de:7d:60:ce:d1:09:
26:69:0e:b9:8e:32:e4:50:c5:35:eb:a6:f5:10:7e:
bd:d6:6b:e8:bf:18:5a:a9:bc:17:6b:44:1c:b0:3c:
e2:e1:1f:a8:ae:48:84:cc:82:3f:a6:c2:53:5b:d6:
ac:a3:ac:be:1d:6b:50:99:10:2f:11:ec:62:18:27:
51:43:cb:95:2c:ec:00:59:40:25:17:8e:85:4d:df:
1e:e2:bb:8f:4e:c0:7e:d4:8d:82:66:24:0f:90:9c:
91:76:70:70:ce:2c:65:0a:3c:a1:7c:81:ab:38:eb:
8a:70:91:a0:97:c1:49:b5:24:6a:dd:96:1b:33:bf:
d8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:21:37:01:28:DB:37:5D:A3:3D:82:25:C7:7D:F9:1C:C4:AF:68:FF
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/QSE3ASjbN12jPYIlx335HMSvaP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
Signature Algorithm: sha256WithRSAEncryption
99:80:27:cd:37:b8:46:0b:b4:f8:85:39:85:8e:85:e4:96:69:
aa:88:ea:cc:95:67:58:40:0e:ad:23:97:fe:a0:8f:b8:61:ab:
ca:01:f1:2d:01:69:d3:c3:d0:04:1a:63:ad:d8:78:34:4d:fb:
02:75:6d:1b:a4:e4:40:4e:10:a4:04:62:bd:28:e9:24:66:33:
e0:5a:e2:65:ef:0e:27:7a:9a:7e:99:a9:fb:24:4c:3d:65:d8:
01:40:97:86:66:67:69:71:77:5f:11:40:75:b3:9e:1c:8d:24:
c0:73:09:a9:ff:4f:e0:3a:1f:65:ac:8f:7e:f1:e5:bd:50:30:
ff:cc:2f:f5:6b:92:4c:94:35:a0:9f:6b:cc:96:19:39:ce:5c:
16:5f:9e:0f:fb:08:b5:68:ce:6d:a9:e0:d4:3b:65:14:db:bb:
d1:6a:9d:63:a4:25:a6:ce:fe:c4:f2:2e:e4:78:63:94:a7:1f:
d3:44:51:ae:be:10:3c:b3:59:cf:e2:de:a5:6c:4d:9b:63:51:
71:5d:68:1b:3e:91:fb:82:4d:24:5a:bc:54:0b:a6:14:35:1c:
b6:c0:20:6e:12:6e:e9:72:b1:88:5d:3d:7c:8d:36:55:cc:1a:
1e:42:cf:07:a8:87:6e:f3:70:46:38:b8:4e:f6:4d:28:48:ab:
ca:af:d0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:08 2024 by rpki-client on console-ams.rpki-client.org