Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/ZHEkJfP-_RnW7ZXz8E_kdM4fic0.roa
File: ZHEkJfP-_RnW7ZXz8E_kdM4fic0.roa (raw, json)
Hash identifier: EMPf4TmryNq45osrS3uNuQkvriA0K8+sctxhMJ6FHyo=
Subject key identifier: 64:71:24:25:F3:FE:FD:19:D6:ED:95:F3:F0:4F:E4:74:CE:1F:89:CD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01887D6AD09E225DE6B3161D8A9F64AD05A6
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/ZHEkJfP-_RnW7ZXz8E_kdM4fic0.roa
Signing time: Fri 02 Jun 2023 18:42:12 +0000
ROA not before: Fri 02 Jun 2023 18:42:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 46.249.112.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Sep 2023 12:46:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:7d:6a:d0:9e:22:5d:e6:b3:16:1d:8a:9f:64:ad:05:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 2 18:42:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64712425f3fefd19d6ed95f3f04fe474ce1f89cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:96:b9:6d:39:3c:e1:fc:38:62:85:05:67:0c:
51:0e:55:33:7e:54:65:3c:cb:5c:72:5f:60:14:8d:
eb:f3:96:85:41:6d:04:9f:b6:67:8f:d2:b5:d4:85:
12:ee:f7:3c:bf:29:84:53:12:32:64:7b:b9:a2:07:
b1:77:6c:34:08:68:1b:9e:71:40:51:93:ee:bf:40:
ea:1a:10:bd:e2:72:d9:36:50:67:fe:d8:7c:a3:03:
a8:47:19:c8:b0:7e:98:85:99:05:aa:a3:1f:ea:ea:
1f:13:95:bf:04:49:ef:7b:43:58:bb:da:3b:31:c6:
ea:46:35:57:02:14:bd:34:83:8a:3d:b9:32:07:54:
6b:36:6d:1e:61:7f:0a:3c:b1:8e:4f:e8:58:3c:50:
52:af:41:3f:52:7d:9c:9c:fc:52:7e:54:31:6b:ac:
d5:23:4c:4f:46:c8:84:41:c9:5b:25:a0:db:6c:f1:
96:36:f7:5f:61:5e:8d:ca:e2:37:fd:dd:2a:de:89:
af:79:02:18:f9:c6:6f:b7:9f:9e:83:a0:5e:75:09:
a1:c0:af:a7:4f:2b:7c:91:a6:76:c2:bd:47:9f:c4:
e8:94:b3:84:c7:b6:4b:a3:dd:e9:90:29:85:9f:34:
c9:d7:33:bb:2a:66:ba:1b:be:84:8f:fb:c5:28:10:
12:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:71:24:25:F3:FE:FD:19:D6:ED:95:F3:F0:4F:E4:74:CE:1F:89:CD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/ZHEkJfP-_RnW7ZXz8E_kdM4fic0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.112.0/22
Signature Algorithm: sha256WithRSAEncryption
77:0c:fd:41:60:a7:97:8e:e0:b7:30:57:0b:d0:68:d6:5f:3b:
86:6b:08:33:4d:c7:b1:f0:35:08:bb:31:e9:d2:ab:d8:ed:f1:
71:5b:83:77:69:ee:b5:70:18:90:ae:34:5e:06:a3:6b:19:08:
e1:05:3d:22:2e:c8:d3:02:b3:96:5b:fc:69:68:80:32:6f:17:
ad:86:14:b8:a2:19:2e:07:8c:ac:c1:14:fb:ae:c3:80:e3:c6:
a5:3c:99:b2:6d:66:bd:f1:e4:22:f6:69:7c:d3:8a:f4:33:52:
49:87:c9:eb:b8:36:8e:4d:24:23:e1:88:f9:b5:f4:e6:a3:17:
e1:96:b6:14:64:61:f5:0b:80:d9:d6:d8:8f:a9:31:bd:7d:f7:
68:a4:c7:16:d4:11:07:9e:a2:ae:90:39:7c:13:35:3e:c2:9c:
d2:66:81:99:c7:f2:e9:bd:70:c6:82:b1:18:80:f0:d3:cc:88:
81:19:64:44:f1:81:5d:fc:fc:86:62:e8:ee:74:5b:0f:da:b4:
10:79:fc:a6:49:af:53:f0:1c:e0:bd:87:bd:55:01:70:fd:d3:
db:78:76:e7:25:a6:f2:8d:54:5a:96:98:e1:ec:4d:79:5b:d3:
f4:47:0d:23:1c:b8:7e:7f:fd:8c:d8:f9:92:51:2e:c3:e8:31:
f4:e6:04:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org