Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/x0hjKmG5dUq8f38XoFXBjOh56PY.roa
File: x0hjKmG5dUq8f38XoFXBjOh56PY.roa (raw, json)
Hash identifier: ydr08tmyJbLpyQMZPEDqTrs+q0bE7/h5MI5v/UA8nOg=
Subject key identifier: C7:48:63:2A:61:B9:75:4A:BC:7F:7F:17:A0:55:C1:8C:E8:79:E8:F6
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018AADE96AD98B3BF011C406117D22D08F59
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/x0hjKmG5dUq8f38XoFXBjOh56PY.roa
Signing time: Tue 19 Sep 2023 14:47:50 +0000
ROA not before: Tue 19 Sep 2023 14:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142019
IP address blocks: 46.249.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 15:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ad:e9:6a:d9:8b:3b:f0:11:c4:06:11:7d:22:d0:8f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Sep 19 14:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c748632a61b9754abc7f7f17a055c18ce879e8f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8f:96:af:1e:b7:5b:e6:52:2f:2e:ad:d5:3f:
e8:52:9c:01:97:81:7a:80:5c:79:fa:18:ff:5d:1e:
3c:f9:33:51:2b:cf:0b:f1:08:10:14:fa:1b:07:e5:
49:a4:49:87:67:a3:02:24:8c:6e:50:d5:d4:7a:53:
31:91:d8:73:73:e9:49:52:f7:93:a5:99:a5:b5:36:
a9:cc:28:92:35:ab:a5:83:2c:e7:94:42:0c:1a:63:
aa:f0:b7:19:31:2e:5c:7b:d5:95:c5:73:5b:ed:cb:
fe:cb:36:b7:bc:ed:98:22:2a:95:99:33:19:38:db:
f0:30:7e:9f:63:a0:da:9c:df:70:a0:e6:80:8d:32:
1d:3c:9f:a8:0f:cd:7d:6e:99:d9:63:56:48:68:98:
a2:39:7b:f5:8d:94:03:a5:c9:d8:1b:43:c2:dc:51:
7d:1d:57:6d:2c:ec:51:16:9c:cf:27:68:6d:26:9c:
7a:44:90:15:8a:6e:a5:3e:14:2b:f9:fe:fd:9b:eb:
ee:78:ec:6a:f4:1d:ff:f9:b1:18:5c:46:7b:f5:cb:
88:16:23:69:62:a2:19:1a:fc:7b:f5:2d:79:e2:63:
bc:d1:36:74:0c:38:3e:d5:0f:49:40:d1:89:5c:fc:
e2:e9:59:1f:41:0b:dd:8a:c3:5a:20:ef:60:b8:5c:
09:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:48:63:2A:61:B9:75:4A:BC:7F:7F:17:A0:55:C1:8C:E8:79:E8:F6
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/x0hjKmG5dUq8f38XoFXBjOh56PY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.107.0/24
Signature Algorithm: sha256WithRSAEncryption
51:73:71:62:8c:45:df:b5:8d:55:39:56:74:c4:a9:97:ed:e6:
93:d8:be:88:4d:14:6e:40:b6:cb:8f:51:8e:f7:96:18:0e:c9:
e8:80:07:b5:89:ad:d1:a9:8f:20:0e:7e:1a:ab:b4:ec:6c:04:
67:64:86:0f:4a:a4:a3:a7:5b:36:ea:b6:ea:50:7a:53:6d:85:
63:1c:ff:e4:52:0e:ea:de:47:e7:f6:ac:3c:11:54:07:86:e1:
1f:60:d1:8a:4e:cc:be:df:24:b3:8c:31:a8:29:d0:2a:b6:b2:
b7:f6:a9:f1:48:e8:5b:20:68:bb:5a:d1:4f:9f:cb:21:8d:a8:
2d:4e:f3:54:c9:90:83:ef:d7:35:9f:3f:cb:53:c6:2f:ae:d8:
00:ec:d2:ad:c2:ad:ec:80:d7:07:6a:cb:37:44:89:80:44:70:
5b:b1:19:94:a1:ce:db:ee:9a:11:93:44:72:7a:ed:cd:8a:b0:
0a:e3:16:0d:e6:e2:2c:e7:e3:1d:de:3e:d8:ac:7f:3c:f3:b5:
db:bb:ce:f8:0e:60:13:d3:c9:60:3a:a0:d9:1f:ea:30:36:56:
47:a4:c5:77:38:fb:57:a7:17:20:a5:9f:ac:c0:3b:48:d8:c3:
a1:a8:d4:6d:6d:ca:ba:b1:f8:d3:6f:48:9f:d0:80:a0:a5:ea:
cb:a6:6c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org