Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/0XuacX7tBTnQlUknyzxUhiMZkOQ.roa
File: 0XuacX7tBTnQlUknyzxUhiMZkOQ.roa (raw, json)
Hash identifier: js8+PMSaxCEePp8oQf5FvtU51KsqdiVO7KFUkRHeVs4=
Subject key identifier: D1:7B:9A:71:7E:ED:05:39:D0:95:49:27:CB:3C:54:86:23:19:90:E4
Certificate issuer: /CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Certificate serial: 01856F66DFAF60857195014B568ED921690D
Authority key identifier: 35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/0XuacX7tBTnQlUknyzxUhiMZkOQ.roa
Signing time: Sun 01 Jan 2023 22:14:50 +0000
ROA not before: Sun 01 Jan 2023 22:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 46.31.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:df:af:60:85:71:95:01:4b:56:8e:d9:21:69:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3556e7fb5772f979edd5e5c5aa63eb2b9c0ddc8e
Validity
Not Before: Jan 1 22:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d17b9a717eed0539d0954927cb3c5486231990e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:46:ae:88:8f:37:40:d8:e0:10:4c:b0:e1:7a:
9c:b3:b5:63:49:86:3b:23:98:f0:e4:56:2f:5f:04:
f3:3f:f3:59:ce:03:ee:29:7a:53:98:1a:40:35:9a:
4c:93:26:53:c5:56:00:90:f2:51:4e:7c:05:25:1c:
c2:be:14:e5:67:20:c2:15:86:3c:ba:67:b2:d2:5b:
b6:8c:56:c1:15:c4:ff:23:a8:0c:cc:a4:f4:cd:44:
a6:25:39:0a:8b:89:6a:0f:1f:b8:24:60:05:6d:34:
a8:ef:ab:12:2e:d6:8e:df:3b:01:6f:72:18:00:ba:
be:cb:a0:92:24:20:2a:ae:33:b6:dd:e1:06:b0:f7:
d5:bb:17:f3:ab:f1:59:90:b6:98:ca:00:e3:9f:a0:
a6:19:e8:c6:a4:bc:86:f0:0b:c5:3a:b7:51:61:f2:
f1:96:c7:ec:c3:ee:04:c5:9c:28:d3:79:3a:9e:39:
dc:3d:22:b9:36:d3:e0:2b:7c:80:16:07:b0:e3:56:
74:a9:9a:a8:c9:56:af:83:25:a2:ab:44:a4:25:75:
98:ce:4e:2f:ad:44:b6:ec:c9:30:93:32:7c:1c:0d:
6b:8f:d8:2c:29:3e:3c:df:23:28:90:d6:e0:5b:53:
1e:12:a5:43:a6:ac:1e:04:96:1a:25:0f:0b:6c:14:
5b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7B:9A:71:7E:ED:05:39:D0:95:49:27:CB:3C:54:86:23:19:90:E4
X509v3 Authority Key Identifier:
keyid:35:56:E7:FB:57:72:F9:79:ED:D5:E5:C5:AA:63:EB:2B:9C:0D:DC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/0XuacX7tBTnQlUknyzxUhiMZkOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/dcfa2a-76f7-4443-a495-6bb30a8730ed/1/NVbn-1dy-Xnt1eXFqmPrK5wN3I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.78.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b7:ed:a2:21:c1:53:b9:4b:3c:fb:6c:7a:20:27:31:ba:e7:
b5:ee:c8:c2:0f:88:7e:64:38:9a:49:b5:d7:e2:1b:63:37:45:
ef:a6:12:f5:ba:f2:f6:da:e2:77:03:5a:69:78:51:5a:02:9f:
f3:23:07:29:bb:2b:b6:2f:22:fb:b1:be:2a:6d:95:51:1c:9e:
83:5f:73:f4:c6:04:b3:6e:03:08:fb:9e:7b:f9:bb:94:7a:72:
e4:74:8d:67:54:0e:d5:de:a3:fc:e9:91:2f:14:5a:49:a2:b4:
0e:52:bf:df:6e:e2:af:d9:06:69:92:f0:64:f3:3f:44:ab:6d:
11:53:7c:d7:7c:20:0c:cf:fd:e2:98:7b:e1:ea:b8:2b:68:28:
61:8b:b4:08:31:07:68:ff:61:94:f3:14:f0:a6:7e:78:e5:fe:
50:b1:dc:85:d8:87:fc:d2:ab:1f:95:22:79:34:08:7e:65:2f:
ed:a9:13:ca:17:44:f3:0b:c1:51:49:5a:a3:a2:62:8a:7c:96:
2c:1a:f8:6e:cf:a8:13:4c:78:6f:b0:fd:79:17:ab:41:35:0a:
9a:a0:58:80:3d:c6:28:04:da:74:87:5f:0a:19:4d:65:68:d9:
ef:64:72:0b:be:e0:0c:b7:61:25:fe:0c:a4:72:a2:96:0e:d2:
06:a2:a6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:46 2024 by rpki-client on console-ams.rpki-client.org