Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/0wsHNrTrt9c60G23ZvSvctXXBLg.roa
File: 0wsHNrTrt9c60G23ZvSvctXXBLg.roa (raw, json)
Hash identifier: Mnx6vwmUF/AYtLUCJxOE07VpxxS0nlI3+xDYGKOtaws=
Subject key identifier: D3:0B:07:36:B4:EB:B7:D7:3A:D0:6D:B7:66:F4:AF:72:D5:D7:04:B8
Certificate issuer: /CN=535db143e906aa20e5782907f845d4a76962ff7b
Certificate serial: 0185711E48CC886776AB883CA24AD154E5A6
Authority key identifier: 53:5D:B1:43:E9:06:AA:20:E5:78:29:07:F8:45:D4:A7:69:62:FF:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U12xQ-kGqiDleCkH-EXUp2li_3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/0wsHNrTrt9c60G23ZvSvctXXBLg.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51785
IP address blocks: 46.18.248.0/24 maxlen: 24
46.18.249.0/24 maxlen: 24
46.18.248.0/21 maxlen: 21
46.18.248.0/23 maxlen: 23
46.18.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:48:cc:88:67:76:ab:88:3c:a2:4a:d1:54:e5:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535db143e906aa20e5782907f845d4a76962ff7b
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d30b0736b4ebb7d73ad06db766f4af72d5d704b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:25:83:9a:ac:33:5a:19:95:6b:04:95:74:65:
74:9f:e3:cd:76:07:39:7b:56:04:98:63:73:84:fc:
57:e1:4f:22:18:f0:b3:1c:5d:0a:0f:6e:97:4a:32:
2f:d8:b4:b8:81:7c:6a:bb:92:4d:a0:8b:e0:f2:a8:
98:f1:a0:f8:bf:b8:e8:d2:d3:fb:3e:53:f5:b1:9d:
ea:29:d8:23:88:a0:85:43:48:ca:97:9c:e3:7f:6a:
20:3b:e5:2a:f1:3b:39:06:2d:43:9c:69:fd:71:46:
57:8a:ea:e2:27:57:01:61:56:a6:2c:4b:62:77:48:
63:f3:98:bb:6f:c8:c2:10:ca:31:f5:0f:88:07:60:
4e:fe:35:fe:f1:f1:a5:48:24:eb:91:b2:d6:61:b8:
49:b2:67:f1:fe:5a:f2:23:ea:cd:a4:d7:d1:df:8c:
92:81:04:6c:2b:b6:09:97:7e:b5:ed:63:c5:27:c3:
3c:55:fe:b3:50:3b:d1:3e:ef:6f:00:c3:fd:02:49:
d2:62:46:f2:6d:af:c4:9f:16:c9:ac:d2:21:a7:6a:
2a:e0:f5:02:3b:c8:a6:25:63:d3:e9:ed:a5:37:11:
3d:75:f6:7d:75:4d:12:ce:14:da:0e:cc:5e:45:45:
a6:ec:d5:ba:38:b7:6d:66:61:8a:8d:06:53:e7:27:
5e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0B:07:36:B4:EB:B7:D7:3A:D0:6D:B7:66:F4:AF:72:D5:D7:04:B8
X509v3 Authority Key Identifier:
keyid:53:5D:B1:43:E9:06:AA:20:E5:78:29:07:F8:45:D4:A7:69:62:FF:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U12xQ-kGqiDleCkH-EXUp2li_3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/0wsHNrTrt9c60G23ZvSvctXXBLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1a8d98-34c9-4d26-97dc-48731b3c03a4/1/U12xQ-kGqiDleCkH-EXUp2li_3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.248.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:08:46:19:09:a8:35:0a:35:72:fc:20:0b:db:9d:28:ef:3c:
c3:bd:33:27:a9:53:2c:31:33:fb:98:65:5f:0b:3f:c3:99:96:
99:ea:9e:38:95:f2:f0:b8:74:37:93:bb:30:4a:59:2e:df:02:
93:65:aa:d1:a4:b8:f0:c1:8f:d8:4e:2a:eb:b8:47:b9:1c:c2:
72:fa:8c:b4:99:f2:03:d9:16:d4:56:77:73:9d:b3:14:02:ea:
54:62:65:e3:a3:5e:15:63:9b:52:6d:5c:b8:6d:42:a8:12:d8:
9b:fd:91:52:1f:01:9e:fb:1f:f4:93:aa:cc:79:81:da:7f:12:
27:bd:88:98:04:4a:44:93:ea:ea:a4:34:49:76:7e:09:48:d0:
40:e4:3b:40:b2:d6:cf:01:15:07:ea:d9:c1:2b:41:f9:a4:2b:
a2:33:2c:19:d0:7b:76:ab:27:bf:87:a3:c0:aa:de:52:24:1c:
81:48:90:8b:45:ee:89:38:f0:cb:c6:dc:24:4f:e5:d9:65:87:
28:53:58:1d:72:a6:c6:31:f4:00:f4:ca:5d:eb:cd:45:d7:68:
aa:24:e0:10:b7:87:2a:72:02:b7:f1:c9:f6:1f:26:ff:c1:8b:
12:bd:ef:61:9b:3c:78:f2:95:a2:51:cc:dc:37:e0:b2:96:f3:
b2:c6:a0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:41 2024 by rpki-client on console-ams.rpki-client.org