Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/1mpcLFKxWhol9waEDseZGVd1h64.roa
File: 1mpcLFKxWhol9waEDseZGVd1h64.roa (raw, json)
Hash identifier: /FGlT0zFHDmroAdaghocXKgkCKx/uw/FaIRQgmfiv/w=
Subject key identifier: D6:6A:5C:2C:52:B1:5A:1A:25:F7:06:84:0E:C7:99:19:57:75:87:AE
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018A704AF1CB8B33AF9B424458C0607A7A43
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/1mpcLFKxWhol9waEDseZGVd1h64.roa
Signing time: Thu 07 Sep 2023 15:37:54 +0000
ROA not before: Thu 07 Sep 2023 15:37:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 46.34.42.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 21 Sep 2023 23:54:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:70:4a:f1:cb:8b:33:af:9b:42:44:58:c0:60:7a:7a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 7 15:37:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d66a5c2c52b15a1a25f706840ec79919577587ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8f:01:d8:97:da:b3:63:8e:d1:43:6e:3a:e4:
c7:02:ef:20:1e:7f:53:12:ce:a6:dd:53:86:7d:89:
dd:56:b6:4b:79:0f:c6:22:2e:90:a2:5e:45:3c:d4:
6d:8f:38:dc:18:65:17:60:ac:aa:14:06:26:c6:ec:
e5:b3:f7:f5:5d:18:2d:3f:84:59:c3:18:6e:33:b0:
71:67:e5:89:84:04:8b:ee:d7:63:f9:6b:02:4f:8b:
5a:46:00:f3:de:aa:78:6e:c4:0f:bf:8c:49:31:f0:
a0:d6:47:d4:01:ab:c5:a1:da:c4:9d:5d:42:64:5a:
b7:fa:26:b4:fb:9c:62:41:33:5a:fe:00:3a:06:cf:
50:97:fb:77:85:9b:ac:8a:4a:78:ed:06:ce:e7:eb:
db:bd:89:1d:8c:15:2b:a2:4d:34:08:c7:34:57:33:
af:ab:e6:0f:bf:cf:a9:05:8e:85:2a:fc:bc:28:64:
19:96:d6:08:a1:0b:04:73:9a:30:16:50:54:df:49:
14:cc:b9:2b:b0:0b:b6:0c:e8:da:e3:e3:8f:27:cc:
f5:b1:47:3c:7d:a7:37:24:e3:f9:aa:73:31:db:8a:
90:38:85:c0:c0:c9:4a:66:7f:02:c0:35:2d:bb:2d:
4f:46:5a:38:2c:2a:8d:f8:84:8e:5a:84:34:78:41:
44:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6A:5C:2C:52:B1:5A:1A:25:F7:06:84:0E:C7:99:19:57:75:87:AE
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/1mpcLFKxWhol9waEDseZGVd1h64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.42.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:55:3a:1f:26:46:c4:68:49:48:20:ec:78:84:5a:13:4f:78:
1b:0c:ff:07:a1:96:af:a9:b4:ad:30:94:da:5e:8a:28:8c:ed:
3f:3a:3e:a9:bf:bc:f5:05:fb:f2:0b:bf:31:d3:52:07:c6:07:
e7:d8:3e:c0:e9:70:07:ce:57:91:8e:14:35:af:5e:3a:3e:fd:
57:c2:36:c6:c4:06:65:9d:b2:fc:b6:f4:72:c4:39:37:2e:fa:
c1:11:b0:6e:01:76:5f:c2:1b:a2:82:0b:41:04:49:e2:db:6a:
4f:e5:f2:37:fb:a7:72:06:c1:47:eb:1c:5d:c9:3e:d7:15:cf:
e3:9f:8b:44:bd:3c:80:a0:b9:cf:b8:78:48:9e:15:73:1c:84:
cf:4c:a5:f2:34:e2:a0:38:7f:b7:d4:78:1f:1d:7d:41:e3:d4:
2d:a4:c1:2c:ac:a1:af:4d:c6:28:0f:9e:ee:ef:2f:c5:0f:75:
13:5f:aa:db:14:6e:80:a5:be:24:67:e2:fa:2f:72:4c:10:9a:
1f:25:32:8c:08:41:b0:fe:be:5a:21:76:92:2b:7c:50:5f:77:
0c:34:04:9a:64:f7:fe:18:97:54:e7:d1:75:8b:cf:bb:a4:71:
e6:a8:22:cb:c7:b7:e0:0d:54:b2:e3:6c:cd:99:ad:99:3c:df:
60:55:39:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org