Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/443RpccIcOWOEbyPb7YELEVIhzM.roa
File: 443RpccIcOWOEbyPb7YELEVIhzM.roa (raw, json)
Hash identifier: KMAEhrM1Nkql9OGMC/ei04fzkwRW9VmepmU44BwKuO8=
Subject key identifier: E3:8D:D1:A5:C7:08:70:E5:8E:11:BC:8F:6F:B6:04:2C:45:48:87:33
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018624EE6B8C842C7116B62424E0087E1A40
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/443RpccIcOWOEbyPb7YELEVIhzM.roa
Signing time: Mon 06 Feb 2023 04:14:10 +0000
ROA not before: Mon 06 Feb 2023 04:14:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 46.34.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 07:58:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:24:ee:6b:8c:84:2c:71:16:b6:24:24:e0:08:7e:1a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Feb 6 04:14:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e38dd1a5c70870e58e11bc8f6fb6042c45488733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:41:c4:43:80:d5:2b:ca:3b:95:42:d1:7e:81:
85:2d:e7:ab:d4:08:e7:c3:3f:84:be:cc:3e:8d:77:
2b:85:e5:bf:56:02:06:9b:35:bb:09:bd:3a:2d:0c:
42:83:99:7f:62:c7:ef:3e:01:77:0e:07:a3:b0:86:
b1:3d:d7:58:96:bc:8d:23:5d:29:84:d4:08:4b:17:
e2:cd:10:02:e2:f3:25:c9:da:31:88:b6:77:c5:93:
81:e4:d2:e5:57:5a:a5:6f:3f:d2:bb:75:b4:3d:50:
19:2c:38:eb:b8:a8:28:94:81:7d:53:53:a1:18:66:
06:ea:5b:f1:d6:80:1c:48:bd:69:b1:5e:64:fd:8a:
f4:9e:f4:2a:8e:c1:15:3a:18:41:26:68:4a:4f:7d:
66:85:79:bc:d8:0a:c3:2f:b4:a6:95:de:cf:66:a7:
a2:e2:3b:d6:57:c2:04:4a:60:dc:07:31:18:46:d9:
de:12:65:ba:c4:04:b6:74:f8:09:7e:f4:20:b1:49:
0d:bc:04:b4:6b:2a:1c:7e:92:be:5a:57:5d:21:58:
1f:e2:f8:da:65:32:f1:c4:d0:1a:3e:18:8d:b4:59:
c2:5f:8c:4d:f7:82:ad:5b:2f:7f:82:2c:31:ad:eb:
bc:82:90:9c:84:55:e2:1a:90:0f:6a:67:c3:20:94:
9c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8D:D1:A5:C7:08:70:E5:8E:11:BC:8F:6F:B6:04:2C:45:48:87:33
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/443RpccIcOWOEbyPb7YELEVIhzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.45.0/24
Signature Algorithm: sha256WithRSAEncryption
17:87:a2:2e:c6:8b:90:b4:2b:43:b1:9c:30:4c:50:29:62:27:
c8:2f:79:92:4a:4f:12:16:32:58:0e:63:31:e6:9f:65:ce:7a:
f1:31:17:ea:59:0d:11:f4:57:91:66:c9:51:11:97:4a:85:68:
91:39:8f:10:bb:c9:98:f7:56:d5:b2:e5:d2:28:84:1f:04:32:
40:f8:77:c5:8f:b7:26:03:7a:fd:cb:b5:a4:e9:d8:3c:bd:c6:
5b:49:79:11:c5:16:02:70:98:31:bf:d4:ae:3d:d9:48:33:f2:
ae:8a:34:ad:46:83:b8:80:37:9b:04:77:81:78:36:e4:f5:e7:
f9:4e:49:4c:79:c7:12:67:5f:ad:c4:98:0c:30:b4:6c:01:ec:
81:c9:64:b9:6d:9e:93:f3:9b:f6:7a:9f:5e:f8:79:4a:c1:89:
4f:5f:8b:6a:cc:db:92:9b:6c:90:cd:5a:eb:01:4d:17:cc:29:
1e:8c:40:ed:93:af:cc:34:52:cb:62:68:56:1f:6d:73:01:d0:
24:a8:53:e7:25:96:34:03:01:f0:44:66:6b:71:29:fb:69:f3:
70:b1:a8:c6:68:50:f9:42:75:28:30:97:80:45:1e:5d:64:00:
99:ca:2e:1d:fc:f1:c1:e3:fe:7d:b6:01:a6:53:27:06:3e:93:
d3:f2:a0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org