Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/4nKbZY0sLVyrXCw16F06G8zTDsw.roa
File: 4nKbZY0sLVyrXCw16F06G8zTDsw.roa (raw, json)
Hash identifier: BJ9/V5a912Bz83/VCfJwLRkeVIQ/EI/MB8Wi6gWZtdw=
Subject key identifier: E2:72:9B:65:8D:2C:2D:5C:AB:5C:2C:35:E8:5D:3A:1B:CC:D3:0E:CC
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0186EF86628C40CFF6353C6167BEBC8B40E9
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/4nKbZY0sLVyrXCw16F06G8zTDsw.roa
Signing time: Fri 17 Mar 2023 12:23:27 +0000
ROA not before: Fri 17 Mar 2023 12:23:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 46.34.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Mar 2023 12:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:86:62:8c:40:cf:f6:35:3c:61:67:be:bc:8b:40:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 17 12:23:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2729b658d2c2d5cab5c2c35e85d3a1bccd30ecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0d:47:fa:1a:1e:ea:1b:a5:31:04:a8:f5:07:
da:f2:8e:5d:2e:d6:da:e9:90:c5:96:51:09:66:47:
ff:f5:d5:59:0b:2d:18:e9:3a:f2:c3:40:05:a5:17:
73:28:54:ad:ee:46:8c:49:8a:cb:89:95:7c:14:a9:
df:76:46:e2:84:02:a4:aa:6a:8d:57:24:fc:e2:02:
eb:51:b1:4a:a9:7b:a0:1b:ab:e2:93:a9:6b:36:c0:
46:3e:d2:73:0f:30:c6:f2:b1:92:60:9f:33:b0:ef:
d1:f5:74:c0:82:b7:68:c8:9b:29:9c:3a:4b:e9:51:
d2:2f:6e:0a:85:92:87:b1:c9:6a:19:88:be:a7:d2:
9e:ff:6c:9e:e4:db:99:36:b0:13:84:6e:57:9b:77:
c3:93:73:12:5d:69:00:91:1e:6d:bb:55:a7:be:41:
f2:5c:3f:cf:02:ad:fa:a0:d9:dc:e8:05:c7:f3:b1:
00:07:69:66:b8:42:a2:52:6b:87:d5:2d:4e:0c:86:
3b:84:fe:de:29:73:94:07:d9:10:fe:01:5b:4f:c6:
fa:cd:a1:c4:86:78:5c:73:0b:dc:8c:4b:04:e2:7d:
19:4d:44:09:25:aa:52:c2:00:14:0c:95:47:63:18:
75:27:12:30:85:88:4e:2d:11:72:7a:66:3d:ae:f5:
60:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:72:9B:65:8D:2C:2D:5C:AB:5C:2C:35:E8:5D:3A:1B:CC:D3:0E:CC
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/4nKbZY0sLVyrXCw16F06G8zTDsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.52.0/24
Signature Algorithm: sha256WithRSAEncryption
64:e2:a5:db:a4:af:6c:1c:04:94:fb:ca:1e:56:6c:5b:e6:42:
3c:e8:23:bd:28:f1:3e:54:f3:86:75:bc:08:a8:d6:5e:7e:65:
85:43:d4:36:4f:4b:c4:f8:77:4f:0a:2d:1b:d5:dc:3a:d3:29:
08:8e:b5:b3:5c:9d:d6:ee:80:15:7d:6a:88:53:df:31:45:65:
e8:0c:69:ee:dc:b2:23:dd:e4:f7:45:d6:cb:54:e9:8b:e7:a7:
b3:99:69:ce:8a:ad:b1:00:1d:2f:90:84:1d:84:5e:10:b6:5b:
98:52:8f:37:36:10:5f:49:11:d3:32:bc:91:a2:8a:91:33:93:
f7:2d:e0:89:60:d2:f5:e5:9d:80:3f:eb:5b:e6:5a:40:e5:8d:
9b:89:c3:71:e1:9e:bb:ba:2d:5c:c0:02:cc:3f:85:32:61:71:
13:11:e6:2c:31:0f:cf:04:31:4a:a8:6e:a1:07:ff:fb:fd:37:
37:3f:69:48:4a:1b:6e:e3:3e:3f:bc:5f:9b:38:6c:3a:5d:99:
f3:f3:65:43:78:bc:f9:3d:4a:29:ef:c2:74:f7:47:22:6b:05:
a7:d9:89:a1:70:18:bc:6d:9a:12:11:dc:74:02:86:33:83:f8:
7a:6d:f1:af:b5:14:1c:2d:b7:c5:ae:9e:cf:02:dc:ea:af:89:
7f:d1:66:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org