Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/9v43fWkMOrCR2vWsO67Dc2xRUy0.roa
File: 9v43fWkMOrCR2vWsO67Dc2xRUy0.roa (raw, json)
Hash identifier: f5RuOLgmGN1LOcG1EoM2fwXN8MO9ngGZvTJ79IlrC8k=
Subject key identifier: F6:FE:37:7D:69:0C:3A:B0:91:DA:F5:AC:3B:AE:C3:73:6C:51:53:2D
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018CC9BBF37DFE73D044FE74D0534A186103
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/9v43fWkMOrCR2vWsO67Dc2xRUy0.roa
Signing time: Tue 02 Jan 2024 10:33:07 +0000
ROA not before: Tue 02 Jan 2024 10:33:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42689
IP address blocks: 46.34.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jan 2024 09:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:f3:7d:fe:73:d0:44:fe:74:d0:53:4a:18:61:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jan 2 10:33:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6fe377d690c3ab091daf5ac3baec3736c51532d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:70:3c:4e:36:62:fb:4e:b7:f8:fb:56:06:7a:
07:f1:be:3b:25:2b:90:9a:b4:e6:71:88:3a:0a:d4:
06:ef:58:69:35:cd:7a:4b:18:44:64:d5:c2:76:75:
89:9b:02:98:bc:4f:ec:5b:bc:bb:0d:f2:3a:77:b0:
46:fe:90:26:02:5f:fb:92:e1:0c:84:28:9b:31:2b:
70:4e:16:a8:77:53:67:13:7e:12:31:6e:34:49:62:
5c:9b:af:45:c8:77:df:c2:bf:af:50:c2:a4:62:64:
cf:47:c9:a3:7d:83:a2:36:27:75:e8:4d:84:da:36:
d6:a2:25:7f:fa:db:58:72:f4:83:ee:3f:0f:a4:36:
6d:6b:70:52:f6:ec:17:ce:c8:7c:3d:81:c7:a6:79:
f4:a7:d0:90:a0:0b:33:b4:d8:83:be:4b:64:b7:89:
75:95:d0:17:d1:98:f0:4c:45:06:24:46:ce:f1:72:
93:29:13:4c:d3:ab:20:fc:48:46:90:29:84:e7:55:
cd:9d:46:70:f1:4a:a3:07:66:61:a0:0e:8b:12:fc:
93:88:1f:ea:a9:f5:d1:d5:25:2b:c4:be:a6:7c:91:
30:6f:40:8e:bd:4a:3f:c9:4e:0a:c9:de:d2:d7:98:
d0:db:3b:bc:a6:46:40:fe:ff:2e:42:a1:a5:21:50:
4e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FE:37:7D:69:0C:3A:B0:91:DA:F5:AC:3B:AE:C3:73:6C:51:53:2D
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/9v43fWkMOrCR2vWsO67Dc2xRUy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.48.0/24
Signature Algorithm: sha256WithRSAEncryption
57:56:ac:59:ad:c3:59:c9:40:ef:0e:33:5e:4c:e0:dc:4d:5e:
21:4e:90:eb:58:55:e8:9e:28:0b:1b:59:02:5e:3b:f2:09:c3:
1d:0a:cc:fb:d7:05:74:b0:0e:62:cb:61:03:f3:8f:1e:a5:f9:
ae:39:03:cd:20:12:85:4f:92:90:62:ee:82:9e:58:d8:da:7f:
77:dd:b8:b5:c9:70:c5:c1:98:13:ae:02:9f:20:a5:ff:6c:c7:
5f:76:3a:ed:a0:1f:a1:18:32:37:c1:a5:2e:ba:0f:7f:61:f8:
f9:c9:c7:b0:b3:73:38:d8:06:8d:30:fd:a4:29:01:0e:a9:28:
ac:01:3b:15:1d:52:a6:2d:8b:d0:ab:32:20:1f:fb:ca:57:c2:
84:64:52:32:d2:85:8b:c6:12:4f:c0:ef:d0:3f:11:fe:6e:16:
07:4e:a9:2e:72:9a:6f:35:d5:0f:44:20:5f:c2:62:ea:89:32:
be:e7:71:59:dc:33:a4:8b:09:3e:48:f2:0e:d3:58:74:f5:cc:
1a:6b:29:96:96:54:06:93:69:58:d7:fd:4e:ea:ee:03:6e:48:
1e:4b:9f:20:4d:f0:a2:be:6d:13:78:7f:27:bc:a2:79:f2:ef:
74:33:62:f4:f8:7f:e6:41:97:d3:60:67:37:7d:ce:15:a0:4a:
e0:93:1f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org