Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/HlYgO1QzM7Y6NThkQc6yZbSoU30.roa
File: HlYgO1QzM7Y6NThkQc6yZbSoU30.roa (raw, json)
Hash identifier: gR9dh90XApYtFhTptTNI+6h5tNGIpO56ZvmHFDv3l5g=
Subject key identifier: 1E:56:20:3B:54:33:33:B6:3A:35:38:64:41:CE:B2:65:B4:A8:53:7D
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018B620CED858656D9699DCAAA9DE77939AF
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/HlYgO1QzM7Y6NThkQc6yZbSoU30.roa
Signing time: Tue 24 Oct 2023 14:18:16 +0000
ROA not before: Tue 24 Oct 2023 14:18:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 46.34.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 17:23:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:62:0c:ed:85:86:56:d9:69:9d:ca:aa:9d:e7:79:39:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Oct 24 14:18:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e56203b543333b63a35386441ceb265b4a8537d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:00:1f:e6:33:39:32:6d:ea:8b:90:bb:86:bc:
73:92:fc:22:fc:03:43:66:f4:06:67:a1:a1:c0:89:
c8:bf:a8:20:1c:44:ae:0d:a8:1c:30:fb:29:f6:f6:
5e:76:de:01:66:42:63:02:e9:f0:06:df:e8:33:7a:
1b:5b:3c:ca:7a:d0:59:ea:e6:c9:bd:cc:15:1c:99:
48:b3:c4:9c:ce:e6:35:a4:0b:ca:8b:ed:95:d9:02:
5d:d1:20:0f:c1:f7:e9:9f:17:a5:1a:d4:89:b8:20:
5c:34:35:28:aa:49:b3:1e:19:fe:66:cb:2e:e0:24:
66:cb:fc:d5:1a:42:ad:f9:70:0e:c9:ef:10:4f:c4:
0b:cd:fb:f0:ce:4c:01:35:05:14:3d:3a:45:f7:06:
d5:07:89:e5:ea:e1:bb:a7:07:f8:ba:eb:08:2d:b4:
7b:29:8c:45:4b:8c:f7:af:b9:02:c8:aa:9d:a9:a5:
87:19:a3:bb:c3:dd:35:3c:2e:46:b7:69:09:34:b0:
86:75:d8:82:dd:71:29:e0:e0:7f:17:ce:2d:36:55:
63:61:0d:a7:bf:8c:c0:53:c8:59:6e:6e:71:67:49:
da:e7:f5:6d:38:da:11:ef:4d:f5:aa:5b:d9:8f:15:
0f:4d:24:a5:fc:52:ac:d9:76:19:87:1b:30:5e:44:
35:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:56:20:3B:54:33:33:B6:3A:35:38:64:41:CE:B2:65:B4:A8:53:7D
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/HlYgO1QzM7Y6NThkQc6yZbSoU30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.62.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a3:db:8e:17:c4:00:9a:67:d1:8e:ea:7c:20:a8:bb:d0:88:
94:7f:e4:32:51:09:17:d0:f9:97:22:d2:58:73:f6:78:db:0c:
ae:42:49:f7:3d:41:30:8b:ae:cd:02:a6:8e:05:cf:fb:c9:af:
63:be:37:df:43:8b:a4:09:41:11:dd:b8:29:38:72:78:c0:bc:
7a:58:c9:8b:e9:85:8d:f5:13:64:b2:dc:0e:55:ae:2b:b8:ff:
1d:1a:3d:41:12:7d:60:81:1c:9b:6c:7f:3e:91:2f:95:63:97:
f2:d7:f0:c1:a1:96:c7:c7:ac:2e:1a:d9:76:aa:f0:ce:6d:56:
10:19:0f:7e:68:c2:34:e1:4b:db:60:7a:7d:07:e3:a9:f8:ab:
c1:6b:60:d3:18:65:4c:96:69:64:15:32:9b:87:22:4f:aa:ce:
b4:e8:c6:92:33:dd:4f:f5:b5:8a:0c:dc:e5:25:f8:ba:03:fa:
cb:06:f0:dc:2f:4b:07:67:9c:5d:32:6e:30:d4:df:41:cc:5a:
65:72:69:d1:d5:da:db:c9:0a:ed:38:7e:63:ab:12:96:39:a3:
01:54:d4:12:f3:33:25:4d:65:21:5d:10:39:5d:37:94:93:72:
5d:06:7d:f5:fe:f3:3c:97:49:1c:ab:ee:34:cf:76:7d:5b:2b:
8a:d4:46:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org