Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/IGB2T5BURAHcrkMOhDvp1d5rMnQ.roa
File: IGB2T5BURAHcrkMOhDvp1d5rMnQ.roa (raw, json)
Hash identifier: WEdHs9qNnAlvquiGk+3Bm8flwBPfBmr0mUQqNZ0WPr0=
Subject key identifier: 20:60:76:4F:90:54:44:01:DC:AE:43:0E:84:3B:E9:D5:DE:6B:32:74
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0189DFE782C2D0F461BA9108FCB3C78E43E3
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/IGB2T5BURAHcrkMOhDvp1d5rMnQ.roa
Signing time: Thu 10 Aug 2023 14:43:58 +0000
ROA not before: Thu 10 Aug 2023 14:43:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 46.34.60.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 11 Aug 2023 00:15:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:df:e7:82:c2:d0:f4:61:ba:91:08:fc:b3:c7:8e:43:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Aug 10 14:43:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2060764f90544401dcae430e843be9d5de6b3274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1f:a6:dc:93:d4:fa:94:e5:66:ce:85:73:46:
c5:a2:12:4d:4b:92:73:55:8f:0f:fe:22:f2:9f:48:
ee:6e:b0:90:2f:f6:f0:bc:04:f2:58:7d:f0:ab:83:
01:cc:c5:09:f6:45:4b:6b:36:c3:4e:2d:fa:79:d5:
ed:1d:ec:d6:7e:92:46:4e:0e:87:6b:8d:d4:7f:77:
96:31:b1:f9:61:d6:83:17:53:2e:f7:10:ae:42:ff:
6a:70:83:b5:65:41:ff:72:98:be:05:55:53:90:ba:
3c:4b:39:a6:c9:de:be:c5:70:aa:8e:56:70:c8:62:
a4:94:46:26:81:19:dc:8d:33:08:e3:85:cd:d9:73:
de:6e:02:51:45:a6:0a:a9:8e:ab:b9:73:fa:c0:1a:
c0:99:5a:74:63:97:47:d5:d3:e7:46:39:a5:99:50:
ce:46:ae:6d:15:b4:dd:44:96:4c:e9:29:cb:28:63:
9e:e2:b5:4c:09:95:71:d8:04:73:04:7a:c7:cb:cb:
d2:be:d6:8d:45:8d:f2:3e:f3:d5:10:4d:b3:67:2a:
44:90:61:51:ab:1b:96:52:67:05:10:cf:92:09:1e:
57:b5:c5:ee:ef:26:7b:08:f7:09:81:5e:a8:a3:26:
39:0c:58:64:94:e2:9d:a5:4a:d4:1d:1d:dd:c5:12:
9a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:60:76:4F:90:54:44:01:DC:AE:43:0E:84:3B:E9:D5:DE:6B:32:74
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/IGB2T5BURAHcrkMOhDvp1d5rMnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.60.0/23
Signature Algorithm: sha256WithRSAEncryption
63:bd:7e:37:2a:e3:84:f1:21:9b:51:fc:0e:0d:ac:9c:19:ba:
9f:9a:70:49:eb:d4:0e:6e:1d:9a:5d:66:75:a1:38:3e:be:a7:
7e:d3:b2:60:73:1d:1b:a4:1e:2f:9c:d4:5f:5a:45:ee:c9:cc:
fa:81:58:b3:ee:52:38:35:3d:35:e3:8b:ea:92:3a:3c:40:5b:
3d:e5:75:e2:7b:9e:f6:85:8a:24:e2:f9:00:ff:d5:ed:65:1d:
69:ad:ce:6c:e5:57:50:dd:e2:d4:ea:34:d6:f6:cd:24:68:66:
3c:3f:33:44:e3:0a:ff:85:39:67:60:f5:ac:9c:af:82:48:08:
38:d0:54:64:a3:e9:12:52:79:c4:12:e7:ff:c1:8c:68:f4:74:
e5:2b:a9:c7:76:4e:51:9b:9d:3f:8c:ec:b6:1c:1b:f1:d3:8c:
7b:0a:76:1b:7a:bb:48:df:57:e5:04:3a:db:3f:52:82:10:b7:
1e:58:7f:de:b4:a6:f4:9f:5a:e9:df:39:34:df:66:a8:cd:3a:
03:96:66:70:8c:eb:cd:ea:74:4f:94:57:8f:fa:00:34:99:42:
a1:db:a2:70:4e:ff:d7:43:e6:96:81:c3:75:68:1a:78:39:57:
0f:3a:97:f7:44:93:86:34:47:ed:e3:d0:0f:6b:3e:2f:eb:4a:
fd:fa:cb:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org