Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/IymjMsKxdXa8mJc0In46xz08YeE.roa
File: IymjMsKxdXa8mJc0In46xz08YeE.roa (raw, json)
Hash identifier: T8wbnbozK+wCp7o6A0gAR3S0BqblX3TvSELt016Y27w=
Subject key identifier: 23:29:A3:32:C2:B1:75:76:BC:98:97:34:22:7E:3A:C7:3D:3C:61:E1
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018ABA2ABB86343572E2B08BFD59169EBB17
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/IymjMsKxdXa8mJc0In46xz08YeE.roa
Signing time: Thu 21 Sep 2023 23:54:37 +0000
ROA not before: Thu 21 Sep 2023 23:54:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 46.34.42.0/23 maxlen: 23
46.34.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 12:54:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ba:2a:bb:86:34:35:72:e2:b0:8b:fd:59:16:9e:bb:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 21 23:54:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2329a332c2b17576bc989734227e3ac73d3c61e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b5:ff:2f:b4:41:0c:b8:2b:86:03:31:45:b4:
76:89:c6:eb:55:d5:2b:4a:52:5a:d1:9e:7a:6b:4a:
80:38:ce:d6:f6:8d:40:ff:5e:8e:eb:f5:36:6d:45:
3e:a8:4d:a4:11:0f:94:c3:5a:51:f7:d6:4e:14:25:
64:70:00:99:e6:b4:0f:97:ab:b4:1f:a3:08:18:dd:
93:a5:75:88:10:75:bb:65:83:d9:ce:b4:ca:56:6e:
36:f4:66:18:79:a1:3f:32:c6:09:35:07:8b:9a:45:
fa:c7:51:a5:d5:18:3c:65:5f:82:de:63:4e:5d:dd:
5a:d0:3d:fd:6c:88:41:ae:3c:a4:c5:b6:e2:76:1d:
7e:54:0b:76:cf:d4:51:3f:84:2d:cc:44:1a:d8:8c:
55:d0:2a:1a:bd:d3:3b:0d:bd:2a:bd:33:ea:b6:5d:
fc:32:dc:ec:1b:c5:03:46:21:02:cc:1a:2e:77:72:
fd:ce:28:e5:aa:76:97:db:d3:2a:b0:42:5a:33:32:
59:74:c7:1f:6e:17:52:65:57:7c:4a:7d:71:bc:91:
8e:f3:a7:2d:4e:03:8d:db:49:8d:fc:01:ad:84:6c:
85:91:b0:25:af:9e:7c:e6:ce:1d:0b:cd:8d:06:65:
c8:e8:fb:53:14:c9:46:f0:99:9d:cc:fe:69:5c:ab:
b4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:29:A3:32:C2:B1:75:76:BC:98:97:34:22:7E:3A:C7:3D:3C:61:E1
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/IymjMsKxdXa8mJc0In46xz08YeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.42.0/23
46.34.49.0/24
Signature Algorithm: sha256WithRSAEncryption
45:cf:91:b2:c6:ae:91:76:7b:38:ee:24:27:29:09:26:92:a8:
e1:0f:68:fa:00:5a:00:38:1e:3e:6c:2e:01:8a:56:87:ac:cd:
2b:c8:0a:8a:72:ff:60:2f:8e:92:87:e4:e3:4c:ef:a7:50:bc:
83:bb:f7:12:b8:c9:7c:ad:1e:be:e5:fc:60:4d:94:41:85:90:
e6:9f:97:58:0f:5b:14:20:ee:eb:6e:de:93:68:bb:09:df:f4:
41:ce:98:c9:75:aa:1a:44:76:2b:d8:db:5e:91:4e:d7:37:95:
87:3c:28:a6:c2:2d:35:f3:fa:f1:61:4b:d9:f8:62:53:d4:c0:
94:cc:a6:29:11:b3:17:8a:18:a8:b9:f3:f1:2b:3e:5c:ff:c9:
87:5a:6e:c6:1c:7b:2d:0a:75:16:19:2f:83:c0:da:c9:6d:6b:
da:26:5c:98:46:2d:eb:a8:d0:21:e7:cf:ba:6b:39:7b:9d:a8:
22:e6:b5:00:c8:7c:4d:18:80:23:1a:e8:9e:b1:11:8b:8d:1e:
82:71:a7:fc:81:f5:65:1f:1c:6a:da:9b:8b:e6:ed:e1:3e:16:
2d:7a:fe:77:f6:f5:ab:43:2d:1c:46:27:83:13:18:63:e8:da:
6f:2a:e3:2e:25:52:05:9c:23:f8:9d:e8:5e:92:2e:d5:23:53:
05:a2:c3:b9
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYq6KruGNDVy4rCL/VkWnrsXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjMwOTIxMjM1NDM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzI5YTMzMmMyYjE3NTc2YmM5ODk3MzQyMjdlM2FjNzNkM2M2MWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7X/L7RBDLgrhgMxRbR2icbrVdUr
SlJa0Z56a0qAOM7W9o1A/16O6/U2bUU+qE2kEQ+Uw1pR99ZOFCVkcACZ5rQPl6u0
H6MIGN2TpXWIEHW7ZYPZzrTKVm429GYYeaE/MsYJNQeLmkX6x1Gl1Rg8ZV+C3mNO
Xd1a0D39bIhBrjykxbbidh1+VAt2z9RRP4QtzEQa2IxV0CoavdM7Db0qvTPqtl38
MtzsG8UDRiECzBoud3L9zijlqnaX29MqsEJaMzJZdMcfbhdSZVd8Sn1xvJGO86ct
TgON20mN/AGthGyFkbAlr5585s4dC82NBmXI6PtTFMlG8JmdzP5pXKu0ewIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCMpozLCsXV2vJiXNCJ+Osc9PGHhMB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvSXltak1zS3hkWGE4bUpjMEluNDZ4ejA4WWVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLiIqAwQA
LiIxMA0GCSqGSIb3DQEBCwUAA4IBAQBFz5Gyxq6Rdns47iQnKQkmkqjhD2j6AFoA
OB4+bC4BilaHrM0ryAqKcv9gL46Sh+TjTO+nULyDu/cSuMl8rR6+5fxgTZRBhZDm
n5dYD1sUIO7rbt6TaLsJ3/RBzpjJdaoaRHYr2NtekU7XN5WHPCimwi018/rxYUvZ
+GJT1MCUzKYpEbMXihioufPxKz5c/8mHWm7GHHstCnUWGS+DwNrJbWvaJlyYRi3r
qNAh58+6azl7nagi5rUAyHxNGIAjGuiesRGLjR6Ccaf8gfVlHxxq2puL5u3hPhYt
ev539vWrQy0cRieDExhj6NpvKuMuJVIFnCP4neheki7VI1MFosO5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org