Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/NbzVBUsPxVQdA1CijQbwHI4myNk.roa
File: NbzVBUsPxVQdA1CijQbwHI4myNk.roa (raw, json)
Hash identifier: g8QEzgayxFQL1n/CBAvcq3B60LD+DR2XSBBjQPqiNvM=
Subject key identifier: 35:BC:D5:05:4B:0F:C5:54:1D:03:50:A2:8D:06:F0:1C:8E:26:C8:D9
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018A851044C727C0554BF17B115D0E2D0FCA
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/NbzVBUsPxVQdA1CijQbwHI4myNk.roa
Signing time: Mon 11 Sep 2023 16:25:50 +0000
ROA not before: Mon 11 Sep 2023 16:25:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 46.34.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Oct 2023 08:12:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:85:10:44:c7:27:c0:55:4b:f1:7b:11:5d:0e:2d:0f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 11 16:25:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35bcd5054b0fc5541d0350a28d06f01c8e26c8d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ce:38:47:65:c1:60:a2:12:5d:26:72:27:a2:
8b:a9:a9:dc:9b:32:1f:28:35:35:a4:45:b3:a7:a5:
64:c0:f4:e6:51:70:d4:93:14:3d:15:fe:32:74:0c:
67:69:2d:ad:a0:cb:81:f3:bd:69:73:50:55:9a:90:
91:a4:6d:a6:96:2b:26:2f:b7:30:1d:25:ef:6e:e0:
cb:02:9c:80:51:a1:4e:4e:35:50:fe:f2:ec:10:70:
3e:28:e7:ba:74:9d:5d:fe:74:68:ee:5d:9f:bb:5b:
dd:3e:a7:55:7c:6e:bc:da:6a:b0:e7:f2:a4:27:a4:
73:57:c3:43:8e:80:63:2d:94:16:96:cf:b4:b7:32:
2a:60:a0:79:77:82:f9:0c:d7:36:34:83:5b:7c:30:
55:3b:72:6d:c2:0d:d0:f8:79:2a:af:c9:89:d9:72:
d8:9e:35:d2:73:82:b3:94:35:0d:c1:97:03:30:35:
99:00:f0:3a:ac:e6:d3:d1:5c:b1:5b:f8:6b:ee:23:
66:4e:97:15:e3:0b:cb:bc:8e:f5:9b:aa:13:0b:43:
1c:cf:a3:d9:81:fb:e3:30:dc:05:e7:1d:f0:93:b5:
5c:60:c1:a0:1b:9b:87:da:ab:98:f7:cd:93:13:6f:
8b:a2:74:7d:83:cd:55:ec:6e:ea:d3:2f:07:8d:8e:
a3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BC:D5:05:4B:0F:C5:54:1D:03:50:A2:8D:06:F0:1C:8E:26:C8:D9
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/NbzVBUsPxVQdA1CijQbwHI4myNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.60.0/24
Signature Algorithm: sha256WithRSAEncryption
19:af:04:f1:3d:4e:81:34:2c:85:57:df:fd:51:e9:ca:1b:f7:
70:06:5a:10:34:55:3f:03:23:dc:ec:9c:5a:0e:16:f2:b3:60:
60:90:65:71:1f:05:60:1d:0a:69:f1:a0:96:d8:71:8e:71:f1:
bb:52:05:3d:96:4e:58:e4:d4:5a:b3:63:0d:21:90:9b:2b:41:
6c:20:e6:0c:6e:0e:bb:fe:7e:0a:c6:53:87:86:d7:4a:31:d8:
47:7a:2e:a6:83:0c:22:dd:4c:32:41:03:c2:e8:ef:ea:ef:f4:
58:0a:ed:bb:a4:1b:7f:f5:23:7d:68:42:8f:22:eb:5c:a1:28:
72:3a:d2:ad:81:61:31:6f:b6:2a:c0:27:aa:ec:a7:10:d1:1e:
fb:94:71:9f:88:52:f2:2c:d7:46:df:e2:21:0e:02:84:4c:b5:
8e:35:79:a1:86:6a:fe:87:4c:04:af:af:80:e2:83:93:b5:94:
3b:da:31:02:ee:23:66:f2:71:98:b5:42:65:b7:ab:bb:d7:f3:
07:63:87:99:5a:18:0c:c9:1c:d9:1b:df:5a:0e:68:7b:64:05:
4a:4f:52:f1:24:aa:1a:0e:b6:dd:b5:a7:d2:d5:7a:46:8d:44:
d0:9b:be:80:70:6e:81:a4:cc:c4:a3:50:71:2c:b7:97:32:60:
ec:62:6d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org