Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/RyVVC7EOT460lWwYzYs9wVcUOQs.roa
File: RyVVC7EOT460lWwYzYs9wVcUOQs.roa (raw, json)
Hash identifier: zl3sFl/2fPEoOK5pNtCsRSIhK0ApYrwBaOo21tfBcG4=
Subject key identifier: 47:25:55:0B:B1:0E:4F:8E:B4:95:6C:18:CD:8B:3D:C1:57:14:39:0B
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0189ACF72D8490AB4050DFB012688E50C20C
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/RyVVC7EOT460lWwYzYs9wVcUOQs.roa
Signing time: Mon 31 Jul 2023 17:20:27 +0000
ROA not before: Mon 31 Jul 2023 17:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 46.34.38.0/24 maxlen: 24
46.34.44.0/24 maxlen: 24
46.34.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 13:45:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:f7:2d:84:90:ab:40:50:df:b0:12:68:8e:50:c2:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jul 31 17:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4725550bb10e4f8eb4956c18cd8b3dc15714390b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:72:90:62:d0:09:d1:ed:32:18:85:b4:f5:cd:
db:8e:15:35:4c:be:22:8d:aa:6a:01:7d:a3:46:0e:
e9:00:5b:b0:cd:a4:0d:e5:12:41:a0:b1:c6:52:a6:
6e:ae:90:78:1e:a4:6f:0d:73:c7:d0:4e:6a:9f:00:
f2:1b:8f:3e:fb:bc:c3:63:f0:87:5d:f1:a6:0e:76:
83:01:3a:21:fe:d0:69:46:4f:09:cd:2e:c8:34:e7:
1b:1a:2d:df:75:95:5d:fb:b8:90:62:4d:e1:20:32:
97:68:c9:f7:6a:a6:dc:b4:02:0b:8f:db:f4:0b:9a:
43:4e:60:2b:65:c9:83:f8:a9:de:fd:1f:81:b3:e0:
be:85:4b:c0:c3:7d:70:8f:b3:14:83:e5:b9:3d:9c:
a3:a5:ef:60:90:59:03:28:ce:c2:c0:5e:a8:3a:cc:
1e:c4:87:33:ae:9f:ef:46:e3:a0:42:af:fa:61:4f:
07:fe:8e:2c:31:30:a3:5b:ec:38:2e:0e:62:35:c3:
f3:84:da:00:0c:86:7c:2a:f5:29:02:ec:5c:c6:63:
e9:96:9f:6f:28:ad:ca:bf:b8:cf:96:66:a3:78:c2:
0e:1a:f3:49:43:16:ba:b1:42:54:ed:07:de:af:44:
28:91:10:9a:5d:31:5e:25:32:cf:46:d3:0f:9d:40:
de:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:25:55:0B:B1:0E:4F:8E:B4:95:6C:18:CD:8B:3D:C1:57:14:39:0B
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/RyVVC7EOT460lWwYzYs9wVcUOQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.38.0/24
46.34.44.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:31:60:a7:c7:d8:0f:37:5b:45:ac:38:b7:ca:a1:46:60:c8:
c1:5e:2e:d8:2b:c9:f5:08:62:4f:3a:f1:a1:f0:b5:cf:98:35:
83:9a:7c:39:6b:7e:6e:03:9d:21:87:a4:00:84:80:93:79:9a:
19:09:a4:aa:a3:43:1b:77:5f:6d:7b:4b:a5:8f:0d:c6:f6:f5:
45:44:0b:f3:7b:be:f8:08:3d:b4:f7:66:95:b1:c0:e4:58:a6:
e8:42:44:83:1e:42:84:93:c6:21:c1:4f:14:f0:03:de:5a:2e:
18:52:46:bf:b9:07:28:04:de:ea:dc:61:1d:83:5e:12:0d:5b:
6d:43:ae:cd:d9:c3:fe:f0:b2:e5:01:25:5c:f2:f8:05:d1:99:
c6:c1:ce:01:8d:a5:dd:dd:38:7a:cc:6f:62:c3:0c:61:06:24:
55:51:17:7b:09:d7:cd:da:45:08:0e:42:96:22:ef:fa:c6:aa:
53:7d:1f:47:6e:8c:64:b5:16:da:02:ae:21:cb:c4:0d:26:1e:
5b:8b:13:99:c8:b8:3a:f2:33:7f:b3:f4:b4:57:1e:a1:e2:ee:
e3:85:0e:d7:90:e0:e6:41:31:24:49:8d:27:66:c5:84:e7:04:
b0:13:d2:e3:cd:53:1f:4f:df:a3:ae:58:fc:b8:2b:3b:b1:81:
09:63:0b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org