Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Sg-fVVYoNzpK7SVnSJpvrIfp1Wo.roa
File: Sg-fVVYoNzpK7SVnSJpvrIfp1Wo.roa (raw, json)
Hash identifier: BsrxJIDQrPvJpaDPJNg7ftc+akJlPLb682GaLMqFykE=
Subject key identifier: 4A:0F:9F:55:56:28:37:3A:4A:ED:25:67:48:9A:6F:AC:87:E9:D5:6A
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01866E2708FC971B0484B96376F780DA68CC
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Sg-fVVYoNzpK7SVnSJpvrIfp1Wo.roa
Signing time: Mon 20 Feb 2023 09:28:17 +0000
ROA not before: Mon 20 Feb 2023 09:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 46.34.42.0/23 maxlen: 23
46.34.55.0/24 maxlen: 24
46.34.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Feb 2023 09:29:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:27:08:fc:97:1b:04:84:b9:63:76:f7:80:da:68:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Feb 20 09:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a0f9f555628373a4aed2567489a6fac87e9d56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8a:bc:dd:32:10:8c:d5:cb:d1:bd:63:b9:b5:
13:b9:67:ce:7f:79:f4:2d:62:36:ad:00:38:7e:e3:
bc:e1:2a:bb:1b:ed:90:5a:cb:d7:d2:e1:90:13:10:
a9:b6:65:81:cc:7f:d7:76:9c:21:65:bc:b3:54:82:
fa:b4:01:92:e2:61:f0:df:a3:15:af:70:57:de:a7:
1f:72:d6:f2:ca:9a:e4:b6:46:60:91:0f:9a:4f:df:
6f:b6:9e:07:0a:7a:5f:cc:d1:26:6c:e5:a0:69:e3:
a2:b9:ce:81:b8:9f:af:3f:df:d2:57:78:86:1f:91:
17:3b:30:55:bc:77:31:9d:75:5c:9c:fd:12:ec:c8:
36:35:68:dc:14:7c:9f:cf:95:f6:aa:cf:b6:4c:b5:
6f:1d:ab:0d:45:96:61:8a:19:01:a0:f9:3f:fe:6f:
4f:c9:5d:13:3a:08:ed:5f:06:bc:36:2b:55:04:7e:
82:74:fa:4c:bb:59:95:a5:35:ea:fa:50:71:a0:53:
4c:65:48:97:ce:6b:ef:73:97:b8:cf:52:3d:36:24:
04:68:e8:46:1f:83:f8:21:e2:b8:a4:9b:cf:5f:53:
da:d1:bb:13:a0:f5:91:a3:65:36:e2:cd:4a:fe:fc:
bd:ba:53:d7:7b:ce:40:4f:70:7e:78:51:57:f2:ed:
ae:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:0F:9F:55:56:28:37:3A:4A:ED:25:67:48:9A:6F:AC:87:E9:D5:6A
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Sg-fVVYoNzpK7SVnSJpvrIfp1Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.42.0/23
46.34.54.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:0b:df:f4:91:28:10:66:2b:4c:bf:b8:94:f2:e2:85:ad:cd:
74:6c:a0:a3:e6:f0:d8:c9:d2:c7:75:ef:df:79:a4:df:3a:6c:
b8:1a:43:59:fc:a2:f5:24:60:a8:ac:b3:bb:ae:ec:4a:2c:28:
42:df:60:15:d9:06:bb:18:46:54:2c:96:d8:d1:2a:34:9d:53:
c7:2d:5a:5d:0e:26:14:3b:81:1f:a6:b5:c3:ba:5b:cb:30:f4:
13:40:6b:9d:78:df:64:97:a0:32:af:1c:04:26:dc:05:29:66:
2a:43:c5:41:64:db:1d:ec:38:0d:73:b8:6f:b0:42:4a:54:7a:
49:c3:34:ce:f0:1c:d6:ec:a1:cb:ab:73:8c:55:a2:8e:d1:34:
b2:bf:c6:17:4f:c1:f8:a2:19:83:76:d5:7b:f4:80:ea:24:00:
5a:b2:0b:6c:24:e6:33:82:d1:ed:bb:02:11:11:54:28:b2:59:
78:c4:76:ef:8b:70:da:ab:f5:56:17:24:1d:dd:46:9f:29:eb:
dc:b0:f2:5b:63:bb:ec:67:44:aa:26:8b:3b:8c:c8:c8:95:fe:
7b:f5:2c:da:84:3c:2e:a2:33:90:24:39:3b:54:71:06:9d:18:
83:64:1b:42:01:0b:48:ac:83:61:3f:da:ea:a5:19:35:00:7b:
cd:db:57:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org