Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Uk5H1lRG2bHjaowC5m4Ntss2DQE.roa
File: Uk5H1lRG2bHjaowC5m4Ntss2DQE.roa (raw, json)
Hash identifier: yQO09+SCRyM0crXmCgqXRGvEQ0XjF4S+fPL0YpGRHtE=
Subject key identifier: 52:4E:47:D6:54:46:D9:B1:E3:6A:8C:02:E6:6E:0D:B6:CB:36:0D:01
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018965139DF0C82D31A7A2DA75EA6CB22764
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Uk5H1lRG2bHjaowC5m4Ntss2DQE.roa
Signing time: Mon 17 Jul 2023 18:18:51 +0000
ROA not before: Mon 17 Jul 2023 18:18:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 46.34.55.0/24 maxlen: 24
46.34.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Aug 2023 09:35:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:13:9d:f0:c8:2d:31:a7:a2:da:75:ea:6c:b2:27:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jul 17 18:18:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=524e47d65446d9b1e36a8c02e66e0db6cb360d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b0:d7:ec:0d:b5:29:1b:7f:b3:32:1b:c9:39:
6a:72:b3:50:81:72:8b:7f:9a:9a:16:f1:db:aa:7a:
53:ab:6e:ba:69:ea:e5:e2:60:a2:86:3c:d8:57:4d:
47:52:2d:89:d4:69:94:84:4b:ab:4e:38:2f:69:96:
84:a7:f9:84:aa:cc:82:fa:1c:7d:5f:26:29:69:d3:
1e:21:49:ae:53:5c:1c:d3:8d:3a:ce:ab:61:26:d5:
db:f7:a7:7c:4d:90:15:2b:f1:79:68:4c:dc:ce:6d:
a0:de:de:2e:b1:1a:57:72:a5:a0:49:94:65:26:7b:
ae:2d:7c:52:ff:fd:1d:6e:ca:08:97:99:60:8d:40:
2b:d6:7f:10:58:18:ed:14:5b:1a:07:79:a5:41:da:
7f:1c:31:1c:02:c5:17:70:9d:b7:99:c8:aa:60:3a:
64:f5:72:63:8d:4d:8c:ab:0e:5d:cd:ac:29:36:11:
f0:c3:9c:27:48:ee:e9:8d:6a:78:65:2b:de:5d:f8:
76:d9:a6:d4:6b:0c:45:63:7a:33:47:60:e0:a1:d7:
1c:74:1f:e4:cd:35:37:87:12:77:9f:f3:8f:6a:6d:
ce:a2:6e:28:f2:6b:39:95:36:a9:5d:0b:71:02:e9:
ca:5d:fc:3f:ef:b1:83:24:27:0d:cc:d4:11:0b:d9:
d0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4E:47:D6:54:46:D9:B1:E3:6A:8C:02:E6:6E:0D:B6:CB:36:0D:01
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Uk5H1lRG2bHjaowC5m4Ntss2DQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.55.0/24
46.34.62.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:81:0c:6b:f7:e6:1e:21:14:2b:08:40:42:cb:60:95:90:b6:
ba:a7:f0:01:b3:f2:9e:84:d1:8e:94:a9:1b:06:af:8a:a5:d9:
e3:e4:26:92:19:ec:3c:60:13:95:47:fc:ea:6f:bf:54:8a:f3:
df:d6:eb:91:9f:bd:83:72:b6:5c:f0:04:d7:b0:2d:6b:83:f3:
45:1c:8d:59:2f:f7:b2:68:f9:e6:23:76:4b:75:d9:2e:2f:be:
2e:0e:bc:27:b2:0b:29:ac:a6:cd:ed:3d:ec:20:42:9f:49:fa:
3d:dd:37:5e:35:cc:66:9b:61:58:5f:63:7a:dc:0d:13:c7:da:
65:28:1a:50:80:bd:8a:b8:b6:8f:c8:2b:c2:30:5d:39:d0:f2:
ee:02:1c:94:c4:8e:ce:96:63:47:08:41:ea:24:49:8d:f4:1b:
1b:4c:49:d9:fd:76:05:02:9f:48:a3:ee:e0:9b:67:96:ab:80:
53:f6:13:f7:a7:ee:64:2e:25:61:71:00:c0:fd:7a:a9:49:01:
e0:70:1d:3f:78:cd:c9:2f:93:3b:7a:7b:a7:fb:40:2e:4d:b8:
c5:7e:04:53:d1:a4:3d:d8:88:96:17:28:be:54:36:6d:7c:3c:
ec:58:b7:f6:58:ae:e1:48:ad:8a:b3:61:ae:7b:0d:8b:94:35:
91:12:e5:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org