Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/XJ-xfCfHgUQ77iYWZOsZVl_SXnI.roa
File: XJ-xfCfHgUQ77iYWZOsZVl_SXnI.roa (raw, json)
Hash identifier: 65kvZxb9f/hZPM5vC/QuZkosjsf5/+56kNkPTwxZSOg=
Subject key identifier: 5C:9F:B1:7C:27:C7:81:44:3B:EE:26:16:64:EB:19:56:5F:D2:5E:72
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01895407507228004CEFF70C3385848687E5
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/XJ-xfCfHgUQ77iYWZOsZVl_SXnI.roa
Signing time: Fri 14 Jul 2023 10:51:52 +0000
ROA not before: Fri 14 Jul 2023 10:51:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.38.0/24 maxlen: 24
46.34.36.0/24 maxlen: 24
46.34.32.0/22 maxlen: 22
46.34.44.0/24 maxlen: 24
46.34.40.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 08:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:07:50:72:28:00:4c:ef:f7:0c:33:85:84:86:87:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jul 14 10:51:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c9fb17c27c781443bee261664eb19565fd25e72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:95:34:37:e4:76:27:e2:e9:0f:52:c5:02:27:
98:91:d4:2a:9c:0f:9a:1f:d0:f4:4c:1d:f5:08:f6:
54:f0:5b:1f:2b:dd:ce:65:56:97:f2:9b:44:15:bb:
a3:d9:07:48:bd:52:25:89:68:df:83:16:d1:61:1e:
a7:27:43:01:c0:ba:d0:01:28:8a:bb:8b:cd:ed:fd:
e5:85:d7:07:50:6e:f9:92:28:34:0b:01:7f:73:4e:
52:60:6a:1d:db:6a:d2:ec:f5:d1:73:0e:29:e1:8e:
99:a3:48:9d:32:94:b7:43:fc:da:2c:39:35:b1:23:
8e:e6:87:5d:6b:38:8f:63:f6:9b:61:0a:97:af:93:
11:80:a0:c4:c0:54:ad:e9:88:c4:2f:ca:2a:1a:4c:
a6:43:b2:43:7d:a7:a6:09:b0:6a:76:b2:36:38:b0:
3d:28:8f:96:2a:aa:6f:2b:fe:37:ef:8a:8b:b0:05:
7d:f6:7b:8c:3e:ff:25:4e:34:81:ad:a3:48:88:21:
4b:4c:76:1b:c7:65:e1:a1:7a:4b:92:d0:0e:f8:f0:
42:ae:12:92:8e:13:6e:25:c6:75:2d:b2:2b:70:7b:
47:6c:1a:e8:6f:cf:d3:27:8e:a2:60:2b:40:54:e4:
c7:5c:75:c1:34:3b:b3:6a:8d:10:1d:f9:77:8d:09:
7b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9F:B1:7C:27:C7:81:44:3B:EE:26:16:64:EB:19:56:5F:D2:5E:72
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/XJ-xfCfHgUQ77iYWZOsZVl_SXnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.38.0/24
46.34.40.0/24
46.34.44.0/24
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ca:dc:12:83:b0:1f:60:e9:da:cf:c7:ac:a8:de:71:23:85:
39:c6:e8:e2:9e:0c:93:66:c0:21:18:42:71:0d:0b:a0:6d:02:
05:a4:76:30:ed:8b:93:8a:c6:c0:0d:fa:f3:5b:95:4a:84:7f:
47:2d:fb:2f:8f:31:c7:57:20:a0:9f:25:5a:77:c7:d7:cb:62:
0c:61:da:d7:a7:16:56:22:f9:2a:c3:78:46:7a:5a:ef:e0:b7:
67:63:be:63:d6:35:3d:85:c0:c4:71:10:6d:fc:ba:19:5c:a8:
90:be:ce:4b:f1:cf:d9:63:11:6d:42:c1:f6:65:f8:50:ef:9a:
22:4a:25:64:98:99:98:d8:1c:dd:9e:50:cd:4a:e3:64:7f:79:
27:f1:c6:3d:1b:1b:14:17:57:e1:f0:0f:08:01:09:5c:4b:d3:
d5:35:f1:7e:06:80:35:45:09:b6:c7:ba:15:a6:54:66:7c:08:
d0:1c:d2:57:9a:a5:61:ac:d3:24:1e:a9:05:1d:4e:8e:5e:12:
c4:be:10:28:7b:2e:fa:f0:59:ba:2e:61:5b:0a:53:06:d5:67:
ca:ee:42:d9:00:71:88:68:93:9e:50:ea:88:b7:67:14:b8:c2:
44:65:a1:1b:40:94:8e:93:03:81:57:a0:ed:fd:24:bb:ba:59:
ae:6f:e0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org