Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/XUzHYQV3rN58ZZyUxJoUwoekf7k.roa
File: XUzHYQV3rN58ZZyUxJoUwoekf7k.roa (raw, json)
Hash identifier: D/D/rUx1PDxnoOR5Jfas9L1UmYUGQlg4GfngJiQSKS0=
Subject key identifier: 5D:4C:C7:61:05:77:AC:DE:7C:65:9C:94:C4:9A:14:C2:87:A4:7F:B9
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0189E594725BE26048EF5808AF4F12D45379
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/XUzHYQV3rN58ZZyUxJoUwoekf7k.roa
Signing time: Fri 11 Aug 2023 17:10:58 +0000
ROA not before: Fri 11 Aug 2023 17:10:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51722
IP address blocks: 46.34.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Aug 2023 12:55:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e5:94:72:5b:e2:60:48:ef:58:08:af:4f:12:d4:53:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Aug 11 17:10:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d4cc7610577acde7c659c94c49a14c287a47fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ab:29:26:82:34:58:7f:92:99:ca:7b:72:04:
d0:d9:49:e5:81:48:5d:7f:9f:86:ee:73:e9:fa:68:
54:14:00:74:bf:f5:29:41:ac:e1:9e:4f:36:d8:68:
54:7d:5e:61:5f:31:b6:f2:b4:f5:61:a5:f5:84:64:
e4:a2:2e:73:bb:0d:6a:5d:64:63:b9:fc:2e:98:88:
65:ce:a8:5d:7a:9d:1e:2e:15:71:52:ea:e6:c8:1b:
dc:86:ed:a8:b1:ca:b2:87:37:c4:58:c3:54:4f:5d:
0e:f9:4a:c0:be:3a:14:b4:75:95:74:a8:c3:47:c8:
b2:84:f7:b3:d6:fe:e7:0b:24:12:b9:e3:48:e9:11:
d6:a7:58:76:45:70:0f:d4:f8:da:9d:da:ff:44:43:
99:1f:67:5f:5c:08:32:72:7d:18:0a:0d:cc:28:05:
ce:94:f1:2c:74:39:d3:4a:51:8c:92:55:e0:8e:7a:
24:fa:6b:11:47:ce:4d:ec:aa:f2:d7:b3:18:2e:9c:
69:ff:d3:ec:4a:18:b2:a0:8f:6a:35:42:ff:07:9e:
46:5b:9e:1c:0c:f5:16:de:31:fb:54:28:35:bf:6d:
5d:24:6a:58:40:fd:3c:ed:6a:35:94:28:f7:a7:a0:
99:23:31:b2:c8:2b:8c:c2:41:25:da:50:4a:5a:da:
f3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4C:C7:61:05:77:AC:DE:7C:65:9C:94:C4:9A:14:C2:87:A4:7F:B9
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/XUzHYQV3rN58ZZyUxJoUwoekf7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.49.0/24
Signature Algorithm: sha256WithRSAEncryption
53:3c:8b:52:6e:87:4a:35:98:55:88:87:9b:13:5a:07:8f:ff:
ad:66:0a:45:fd:8f:0d:c4:33:86:af:80:4c:57:7a:7e:26:5f:
0e:50:f4:21:9f:f2:cc:9f:a9:40:6f:34:97:81:0e:b8:45:65:
c8:d5:0f:68:3d:ab:4a:bb:2a:78:ac:fc:63:b1:58:7f:8e:02:
52:47:a6:b7:a1:bb:dc:f4:f1:a9:29:48:29:ec:4e:97:c5:ee:
98:ec:c0:4a:08:e8:09:69:c8:9b:ba:10:52:56:f4:3f:26:54:
52:fa:45:43:5b:0f:98:fb:08:ac:d5:d5:d8:77:75:43:78:d9:
2f:64:fc:5c:98:e6:c6:9d:6e:ad:28:6d:1b:1f:5f:7e:b9:84:
8d:78:e2:74:a3:32:ec:5b:21:ca:80:a6:94:99:2a:60:29:00:
ad:1a:15:cc:24:c0:f1:9b:f7:a6:ca:d8:10:78:04:ea:f9:84:
47:d3:5a:35:ae:9f:cd:c9:f3:07:4c:8d:2e:83:5f:cd:cf:08:
ac:29:29:57:53:0d:d3:0c:16:7b:8d:6b:a0:c1:cc:86:88:a7:
a5:bb:e9:b3:20:37:db:b0:81:f5:a6:f5:f8:c8:32:01:73:fe:
4b:ee:07:1f:b0:1d:53:1c:dd:8e:91:d6:d6:6c:62:20:5f:8b:
44:54:7e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org