Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/ZyHMTlUAA5AJmIOa3WTab2jxgE4.roa
File: ZyHMTlUAA5AJmIOa3WTab2jxgE4.roa (raw, json)
Hash identifier: MMn/JjRj8KQIbO3n4IiAN0Z1Y/YvMJvC8AcAGOmBxx8=
Subject key identifier: 67:21:CC:4E:55:00:03:90:09:98:83:9A:DD:64:DA:6F:68:F1:80:4E
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018B3820F88E413BA860447E48ADD1A6D2A5
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/ZyHMTlUAA5AJmIOa3WTab2jxgE4.roa
Signing time: Mon 16 Oct 2023 10:56:06 +0000
ROA not before: Mon 16 Oct 2023 10:56:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 46.34.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:38:20:f8:8e:41:3b:a8:60:44:7e:48:ad:d1:a6:d2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Oct 16 10:56:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6721cc4e550003900998839add64da6f68f1804e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:35:60:67:3f:0d:67:84:c0:91:3d:90:73:0b:
dd:b2:03:35:5f:42:6d:e4:a0:1a:a6:51:e1:eb:e7:
38:64:81:b1:2f:7b:14:5d:af:c2:f1:0d:62:08:ff:
63:01:65:22:7c:d7:16:20:9f:e2:dd:f6:bd:74:26:
f6:51:d0:ce:e4:b9:7a:24:91:5c:80:de:cb:c1:54:
82:a7:29:52:53:59:cb:73:a3:4a:a7:ae:b3:b1:50:
af:e0:b9:93:b5:84:29:5c:9c:a5:96:07:28:a8:a7:
1c:d0:46:4d:d8:dd:ab:f7:d0:40:33:6d:ff:78:4c:
9d:f0:10:a8:7c:da:4d:8c:0c:af:d0:b4:b5:a1:3b:
86:e0:21:7a:7c:be:8a:63:47:57:2d:b1:d0:1c:e1:
b4:98:01:07:ca:61:be:0b:e1:b6:0a:30:21:cd:5b:
1b:5d:80:0c:c6:7a:55:7a:37:93:80:e9:86:31:49:
9f:aa:4c:b6:54:76:40:66:13:4e:42:3c:c7:d2:ee:
5a:e0:dc:7d:2f:e2:0d:3e:f2:bc:d0:77:0f:f6:7e:
23:6a:b5:85:5b:7f:6f:97:54:af:80:d4:e2:7c:84:
17:fb:36:07:98:85:4b:d7:f2:7c:ab:6c:55:74:a2:
d1:f8:4b:e3:e8:92:05:fc:27:ce:20:f4:a1:d5:8f:
bd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:21:CC:4E:55:00:03:90:09:98:83:9A:DD:64:DA:6F:68:F1:80:4E
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/ZyHMTlUAA5AJmIOa3WTab2jxgE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.37.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:85:b7:c4:fd:3a:28:67:72:e1:d2:7b:4a:e8:86:22:4a:04:
b3:4d:ad:de:5b:df:17:85:3e:8a:2b:58:7b:a8:fa:f8:70:57:
46:a1:fc:c6:42:a1:78:f4:d4:45:27:73:e8:1e:88:dc:2b:ad:
c9:f7:dc:bb:33:82:74:ff:68:a4:5f:68:62:b5:8f:6e:0b:3a:
52:99:f6:c8:22:49:26:53:50:c6:c2:b3:3b:25:97:e1:52:bb:
13:d8:f5:9d:e3:22:0d:88:a0:9a:e7:da:31:57:4d:d8:a5:43:
7b:ef:15:b8:84:a9:6e:9e:cf:de:ab:f2:2e:9c:7b:36:37:e8:
36:f1:c0:0c:1e:04:30:fd:fc:1c:13:5b:dd:6f:e5:b0:71:bd:
ad:1a:0d:a8:f3:c1:df:e3:29:91:ac:0c:04:82:4c:eb:a6:23:
87:51:53:b5:c7:32:40:55:9e:9f:bc:59:27:f9:40:14:90:5c:
89:5f:46:1b:85:2d:54:19:91:ff:60:94:97:88:2c:e5:30:28:
b1:8e:03:ae:37:e7:c3:30:2b:5e:4f:73:8c:8b:0a:ee:17:a7:
72:e8:f2:15:ef:7d:85:db:00:0c:3d:b2:5f:2e:5a:83:41:6c:
3e:66:46:20:de:bb:b3:0e:be:1b:c4:83:cb:6c:ec:2b:a8:ad:
08:02:05:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org