Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/aUQih9EqdbeKZPMWv4cGtTlxrDY.roa
File: aUQih9EqdbeKZPMWv4cGtTlxrDY.roa (raw, json)
Hash identifier: llhPfCuo74o1SlZo0p2AtIiovVuPkXji2D2LiaTdphE=
Subject key identifier: 69:44:22:87:D1:2A:75:B7:8A:64:F3:16:BF:87:06:B5:39:71:AC:36
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018733A21B8F3804AFB4419CE18B93CBC358
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/aUQih9EqdbeKZPMWv4cGtTlxrDY.roa
Signing time: Thu 30 Mar 2023 17:47:54 +0000
ROA not before: Thu 30 Mar 2023 17:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 46.34.47.0/24 maxlen: 24
46.34.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:33:a2:1b:8f:38:04:af:b4:41:9c:e1:8b:93:cb:c3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 30 17:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69442287d12a75b78a64f316bf8706b53971ac36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3f:38:d5:29:16:a5:f3:af:34:23:3b:1b:b2:
da:e8:ef:17:9c:97:7a:08:f7:6c:39:3e:6a:2d:07:
b3:e5:32:cb:3c:35:62:47:3c:f2:ef:00:4f:6b:d8:
76:eb:05:a8:51:7f:9a:ba:14:4a:c7:50:0b:8e:af:
14:77:0d:77:33:7d:7e:59:34:e8:8e:ed:e6:95:b5:
e4:59:5d:6d:4d:c0:84:73:e6:76:77:9c:92:46:e2:
12:b3:44:c7:a6:92:56:21:54:f4:7c:50:10:e9:02:
55:bf:df:b5:0f:91:60:bb:b8:f4:3a:30:e2:5b:b0:
12:ca:a4:40:77:0e:42:3d:da:c0:66:16:c7:09:bc:
35:2a:d7:4e:b7:eb:3a:59:f0:3b:ec:98:6a:a0:0a:
d0:f1:1a:52:5f:b1:e6:7d:e1:60:e8:9d:54:3e:76:
3b:42:9c:cc:1c:d9:4b:79:d2:1f:51:5c:6a:0d:52:
fd:d6:62:d7:5e:0a:7a:cb:58:0a:0c:66:4f:36:88:
bb:a7:8f:db:ad:3c:fd:7a:43:b6:19:f3:db:88:e7:
19:ee:ef:5f:55:f7:0a:0b:5e:f3:76:05:06:02:23:
d5:1d:55:eb:d8:8e:4e:4e:06:67:5f:4d:2e:c3:f0:
83:f1:df:86:5a:a8:0b:53:14:7e:98:65:e1:05:2d:
75:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:44:22:87:D1:2A:75:B7:8A:64:F3:16:BF:87:06:B5:39:71:AC:36
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/aUQih9EqdbeKZPMWv4cGtTlxrDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.47.0/24
46.34.51.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:2b:04:7c:e5:3f:bd:ac:f7:26:aa:e9:ae:63:04:1d:3b:90:
3c:f9:6b:0c:7a:09:ca:d9:95:6c:ba:f3:b6:ef:45:ac:15:5e:
b9:d2:b7:9d:00:aa:28:57:c5:ab:d3:95:ac:fd:73:b9:eb:2a:
2a:a4:c2:e1:db:34:b8:03:c6:ce:a2:b6:84:2e:63:70:00:dd:
1b:0a:32:23:11:b5:ab:f3:5b:f7:03:c3:66:1d:78:2c:4e:45:
75:6d:42:e3:17:fc:fc:5f:5c:d6:e6:86:a4:0e:5c:76:ac:d5:
e0:9a:6d:2f:8d:2e:1c:2f:63:cd:5e:ed:6f:fe:37:a8:21:dd:
90:e4:cd:ad:d8:27:6a:bc:74:0a:d3:d7:c1:db:da:69:3c:d9:
0b:eb:d0:f7:2b:39:51:72:f7:1b:ac:97:69:87:f1:24:76:58:
9e:7e:7f:93:49:95:3a:34:bc:6d:1d:71:d1:b1:84:32:c7:33:
18:4b:8a:77:fd:95:8c:3f:e4:73:90:74:13:69:ba:30:21:14:
66:51:74:b6:b7:8e:5c:68:c9:11:6f:99:d1:82:4c:b9:ab:54:
d2:41:b5:f4:c0:99:58:10:c8:7b:e9:d1:9c:b6:16:03:44:52:
91:93:ff:22:36:df:79:01:ec:46:33:be:80:c0:6b:63:b0:bb:
3b:c2:7a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org