Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/eXRVW77tg3f-nq-vu1elh2gbmKA.roa
File: eXRVW77tg3f-nq-vu1elh2gbmKA.roa (raw, json)
Hash identifier: nqCdED8ouq5njIqu6w9EDbLGmtw+wK2BTK2YNXFRpjQ=
Subject key identifier: 79:74:55:5B:BE:ED:83:77:FE:9E:AF:AF:BB:57:A5:87:68:1B:98:A0
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01894929056D364D49A7098463D7F9610962
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/eXRVW77tg3f-nq-vu1elh2gbmKA.roa
Signing time: Wed 12 Jul 2023 08:12:52 +0000
ROA not before: Wed 12 Jul 2023 08:12:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198802
IP address blocks: 46.34.41.0/24 maxlen: 24
46.34.58.0/24 maxlen: 24
46.34.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 08:55:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:29:05:6d:36:4d:49:a7:09:84:63:d7:f9:61:09:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jul 12 08:12:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7974555bbeed8377fe9eafafbb57a587681b98a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1e:df:10:80:60:72:a0:5a:1d:fb:c6:10:d2:
46:f3:76:6f:cc:88:74:1d:9c:b6:ce:53:20:fd:85:
08:19:af:61:fb:28:36:c6:25:0c:2e:3a:19:57:b7:
7c:55:ec:69:6b:48:98:9f:d2:5f:4e:88:51:45:86:
f2:1a:06:3e:f0:3a:68:78:ef:54:c2:b5:12:a2:6f:
15:90:ea:d2:bf:9b:95:cf:c4:15:25:30:41:15:ef:
87:13:9b:fc:cb:cf:d3:b9:b7:d0:5b:c3:84:6e:b1:
f2:83:47:85:f6:a3:bd:f6:a4:2a:12:13:6f:72:47:
9e:3e:e8:da:c7:5d:49:4a:c8:e6:64:06:14:c1:90:
7e:46:78:f2:f6:e4:fc:f1:71:5d:64:ee:c2:0c:24:
05:3c:32:42:5d:78:66:28:c4:bc:6c:cd:df:ec:0f:
fb:6d:70:4e:c1:76:a0:9e:13:55:2c:99:f1:8c:82:
36:87:1a:4e:c6:f6:b7:39:2e:d2:c0:e0:bb:62:c6:
e6:1e:ef:dd:4f:81:3c:50:27:be:bc:5f:44:a6:f3:
ab:64:a9:e0:78:2c:7f:67:14:36:c9:df:c7:fc:c9:
98:5c:98:66:70:b3:40:ef:59:b3:28:32:6a:ae:60:
d3:ab:8e:f0:c5:54:d5:47:61:97:f0:46:03:cc:50:
b0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:74:55:5B:BE:ED:83:77:FE:9E:AF:AF:BB:57:A5:87:68:1B:98:A0
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/eXRVW77tg3f-nq-vu1elh2gbmKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.41.0/24
46.34.58.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:e7:db:95:cc:f9:5a:25:e1:4e:79:51:ef:43:c0:29:e8:c6:
06:28:b9:20:60:ae:8e:06:be:2b:44:1b:bd:5a:a5:ca:a1:73:
1a:ed:41:7c:6c:46:fc:ef:cd:92:d6:ca:ae:c0:87:98:40:af:
ea:7e:d0:d4:e5:ab:4d:e2:f0:d2:f1:75:e1:99:78:6c:d7:bf:
e4:c0:f9:1c:e7:ca:56:cd:f3:1a:a1:39:a6:01:02:9a:dc:05:
ea:f4:2d:a0:0d:8c:83:ce:97:0e:2e:fb:e2:ab:d3:ce:4a:25:
47:88:cd:03:0e:9d:04:d2:88:64:cf:93:4d:2c:09:72:b1:11:
28:69:93:42:c6:05:9b:ce:fe:50:2c:d0:26:cb:66:c0:87:65:
ec:74:17:41:97:7b:48:6e:95:6f:b5:ad:16:f2:94:c2:76:de:
26:b8:b6:7b:0d:fe:3d:0c:df:e3:4f:c1:3f:92:68:0b:01:bf:
72:c3:99:ba:a8:2b:7a:a6:64:7c:e0:3f:ec:a6:1b:02:62:ed:
0c:a1:1d:33:fe:fe:59:0e:3e:3c:46:df:37:ea:e5:98:39:4e:
ca:ad:5e:8d:79:68:22:22:22:8e:d8:41:85:8e:6d:f0:38:cf:
d0:95:67:a0:e0:67:8b:d6:40:64:2d:87:fc:87:5c:82:98:9e:
83:89:34:e5
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYlJKQVtNk1JpwmEY9f5YQliMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjMwNzEyMDgxMjUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTc0NTU1YmJlZWQ4Mzc3ZmU5ZWFmYWZiYjU3YTU4NzY4MWI5OGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0B7fEIBgcqBaHfvGENJG83ZvzIh0
HZy2zlMg/YUIGa9h+yg2xiUMLjoZV7d8Vexpa0iYn9JfTohRRYbyGgY+8DpoeO9U
wrUSom8VkOrSv5uVz8QVJTBBFe+HE5v8y8/TubfQW8OEbrHyg0eF9qO99qQqEhNv
ckeePujax11JSsjmZAYUwZB+Rnjy9uT88XFdZO7CDCQFPDJCXXhmKMS8bM3f7A/7
bXBOwXagnhNVLJnxjII2hxpOxva3OS7SwOC7YsbmHu/dT4E8UCe+vF9EpvOrZKng
eCx/ZxQ2yd/H/MmYXJhmcLNA71mzKDJqrmDTq47wxVTVR2GX8EYDzFCwaQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHl0VVu+7YN3/p6vr7tXpYdoG5igMB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvZVhSVlc3N3RnM2YtbnEtdnUxZWxoMmdibUtBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALiIpAwQB
LiI6MA0GCSqGSIb3DQEBCwUAA4IBAQAL59uVzPlaJeFOeVHvQ8Ap6MYGKLkgYK6O
Br4rRBu9WqXKoXMa7UF8bEb8782S1squwIeYQK/qftDU5atN4vDS8XXhmXhs17/k
wPkc58pWzfMaoTmmAQKa3AXq9C2gDYyDzpcOLvviq9POSiVHiM0DDp0E0ohkz5NN
LAlysREoaZNCxgWbzv5QLNAmy2bAh2XsdBdBl3tIbpVvta0W8pTCdt4muLZ7Df49
DN/jT8E/kmgLAb9yw5m6qCt6pmR84D/sphsCYu0MoR0z/v5ZDj48Rt836uWYOU7K
rV6NeWgiIiKO2EGFjm3wOM/QlWeg4GeL1kBkLYf8h1yCmJ6DiTTl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org