Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/hcGYdMLvBGJKFt0R_4er3glDWLw.roa
File: hcGYdMLvBGJKFt0R_4er3glDWLw.roa (raw, json)
Hash identifier: RtCTND7TrLhcNXS8QXd70Xw/mbC4PG5S4NYMu0YeTtE=
Subject key identifier: 85:C1:98:74:C2:EF:04:62:4A:16:DD:11:FF:87:AB:DE:09:43:58:BC
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0189350C11682FECEDC876D0B1D8A329863E
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/hcGYdMLvBGJKFt0R_4er3glDWLw.roa
Signing time: Sat 08 Jul 2023 10:28:50 +0000
ROA not before: Sat 08 Jul 2023 10:28:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51722
IP address blocks: 46.34.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 15:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:35:0c:11:68:2f:ec:ed:c8:76:d0:b1:d8:a3:29:86:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jul 8 10:28:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85c19874c2ef04624a16dd11ff87abde094358bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:2c:0a:d3:9d:8c:a3:1c:bb:d7:c9:6b:75:
5b:e7:08:36:6f:54:72:a1:44:c8:99:76:32:74:10:
29:69:a8:67:33:08:64:df:65:ad:3e:1b:7c:0b:4b:
60:15:98:cc:8a:1d:0d:af:67:fc:c9:1d:70:00:15:
77:af:95:16:45:76:b6:2b:d0:4a:a5:fa:9c:41:b0:
eb:f6:ee:b1:72:8d:2c:0e:b9:6d:16:7e:72:9e:5e:
74:8d:35:e2:44:d8:b9:c7:de:31:af:b1:f4:55:43:
6c:62:53:be:da:34:05:f4:a0:7f:f0:7f:72:27:e3:
60:a0:ae:36:4d:cf:2f:e9:ef:5d:09:db:8d:f5:c8:
c2:9c:41:b9:d3:8c:c9:00:6f:45:25:a1:fc:dc:51:
37:07:66:11:00:5d:72:7e:71:a2:25:3e:0f:5e:3a:
7d:25:db:b3:0c:6b:d5:60:11:fb:bd:77:23:e2:3a:
fa:99:53:47:c0:49:6f:58:96:8a:ea:ff:7b:bb:92:
7e:23:4c:c6:a4:26:96:be:95:60:1b:d4:dd:35:3b:
8c:75:46:ad:76:ff:38:95:67:5e:b3:60:b1:d0:01:
a9:07:50:c2:2e:0f:7e:ec:0a:cc:bc:ea:d8:08:ca:
25:00:01:3f:c5:22:47:94:2a:e5:fa:cd:65:88:9f:
36:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C1:98:74:C2:EF:04:62:4A:16:DD:11:FF:87:AB:DE:09:43:58:BC
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/hcGYdMLvBGJKFt0R_4er3glDWLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.49.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:30:52:d5:51:13:d0:c3:17:d5:14:b9:82:ee:45:85:4b:92:
78:a3:5e:12:e4:3c:11:a6:79:86:e3:89:2a:da:4b:24:c1:a6:
2f:75:75:3d:79:96:24:c7:6b:80:0b:d0:4b:98:ff:25:35:12:
3b:c9:62:09:fa:09:b4:b3:0a:20:07:91:16:ce:33:e7:70:20:
0f:9d:7f:f0:b2:88:18:8c:d0:03:8c:6d:bb:16:8f:aa:15:ff:
3d:09:20:96:15:e5:c7:b4:54:3f:8b:dc:92:20:4d:8c:16:81:
fc:88:52:d6:55:75:4c:d3:c8:b9:8f:2d:e5:3f:23:ce:64:1a:
0b:3a:9a:4a:6d:9c:66:1e:8c:cb:42:73:ec:81:d2:20:65:7a:
d0:3b:6a:71:e0:41:b3:61:27:b6:e4:f3:99:d1:16:c6:2d:fd:
ea:bd:50:5f:4f:8b:f9:e6:31:f2:16:03:7b:c6:26:7a:ba:3e:
67:3b:26:fb:bf:51:ea:ed:e1:28:71:df:80:23:fc:80:a6:29:
90:8c:3a:af:f7:fc:5f:ec:15:1b:84:a2:7c:e0:b9:88:f9:85:
29:a4:8d:de:d3:26:b8:4b:da:77:34:98:dd:a6:91:10:94:53:
94:81:f3:a8:0e:b8:92:5c:c8:7a:b8:a2:32:51:9e:67:83:15:
bd:3d:3c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org