Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/i97Lyf-nmn0h3o79wIvTh-rBihs.roa
File: i97Lyf-nmn0h3o79wIvTh-rBihs.roa (raw, json)
Hash identifier: UvPDdJRwoDykT44wcN2kpUcXw8Kuz1M7NU8za0V0Y5Y=
Subject key identifier: 8B:DE:CB:C9:FF:A7:9A:7D:21:DE:8E:FD:C0:8B:D3:87:EA:C1:8A:1B
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01894983A620812D61A350C7C11F4E480F87
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/i97Lyf-nmn0h3o79wIvTh-rBihs.roa
Signing time: Wed 12 Jul 2023 09:51:51 +0000
ROA not before: Wed 12 Jul 2023 09:51:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.38.0/24 maxlen: 24
46.34.36.0/24 maxlen: 24
46.34.32.0/22 maxlen: 22
46.34.44.0/24 maxlen: 24
46.34.42.0/23 maxlen: 23
46.34.40.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 10:51:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:83:a6:20:81:2d:61:a3:50:c7:c1:1f:4e:48:0f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jul 12 09:51:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bdecbc9ffa79a7d21de8efdc08bd387eac18a1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b5:85:50:7e:7c:9a:f3:75:9f:48:37:0c:60:
cc:24:8a:13:64:3d:62:c4:68:cd:2c:87:e4:5a:64:
2c:e4:dd:20:15:1a:ee:3a:55:d3:3d:56:2f:73:4f:
6e:13:6d:d7:ec:fd:fa:1c:da:f1:bf:85:a2:9c:ac:
45:79:91:71:32:86:38:00:d4:46:34:f9:ac:33:c9:
76:3d:0a:d8:68:54:a2:be:e5:a7:25:2f:cc:f8:94:
ed:fd:5d:15:c4:66:f7:23:32:b2:32:5c:b5:e9:b6:
79:f3:be:a8:00:59:fb:5f:40:f9:23:8f:c5:1d:53:
89:6a:af:ef:e4:7c:b5:3b:2e:52:ad:b2:aa:3c:33:
b0:e2:4e:74:77:fe:eb:d5:34:4e:de:19:dc:38:c5:
79:87:fb:f9:3a:78:5c:f7:4b:74:c7:23:3c:ae:26:
1b:69:6f:b1:3c:05:25:e4:ae:86:a5:b3:28:fc:0b:
71:e8:a4:df:8b:d6:45:c4:8e:8e:90:99:db:05:0e:
eb:27:0a:e8:3f:8e:1d:25:b8:0a:0b:a8:f9:fb:10:
bf:07:df:92:70:97:d4:0c:bc:91:99:8d:4a:61:dc:
d4:fe:99:0f:32:de:77:b1:c4:e5:92:0f:2e:6a:32:
63:5d:bc:3a:48:77:10:3d:ff:4a:70:41:c7:3f:36:
28:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DE:CB:C9:FF:A7:9A:7D:21:DE:8E:FD:C0:8B:D3:87:EA:C1:8A:1B
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/i97Lyf-nmn0h3o79wIvTh-rBihs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.38.0/24
46.34.40.0/24
46.34.42.0-46.34.44.255
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
59:6d:bd:af:01:2f:01:d2:c0:32:6f:6c:08:4a:67:6e:c0:21:
63:71:f4:cc:d1:65:df:77:e7:22:4f:41:31:2c:ba:db:52:61:
89:29:63:68:20:c4:96:cd:1c:f7:0a:7d:7b:af:45:23:32:24:
5d:90:43:c1:44:88:20:32:e5:8f:3e:64:3b:7f:83:86:37:2a:
05:df:68:56:1f:48:18:98:2e:54:78:dd:32:62:38:12:fc:e8:
1f:c9:00:66:e3:f5:35:81:c6:88:a3:ed:75:96:48:7b:f8:26:
f0:7d:f3:cf:10:e3:7c:09:cc:e1:04:50:fc:77:13:b7:e6:59:
05:77:dc:ac:de:e7:d1:3b:6a:5a:98:0b:0c:03:38:12:fb:e7:
9f:f9:f5:27:ad:90:03:26:b3:ba:3a:71:20:b5:74:13:7c:bd:
2b:9e:7c:f9:c5:50:5b:65:7a:b6:e1:fa:c4:a9:1b:da:38:f5:
95:bb:35:a0:d7:6b:63:7b:c7:ae:d6:0b:98:56:82:6d:5c:0f:
70:ec:77:92:89:4e:e8:f3:a7:d2:14:8c:de:d5:28:f0:d9:c5:
60:7d:8b:b5:ab:dd:3e:9e:a3:7d:48:77:5e:ba:da:8a:29:d7:
cc:91:c9:fc:ed:47:e0:e9:61:68:c7:9e:0f:cd:64:92:be:f5:
76:e0:cf:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org