Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/izXdJ0IxQyvlI35uPmbJPtMmk6E.roa
File: izXdJ0IxQyvlI35uPmbJPtMmk6E.roa (raw, json)
Hash identifier: aVyt6D4UeQkvgpsGuSdKSNpVkQubAGuoBqDrC6ml2sQ=
Subject key identifier: 8B:35:DD:27:42:31:43:2B:E5:23:7E:6E:3E:66:C9:3E:D3:26:93:A1
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018ACC6C80236B651D9EE8968EED3AF403C9
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/izXdJ0IxQyvlI35uPmbJPtMmk6E.roa
Signing time: Mon 25 Sep 2023 12:59:37 +0000
ROA not before: Mon 25 Sep 2023 12:59:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399045
IP address blocks: 46.34.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:6c:80:23:6b:65:1d:9e:e8:96:8e:ed:3a:f4:03:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 25 12:59:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b35dd274231432be5237e6e3e66c93ed32693a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5f:c9:26:2d:2d:39:61:aa:74:5e:9d:03:78:
13:77:e4:19:3f:c7:35:45:73:a1:db:06:7e:96:00:
37:96:7f:ea:82:b6:c9:73:3c:1c:84:29:e0:8f:a1:
d0:d9:98:1e:71:10:57:37:f6:2b:63:da:cd:69:58:
78:91:85:fc:a4:f3:94:40:98:bd:e3:cc:1c:7c:fb:
03:23:f6:33:64:85:66:0c:37:1c:3d:68:c6:6e:dc:
1e:76:ee:7b:e7:32:fa:d0:41:1f:8a:77:8d:43:46:
dc:09:c9:c2:3d:40:2f:c8:17:b7:3c:c6:f8:0d:c0:
56:86:64:c4:41:44:95:59:3d:bf:15:2f:05:41:91:
83:bc:d5:1e:31:88:f0:5a:9e:5d:76:2d:6f:b6:81:
10:9f:a9:9c:58:e9:59:cd:11:bc:07:f1:97:d0:1a:
ea:4c:39:a8:11:10:62:b6:40:77:25:6d:9e:a5:54:
eb:e9:3d:0f:41:72:17:11:3b:45:3e:a3:a1:c5:ad:
64:92:03:fa:23:55:8a:82:ca:c1:44:79:fa:99:5a:
37:86:9a:7b:72:fc:bb:78:bf:f1:06:0a:44:dd:da:
f7:de:a0:2e:de:1e:96:09:51:9e:16:fc:f2:91:dc:
c0:b2:3d:8b:bb:58:54:00:ec:a0:e2:d8:2e:24:d2:
46:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:DD:27:42:31:43:2B:E5:23:7E:6E:3E:66:C9:3E:D3:26:93:A1
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/izXdJ0IxQyvlI35uPmbJPtMmk6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e9:ca:91:15:cc:4e:5e:71:da:ad:6e:e6:56:f4:74:c6:88:
22:af:02:8a:68:d7:1c:97:27:12:14:0c:31:9e:0a:90:19:99:
b3:69:f0:d0:31:fe:8b:05:ac:1e:01:81:5f:8f:96:2e:1f:b1:
73:64:19:dc:a6:00:be:a5:ea:f0:5b:bf:c4:ce:ff:a4:ae:6c:
f9:2e:22:4b:fd:21:83:e1:16:12:bc:48:0f:57:c1:63:9c:8e:
29:a7:fa:1f:2e:e4:81:66:52:b4:5a:5c:1e:d7:38:23:6d:e3:
99:33:87:88:80:8a:77:4c:7c:29:18:1e:b7:30:65:fd:61:8c:
3f:53:ac:ed:c5:d8:17:c0:cf:75:ae:06:97:c4:df:a0:70:3e:
51:5e:57:d4:16:b6:fe:2c:33:9c:de:9b:73:e8:1c:70:fe:5b:
88:a6:20:a5:00:af:cd:f6:59:ee:7c:21:59:73:4a:f0:0a:1a:
78:ac:7a:7b:fa:fd:7f:da:af:bd:5d:36:52:db:3b:36:90:8c:
3d:23:f5:f8:b2:e3:08:44:68:d7:b3:8a:30:2d:49:86:e7:e7:
a8:e7:c2:62:3e:62:73:62:dd:78:ae:eb:db:52:19:89:49:58:
21:e9:70:ca:b6:40:f9:59:eb:be:26:de:1b:38:61:4b:ba:1a:
99:9a:0b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org