Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/oLUrM662Z31zIICUY_jCsRwE4nQ.roa
File: oLUrM662Z31zIICUY_jCsRwE4nQ.roa (raw, json)
Hash identifier: a88C0Pg+8ICZ3I+qrwIK3RD44/S/ACrUpBDI9R8F1XI=
Subject key identifier: A0:B5:2B:33:AE:B6:67:7D:73:20:80:94:63:F8:C2:B1:1C:04:E2:74
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018CC9BBF712C05A0714B7334337A6368E0E
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/oLUrM662Z31zIICUY_jCsRwE4nQ.roa
Signing time: Tue 02 Jan 2024 10:33:08 +0000
ROA not before: Tue 02 Jan 2024 10:33:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215906
IP address blocks: 46.34.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 09:25:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:f7:12:c0:5a:07:14:b7:33:43:37:a6:36:8e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jan 2 10:33:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0b52b33aeb6677d7320809463f8c2b11c04e274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:c7:84:52:76:5d:33:1e:a7:af:6c:3d:ca:
05:31:ef:4f:09:ee:8d:d1:54:88:af:44:2e:31:36:
c6:a3:ca:ce:79:6d:04:fb:ab:86:2a:27:2c:71:78:
2a:96:60:ed:b8:4a:b0:2f:62:5d:ab:c5:cb:12:31:
17:a5:67:fb:fb:62:73:f1:1c:c5:ec:34:c4:4f:70:
ef:bb:70:8b:d6:8c:86:7d:60:6d:75:68:86:42:f5:
76:9d:6b:75:98:b6:66:3e:53:a3:2f:87:80:2d:3c:
b4:19:9c:34:8b:8c:2b:e0:04:1b:45:eb:1b:cc:6e:
3e:29:92:c8:79:85:0d:df:95:3e:2d:0c:25:65:f9:
86:2e:3f:7a:fd:9a:92:0a:af:77:9c:54:ba:8d:35:
84:d7:0a:a9:a9:ac:fc:a5:be:a4:a1:94:de:8d:00:
da:0e:03:07:89:77:30:16:38:65:5e:af:28:b7:73:
68:19:94:8e:d1:a8:a6:37:d9:49:b9:4b:f4:71:ca:
e7:98:31:fb:16:f7:27:f6:ed:e8:b1:e5:aa:29:18:
a3:1c:b8:24:c1:17:87:28:b0:47:89:f2:2d:aa:6e:
30:eb:69:cf:c0:06:2d:51:72:25:fb:9f:a0:9f:ea:
3f:bb:52:1d:34:4f:12:04:40:11:9b:30:cc:56:36:
b3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B5:2B:33:AE:B6:67:7D:73:20:80:94:63:F8:C2:B1:1C:04:E2:74
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/oLUrM662Z31zIICUY_jCsRwE4nQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.62.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:44:6b:3b:9e:25:75:44:3f:41:04:75:46:ac:c1:ac:a5:ef:
6a:98:16:3f:ec:8c:49:ca:ff:59:52:08:dd:d4:f1:eb:e9:b2:
e7:1e:08:b3:51:ea:18:93:dd:93:27:a8:46:f0:2b:9b:d4:48:
09:3f:08:de:d9:64:86:7e:12:71:01:5c:a4:b8:a0:8c:39:06:
04:0e:3e:8b:40:45:c3:74:2c:a8:65:dd:5d:8f:9f:6e:82:b3:
91:67:78:d7:a6:a8:3c:9c:fb:c2:fa:f4:d3:08:5c:4f:46:4a:
9a:1c:6d:34:83:f8:88:e2:c7:24:e8:fa:f7:6d:ba:b6:e1:e2:
f9:ec:ef:c1:c8:4e:d4:97:a9:fa:bf:e1:12:f8:86:ad:9a:a5:
68:f3:17:6d:65:e1:0e:ec:82:4d:f1:93:21:05:ac:58:6f:5f:
a9:b9:17:3b:3c:f2:3c:bd:47:99:ae:d5:37:77:b5:71:60:f8:
c0:31:c1:83:b1:9d:fb:56:c5:2a:60:51:1a:e3:55:b6:90:10:
d0:50:8c:06:4f:a4:77:db:ce:44:48:09:a3:b3:5f:c6:c3:ae:
09:67:8c:b1:3f:88:44:c1:c3:5e:7f:6b:35:1e:8e:a4:b1:fe:
3b:8e:f7:91:ef:a9:57:cb:70:71:35:55:ba:00:aa:84:9f:01:
61:0e:35:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJu/cSwFoHFLczQzemNo4OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjQwMTAyMTAzMzA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGI1MmIzM2FlYjY2NzdkNzMyMDgwOTQ2M2Y4YzJiMTFjMDRlMjc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPjHhFJ2XTMep69sPcoFMe9PCe6N
0VSIr0QuMTbGo8rOeW0E+6uGKicscXgqlmDtuEqwL2Jdq8XLEjEXpWf7+2Jz8RzF
7DTET3Dvu3CL1oyGfWBtdWiGQvV2nWt1mLZmPlOjL4eALTy0GZw0i4wr4AQbResb
zG4+KZLIeYUN35U+LQwlZfmGLj96/ZqSCq93nFS6jTWE1wqpqaz8pb6koZTejQDa
DgMHiXcwFjhlXq8ot3NoGZSO0aimN9lJuUv0ccrnmDH7Fvcn9u3oseWqKRijHLgk
wReHKLBHifItqm4w62nPwAYtUXIl+5+gn+o/u1IdNE8SBEARmzDMVjazlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKC1KzOutmd9cyCAlGP4wrEcBOJ0MB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvb0xVck02NjJaMzF6SUlDVVlfakNzUndFNG5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiI+MA0G
CSqGSIb3DQEBCwUAA4IBAQAtRGs7niV1RD9BBHVGrMGspe9qmBY/7IxJyv9ZUgjd
1PHr6bLnHgizUeoYk92TJ6hG8Cub1EgJPwje2WSGfhJxAVykuKCMOQYEDj6LQEXD
dCyoZd1dj59ugrORZ3jXpqg8nPvC+vTTCFxPRkqaHG00g/iI4sck6Pr3bbq24eL5
7O/ByE7Ul6n6v+ES+IatmqVo8xdtZeEO7IJN8ZMhBaxYb1+puRc7PPI8vUeZrtU3
d7VxYPjAMcGDsZ37VsUqYFEa41W2kBDQUIwGT6R3285ESAmjs1/Gw64JZ4yxP4hE
wcNef2s1Ho6ksf47jveR76lXy3BxNVW6AKqEnwFhDjXn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org