Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/obIjGVBoTK-kcZWASC1Xo7CZkW8.roa
File: obIjGVBoTK-kcZWASC1Xo7CZkW8.roa (raw, json)
Hash identifier: ZW0+UzHr8Ci6XxdLr4+/xclGT9kjlbHajXz5gxauNoo=
Subject key identifier: A1:B2:23:19:50:68:4C:AF:A4:71:95:80:48:2D:57:A3:B0:99:91:6F
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01864AE6E429CB9D2F239CD5727141931A0B
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/obIjGVBoTK-kcZWASC1Xo7CZkW8.roa
Signing time: Mon 13 Feb 2023 13:11:31 +0000
ROA not before: Mon 13 Feb 2023 13:11:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 46.34.42.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 16 Feb 2023 14:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:e6:e4:29:cb:9d:2f:23:9c:d5:72:71:41:93:1a:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Feb 13 13:11:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1b2231950684cafa4719580482d57a3b099916f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:39:41:88:61:a0:a5:ef:b5:13:94:5e:96:c2:
b6:72:07:b5:bb:48:47:aa:04:aa:45:35:93:bd:9c:
d6:17:9d:2e:de:83:56:cd:29:25:e2:65:7f:85:48:
3c:2b:06:34:45:ef:57:1f:f4:80:bc:90:9a:79:fa:
0b:b0:6e:f0:3d:33:55:ad:76:93:9c:50:37:4c:d4:
3a:2e:65:69:bc:b7:70:2a:09:19:95:e2:13:2e:48:
cd:c5:a3:20:87:38:54:c7:79:26:d2:97:49:9b:d6:
42:01:28:79:6e:15:30:11:ae:a0:c3:e8:78:cf:f7:
90:0f:84:8c:ff:99:cb:95:1d:87:88:aa:4d:27:33:
ba:d7:d7:b0:6d:dd:9b:d1:d0:e1:c9:fb:a2:75:e5:
ec:76:ad:53:0c:d3:75:cb:e4:c7:66:8e:c0:28:b4:
b2:c7:35:03:a6:03:55:87:33:e2:1c:08:5c:1e:f6:
ff:fd:5b:c8:ca:86:dd:21:1e:bb:8a:a3:a8:39:7d:
87:43:f2:58:b2:e7:92:19:3c:7a:8e:b9:97:da:85:
a6:fa:a0:fb:a8:cd:c6:6d:38:6f:fd:dc:92:7d:e7:
31:04:e8:e4:21:53:9d:97:38:78:ce:5b:43:9b:fe:
16:07:c2:77:85:72:4b:fa:7c:d1:1a:f3:aa:6d:3b:
54:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B2:23:19:50:68:4C:AF:A4:71:95:80:48:2D:57:A3:B0:99:91:6F
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/obIjGVBoTK-kcZWASC1Xo7CZkW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.42.0/23
Signature Algorithm: sha256WithRSAEncryption
32:15:94:fb:9a:32:9d:70:46:4e:c1:a8:70:0b:41:08:d0:6c:
55:f7:e0:2a:f6:ce:70:af:86:ee:e1:8c:54:5f:12:1b:f3:80:
94:d3:91:0a:b2:2b:e8:7f:fc:ca:96:b9:fc:c9:ad:35:50:69:
40:4a:c7:10:f1:c6:4c:5a:65:a9:c8:fb:89:75:b5:56:88:04:
9b:f9:07:bc:10:a7:ab:2a:a8:11:20:d9:30:a2:60:df:6e:c5:
6b:01:6f:e9:0a:2f:53:b8:21:b4:b7:49:3d:03:0c:ef:41:e2:
29:7a:fb:25:61:b7:f8:af:98:72:0b:ee:36:9b:3e:2c:b4:b7:
00:06:7a:10:65:af:08:a8:ec:42:40:2c:b3:bc:5f:1b:39:84:
66:21:65:ae:cd:5b:23:55:70:1f:69:04:2d:6c:6b:1e:fe:e7:
db:89:7b:c2:0f:ae:a0:96:ca:c8:54:7a:df:6a:d8:43:1f:b3:
7f:56:a5:27:67:5b:f5:d5:67:34:be:07:02:8e:02:39:ca:9b:
cf:04:9d:da:f4:f9:30:99:a9:7c:f9:38:5f:30:29:a0:6d:a6:
42:25:58:d5:8b:dd:cf:2e:94:0b:40:13:da:c3:7e:f5:82:aa:
18:e2:ab:66:2a:58:bf:a7:a5:9d:7a:65:66:4a:80:e8:fb:cd:
3d:86:7e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org