Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/q0JYjmZGF0li5XW_tZmhkc531Ic.roa
File: q0JYjmZGF0li5XW_tZmhkc531Ic.roa (raw, json)
Hash identifier: 7Q/QwBqnbjUrvyH1koYSzdwHhjqIgtzwOxtxNv8song=
Subject key identifier: AB:42:58:8E:66:46:17:49:62:E5:75:BF:B5:99:A1:91:CE:77:D4:87
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018A851043DD91EFA668D5E06D9FBF56A540
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/q0JYjmZGF0li5XW_tZmhkc531Ic.roa
Signing time: Mon 11 Sep 2023 16:25:50 +0000
ROA not before: Mon 11 Sep 2023 16:25:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.36.0/24 maxlen: 24
46.34.32.0/22 maxlen: 22
46.34.40.0/24 maxlen: 24
46.34.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 12:47:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:85:10:43:dd:91:ef:a6:68:d5:e0:6d:9f:bf:56:a5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 11 16:25:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab42588e6646174962e575bfb599a191ce77d487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2f:25:48:6c:e1:54:cd:73:0f:ab:a1:06:a6:
47:ce:36:b3:86:72:86:68:ef:53:12:ac:9e:9c:2b:
43:8e:fb:63:22:4b:a1:78:52:ff:74:64:50:c4:80:
60:a0:ed:b6:38:96:f9:57:38:42:62:3c:3d:61:55:
8f:3b:f2:c1:82:35:95:43:cc:a8:be:9b:a1:61:cc:
75:83:61:8f:ba:c6:fe:f1:00:7f:e8:ba:f1:39:9d:
bf:06:e9:6d:d3:bf:45:10:e7:5d:f0:72:e8:4b:cc:
ca:24:95:4c:f9:3f:de:c6:f1:29:d2:70:07:7d:20:
c0:56:60:d6:3a:88:b5:ce:2c:ee:77:af:66:41:be:
5b:5e:c4:8b:e7:47:31:ff:b4:c7:2c:e0:d8:9d:18:
da:a2:45:04:11:55:08:67:f3:f0:27:50:14:bc:62:
28:a8:b4:64:5f:d9:fd:e3:27:46:7b:0c:0d:0a:6a:
f5:df:19:d5:a7:94:e1:3e:93:89:48:59:45:a9:99:
02:6a:77:4d:58:7e:9d:72:34:25:99:60:a8:5e:ef:
a8:4d:d7:0d:ab:1f:b7:b8:fa:a7:a1:ce:89:10:91:
8c:4b:d8:a5:f4:95:32:03:1e:c7:fa:20:bd:29:b9:
89:93:a1:4e:5c:63:fa:a9:6f:98:26:32:c4:a6:33:
06:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:42:58:8E:66:46:17:49:62:E5:75:BF:B5:99:A1:91:CE:77:D4:87
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/q0JYjmZGF0li5XW_tZmhkc531Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.36.255
46.34.40.0/24
46.34.63.0/24
Signature Algorithm: sha256WithRSAEncryption
77:db:70:29:cd:3f:da:58:e9:cf:5f:02:d4:9a:d6:9a:ef:f4:
1a:65:62:5a:14:87:fb:15:6a:1d:b1:38:35:11:78:81:f0:d3:
0c:1b:a0:9d:ef:be:51:18:39:60:59:1c:1e:88:3d:05:7f:8e:
44:4d:49:5b:3e:a7:58:41:ad:c3:e1:74:48:f1:65:7a:dd:fe:
3b:13:25:f9:71:c6:4e:b2:7f:97:48:e0:10:2f:fd:cb:4c:66:
7a:16:9c:dc:ff:52:7a:50:73:b3:9c:8a:0e:b3:e2:38:b4:b3:
f7:2e:cf:be:fa:0c:10:fa:57:21:79:2a:e8:6b:b1:84:96:44:
20:45:1f:7e:d5:74:fb:21:06:19:8c:8f:76:c7:48:7d:07:a4:
d2:10:4d:ca:01:0c:cb:13:e3:54:59:e6:98:6d:6d:2e:ac:a2:
c2:ae:23:cc:41:9a:49:4e:00:a7:29:31:d0:89:14:8c:9c:67:
4e:be:08:b1:eb:be:1d:45:7f:66:35:7b:a3:f7:7a:29:22:27:
25:0d:da:3e:b1:a6:c9:ac:54:d2:f2:ac:78:7e:de:d6:b4:cc:
6a:15:5a:e1:ba:fa:f9:fa:00:d9:50:f1:9d:84:32:76:64:69:
c9:b6:51:16:b3:e7:2f:1d:a4:14:9e:8f:04:e8:e8:a8:3d:a2:
d5:0b:96:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org