Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/qIzHWBzpQr5nealk-W487nLCVMQ.roa
File: qIzHWBzpQr5nealk-W487nLCVMQ.roa (raw, json)
Hash identifier: KrAYVGTW2Y5zckOK3xj1JQXkYR5DQVxyaCqerZLsES4=
Subject key identifier: A8:8C:C7:58:1C:E9:42:BE:67:79:A9:64:F9:6E:3C:EE:72:C2:54:C4
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018B65CD50AD0EB135CFEC8989E98AEE5910
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/qIzHWBzpQr5nealk-W487nLCVMQ.roa
Signing time: Wed 25 Oct 2023 07:47:16 +0000
ROA not before: Wed 25 Oct 2023 07:47:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 46.34.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 07:19:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:cd:50:ad:0e:b1:35:cf:ec:89:89:e9:8a:ee:59:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Oct 25 07:47:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a88cc7581ce942be6779a964f96e3cee72c254c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:29:e1:be:56:37:f0:79:f4:de:e4:22:0e:f1:
b0:ef:ed:d8:a0:f5:20:3b:11:05:6d:5b:33:42:e6:
41:1a:7e:30:92:5c:e7:c3:91:a9:89:48:71:5c:aa:
5a:9a:44:6b:62:38:e2:46:d8:71:e7:7f:37:0e:f2:
78:fc:9d:7f:fd:4e:fb:60:56:8a:0e:e0:20:4d:24:
0a:84:84:32:6e:09:3c:50:8a:f3:70:47:17:b2:f5:
fb:d9:96:a3:44:09:2a:a7:3a:79:e9:17:1f:96:0c:
2e:98:11:c0:aa:aa:a9:1a:72:8b:42:19:98:0b:99:
44:0a:e4:ab:8c:ea:69:ea:9c:0f:37:93:e1:ee:d2:
08:cb:db:8c:e2:6b:8a:3f:18:b0:81:63:23:5f:b7:
b7:81:a5:61:0a:3e:5c:43:fb:ad:0b:b1:6b:5e:10:
c5:07:fc:b3:8c:be:89:d0:6c:26:03:c8:4a:f8:1b:
33:f6:05:dd:5d:c8:3c:9e:20:c9:ab:84:41:2a:3a:
2e:a6:a9:cd:07:8d:35:ce:29:01:fc:c3:d1:66:7d:
a8:2b:00:6a:80:ae:dd:78:fa:cc:b0:3a:76:39:d1:
12:c7:bc:97:91:2d:73:5d:f6:5e:0a:ba:03:2e:56:
67:5f:34:65:dc:4a:e6:33:84:15:24:f8:66:3e:ba:
9b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8C:C7:58:1C:E9:42:BE:67:79:A9:64:F9:6E:3C:EE:72:C2:54:C4
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/qIzHWBzpQr5nealk-W487nLCVMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.62.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:17:19:4a:66:5d:49:2a:50:ca:f9:94:5c:b2:a5:00:5d:d7:
a3:2e:48:26:00:60:6f:90:91:cb:1b:ac:db:b7:30:e2:4d:78:
54:a8:f6:ee:f0:57:19:60:a8:cb:32:e1:b7:99:40:68:e7:a5:
f9:45:c1:cc:ce:ef:3f:59:a2:4f:fc:76:2a:0b:1c:8c:68:3f:
0f:df:09:e2:e5:88:82:4b:2c:47:c3:ee:91:bd:17:eb:0d:05:
4d:ad:7b:a7:0b:e1:57:33:d3:4f:33:1f:95:80:df:ff:d9:ef:
12:12:00:2e:94:4d:a7:db:d4:43:f6:03:11:1f:00:69:8f:39:
4e:8a:e7:93:10:1c:3d:46:d6:1d:7e:ec:c5:67:f3:eb:6f:32:
5c:c2:4c:44:e8:88:9f:8b:61:05:21:17:fb:97:b3:a3:bd:9a:
f1:bf:1f:06:de:02:c4:9d:c7:34:01:e3:02:5a:d4:9b:5e:dc:
ca:46:47:5d:41:f1:d7:44:d9:49:19:d9:b1:14:ad:5f:ff:59:
9f:f4:b5:02:1f:d4:0a:83:cb:ad:d7:d2:07:70:3d:14:32:18:
db:72:7e:4a:f1:c2:7e:ac:20:4d:67:ef:80:9f:1e:c6:37:db:
08:22:e8:90:69:15:43:8b:f5:b1:2a:8d:cb:a1:88:25:c1:23:
cc:bb:6b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org