Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/sqxhxvEd3uN9Oh9S9l9p1gXmDvI.roa
File: sqxhxvEd3uN9Oh9S9l9p1gXmDvI.roa (raw, json)
Hash identifier: 0/cjaQ2dQRJo0zg0XCIicnEIiZeDncIgz8v41Y6kc2g=
Subject key identifier: B2:AC:61:C6:F1:1D:DE:E3:7D:3A:1F:52:F6:5F:69:D6:05:E6:0E:F2
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0186C8B24B72431055ACCE93596F17340EED
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/sqxhxvEd3uN9Oh9S9l9p1gXmDvI.roa
Signing time: Thu 09 Mar 2023 23:26:13 +0000
ROA not before: Thu 09 Mar 2023 23:26:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 46.34.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 15:56:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c8:b2:4b:72:43:10:55:ac:ce:93:59:6f:17:34:0e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 9 23:26:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2ac61c6f11ddee37d3a1f52f65f69d605e60ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:38:29:f4:e4:08:f8:4b:2f:0b:7c:36:1c:3e:
1b:a4:c2:20:3e:ad:2f:0f:6a:43:95:05:74:14:02:
1e:07:0e:19:cd:4c:76:e4:bc:65:7d:14:cf:0c:b2:
e9:3f:35:8f:3f:5d:ef:d6:f3:32:de:e2:40:4f:9d:
a1:64:87:8c:e4:ea:e7:bc:a8:13:85:72:88:18:25:
11:9c:56:c0:11:48:65:2a:f9:a1:99:35:c2:f6:d1:
d4:15:b7:dc:08:cf:e1:aa:70:cf:e3:69:8a:fe:19:
18:1c:73:52:41:d9:7d:41:3e:5a:9b:29:f1:a0:7b:
48:aa:57:16:d2:1a:3f:ab:df:7d:35:4e:b5:e5:0b:
01:8d:59:f8:bd:d3:32:c2:77:78:1a:33:43:09:64:
09:28:a5:16:8d:4b:6b:ef:53:6a:01:59:15:f4:a4:
a0:18:51:da:e1:05:e9:1e:cb:a5:6f:5e:68:48:ac:
18:f5:3b:22:e2:72:2f:6b:22:a3:aa:f7:00:5a:0c:
21:81:f7:e8:c7:90:d1:6d:89:8f:bb:63:a8:49:a9:
e8:3d:6e:06:30:6f:d6:fa:b8:5a:df:64:61:05:43:
39:03:35:f9:98:ae:98:af:b3:05:ed:75:39:24:a7:
9f:6e:bc:f6:0d:52:08:e6:19:55:f7:3f:0a:7b:0e:
00:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AC:61:C6:F1:1D:DE:E3:7D:3A:1F:52:F6:5F:69:D6:05:E6:0E:F2
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/sqxhxvEd3uN9Oh9S9l9p1gXmDvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.45.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:3e:f8:16:b8:c4:57:b7:54:29:05:14:5b:d3:55:65:d9:b7:
34:a8:e6:0d:9e:9a:00:3f:a5:74:32:a2:2e:5d:4b:f3:92:97:
e0:09:86:e4:0c:92:1b:f6:83:d6:74:9f:98:43:3c:d3:30:7c:
cb:17:af:85:33:1b:d3:9e:45:a3:25:12:27:2a:1e:d8:6c:65:
68:cf:98:1e:f0:0a:f5:0b:78:17:a7:b6:f4:1c:26:36:b0:13:
37:76:a1:df:01:88:b4:dc:95:da:5a:e5:d7:3e:cf:6d:e3:c0:
f5:9e:7a:23:86:b2:84:cd:3f:dd:ab:db:6b:a2:b4:c3:9e:9f:
65:71:9b:b9:c0:7d:c3:da:03:a8:fe:29:ac:7c:67:57:df:2f:
35:fe:9d:71:b8:39:8d:18:7e:e3:b1:1b:4a:96:6b:df:b2:db:
74:89:81:1b:96:01:e7:4d:ba:7a:46:ef:34:e5:27:81:df:c0:
e8:a4:d7:f6:2b:2a:c2:b2:a5:9a:d3:95:c4:45:9d:ec:18:03:
55:cf:82:24:8c:4c:3b:e9:07:42:f7:6c:7e:67:c1:2c:ac:4a:
33:25:d3:2e:67:d6:f0:2c:21:07:38:5e:35:8c:d1:2f:bf:91:
4b:1a:f5:21:53:c3:39:48:d1:af:af:09:55:d0:d1:09:a2:e1:
08:e1:74:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org