Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/uy9dG9taIfnLMoE8V04ChUBAkDk.roa
File: uy9dG9taIfnLMoE8V04ChUBAkDk.roa (raw, json)
Hash identifier: dhPJjGiVJj07zjpHGtcEVFpQM7wdVPyXD54sv6cy7zo=
Subject key identifier: BB:2F:5D:1B:DB:5A:21:F9:CB:32:81:3C:57:4E:02:85:40:40:90:39
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018A0EC326A8C43EDBD283254C408C74E1DF
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/uy9dG9taIfnLMoE8V04ChUBAkDk.roa
Signing time: Sat 19 Aug 2023 17:06:24 +0000
ROA not before: Sat 19 Aug 2023 17:06:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207590
IP address blocks: 46.34.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:0e:c3:26:a8:c4:3e:db:d2:83:25:4c:40:8c:74:e1:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Aug 19 17:06:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb2f5d1bdb5a21f9cb32813c574e028540409039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:bc:d6:d0:3e:ca:c8:2a:d8:42:96:ca:a9:
3a:b8:a7:7c:01:76:8a:af:c6:6f:2c:34:70:20:17:
8a:07:e2:9b:3b:c9:b3:3c:02:a5:de:6e:c4:7e:d1:
83:79:7c:d3:99:8a:da:f6:dc:da:8b:81:31:10:3f:
96:76:4f:73:66:4d:78:6a:0b:af:ca:c2:6d:5c:69:
fe:47:c4:29:53:07:29:40:f3:db:78:51:c5:3f:70:
25:59:3a:26:d3:f2:55:a7:62:84:4e:95:7d:88:3f:
fe:47:17:54:cc:5f:2f:a4:5d:0a:a0:8a:b4:7f:fc:
cc:3a:d1:56:8a:61:7b:c3:fd:bd:49:6f:f0:f6:7b:
79:8a:bc:29:7e:19:ce:9c:4c:88:9d:f6:3b:1d:a2:
b4:05:d0:b1:26:5f:e3:24:90:15:c8:09:c0:80:46:
82:38:e1:be:51:58:3e:f2:ca:83:20:e7:17:a8:9e:
a0:26:89:fe:05:2d:6c:01:6d:69:15:fc:77:82:cd:
ac:94:a6:51:ba:58:4b:80:32:6c:1e:72:72:a2:72:
47:43:22:36:b3:49:27:bb:0d:ee:b3:5a:f6:37:0f:
d9:12:c5:f8:a9:a3:30:cd:30:53:33:a7:c2:df:e4:
83:95:46:fd:b4:ae:9e:2b:f5:13:4d:05:c9:79:c1:
e6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2F:5D:1B:DB:5A:21:F9:CB:32:81:3C:57:4E:02:85:40:40:90:39
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/uy9dG9taIfnLMoE8V04ChUBAkDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.41.0/24
Signature Algorithm: sha256WithRSAEncryption
39:7a:eb:db:c5:b3:4a:54:e9:60:6b:89:42:1b:c1:55:af:ad:
4c:ab:16:e7:63:28:21:82:21:7b:23:22:16:cd:17:9b:d5:7e:
59:5e:35:3c:af:4e:81:fe:ce:39:ad:33:99:26:f4:27:11:f5:
f2:24:3b:62:f2:52:31:13:a7:12:91:5e:29:4c:6a:be:f0:ca:
43:dc:bd:4f:62:a9:e7:c0:c8:9a:35:6b:ec:7d:51:0e:51:75:
6a:a7:c7:90:97:d8:b8:b4:51:fd:a0:42:8f:2a:07:72:37:d8:
b8:83:67:45:4b:25:86:2c:d1:48:03:8c:39:ac:a3:09:95:00:
c0:73:62:28:0f:88:87:b9:1a:fa:81:fc:9d:68:15:d5:37:d0:
b3:d1:be:e6:0b:11:5c:55:07:ed:8c:d3:9b:86:20:bc:b6:97:
2f:66:e1:d4:22:3e:d3:42:28:8c:6f:62:7b:45:cf:73:6f:7f:
3f:70:66:59:8e:5f:a1:f4:8f:a0:12:74:a1:f1:72:b5:db:7a:
4d:fa:c0:0e:72:94:ef:a2:ba:ab:d2:bd:96:42:29:75:7e:03:
a2:c5:68:49:a0:f7:2c:65:36:fe:61:85:1b:dd:ed:63:7c:c2:
0b:7b:58:06:66:21:d8:29:03:d3:66:89:5d:41:4a:84:df:37:
51:3a:13:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org