Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/whyjkG2K5GSgu_hqkbWfBS7Hh3w.roa
File: whyjkG2K5GSgu_hqkbWfBS7Hh3w.roa (raw, json)
Hash identifier: icTBQTGHVmyBFrNuwmxRrZRkSYA4/PBHSbsW7nlh930=
Subject key identifier: C2:1C:A3:90:6D:8A:E4:64:A0:BB:F8:6A:91:B5:9F:05:2E:C7:87:7C
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01889AA36CEC48034FAEE269404C025DE9AD
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/whyjkG2K5GSgu_hqkbWfBS7Hh3w.roa
Signing time: Thu 08 Jun 2023 10:53:01 +0000
ROA not before: Thu 08 Jun 2023 10:53:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51722
IP address blocks: 46.34.38.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 21 Jun 2023 15:24:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:a3:6c:ec:48:03:4f:ae:e2:69:40:4c:02:5d:e9:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jun 8 10:53:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c21ca3906d8ae464a0bbf86a91b59f052ec7877c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:00:ec:e7:bc:81:51:98:3f:93:53:bc:7c:
af:70:ea:cd:1e:31:56:df:4f:e2:bd:fe:ed:49:c6:
64:55:dd:29:9f:ba:16:41:b7:38:0d:fd:ea:1c:d9:
7e:31:00:9f:c8:53:0f:4b:8a:c5:53:c4:da:87:9f:
d9:f8:cc:e6:b2:93:24:0b:37:42:27:e3:05:cd:1b:
8f:51:a6:f5:0f:4a:f1:0b:a7:51:a0:0b:b0:1a:64:
5f:4b:72:e8:e6:85:95:87:b7:17:dc:a5:70:14:67:
47:44:d4:c3:e4:bf:2e:d2:06:59:12:7e:3f:fc:72:
6c:89:d7:fb:74:4b:92:92:01:d2:a1:fe:57:08:86:
5b:e4:55:d1:65:8d:88:78:f6:7c:52:7a:a7:f1:a7:
21:83:4b:0c:0a:62:1c:3a:e6:22:70:99:c1:d3:ed:
b0:2a:d2:55:10:33:f7:84:11:59:ab:c7:88:d6:6a:
f7:a0:19:b3:1f:7d:3c:41:89:c4:a7:d5:3f:a0:62:
e9:e1:a8:30:9d:25:4d:21:7b:80:12:5f:b7:28:70:
4b:1e:26:14:8e:9a:78:ab:62:2d:be:80:a4:57:59:
2f:38:85:40:b6:a3:6b:b9:15:ef:be:56:11:b9:ed:
19:5b:5f:9d:8c:35:6e:a2:62:e9:18:35:ea:8d:99:
28:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:1C:A3:90:6D:8A:E4:64:A0:BB:F8:6A:91:B5:9F:05:2E:C7:87:7C
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/whyjkG2K5GSgu_hqkbWfBS7Hh3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.38.0/23
Signature Algorithm: sha256WithRSAEncryption
52:d3:f6:68:fd:43:b1:fb:b6:97:81:cb:35:f9:d7:74:de:bc:
83:85:cb:fe:77:f0:ee:63:f8:69:27:53:9f:22:34:aa:26:57:
91:92:56:76:fc:e7:a2:e2:fe:e8:b6:8d:41:80:32:6b:bf:6f:
dc:65:19:5d:aa:2b:8f:e9:d4:94:ac:78:65:38:ea:27:56:74:
b4:18:36:aa:8f:60:e7:96:d4:7f:d2:b1:92:5f:fa:8e:9a:9b:
0b:e6:3b:4d:34:f4:1e:06:c9:b4:3c:6f:93:4b:3f:24:eb:8b:
e3:0f:7d:03:b7:b9:3e:cb:47:6c:bf:8e:84:c4:5a:c5:93:d4:
54:cb:ba:16:1e:8e:66:1b:ed:8a:5b:38:24:77:1a:93:68:73:
7d:e8:3b:7f:f6:ff:fe:f1:06:cd:92:16:9b:81:16:64:75:41:
9e:2e:9d:51:c8:58:de:73:0a:23:71:2a:84:7d:15:ae:98:64:
48:f7:a0:32:c2:82:b1:98:3b:43:ee:db:6f:6b:ca:87:2c:fb:
92:89:4c:dc:59:12:da:93:05:88:9b:d6:7d:bb:4f:1d:01:c0:
3b:41:63:ba:6e:ce:3c:28:e5:67:52:50:c0:d7:81:ab:28:87:
c8:dd:c2:58:29:f6:1a:95:8a:4a:4c:43:fd:a1:46:39:45:8d:
d8:6e:34:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org