Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/xX5JinJipvJB8zzhxqOhVNdddwM.roa
File: xX5JinJipvJB8zzhxqOhVNdddwM.roa (raw, json)
Hash identifier: YyuevnzsSrVhG9nrTMhTY8FN1DlCP/BowpZAdFRbXPc=
Subject key identifier: C5:7E:49:8A:72:62:A6:F2:41:F3:3C:E1:C6:A3:A1:54:D7:5D:77:03
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0188DD3D57374016271BF0119553E5CE59C7
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/xX5JinJipvJB8zzhxqOhVNdddwM.roa
Signing time: Wed 21 Jun 2023 09:16:04 +0000
ROA not before: Wed 21 Jun 2023 09:16:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 46.34.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 08:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:3d:57:37:40:16:27:1b:f0:11:95:53:e5:ce:59:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jun 21 09:16:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c57e498a7262a6f241f33ce1c6a3a154d75d7703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:47:a7:0a:dc:25:09:1d:9e:a1:5c:70:9b:bc:
8a:bb:df:8d:d7:84:a7:3e:07:7a:aa:29:a4:ff:f1:
c3:bf:af:5c:bf:39:c9:d6:f8:cb:5d:5a:89:6a:b6:
96:f9:68:92:74:f0:14:6b:23:35:59:e0:3a:87:c6:
53:55:5c:36:31:6a:49:92:7c:2e:8f:7e:fa:41:68:
e8:4e:30:75:35:78:52:e8:ce:d9:2b:83:e3:1f:cf:
dc:1b:ff:db:a4:dc:62:38:d9:bd:88:57:31:b3:6e:
ca:86:9a:49:09:af:ba:06:52:ae:b4:87:44:00:b2:
2c:95:39:19:0f:71:08:15:37:0e:af:7f:9a:e6:23:
28:6e:d1:18:43:3b:7f:2c:5e:4b:4c:bc:f8:73:f6:
cc:8a:2c:30:3b:06:3a:27:d6:a8:d2:ed:7a:e7:8a:
d2:47:5c:46:aa:df:d9:f4:31:a7:14:e3:e6:50:bf:
71:e1:96:0f:30:0b:b5:10:13:7a:e4:6f:20:2e:7a:
a0:92:e8:27:99:48:04:fd:31:25:f2:4e:6b:f1:67:
82:1b:34:ed:97:82:94:79:11:04:90:0d:f5:bf:10:
c1:d8:84:ed:e4:2d:bb:a5:27:d1:86:5e:81:1d:3f:
7f:23:bc:f7:a7:42:0e:89:82:6a:3c:c1:2d:2c:4e:
08:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7E:49:8A:72:62:A6:F2:41:F3:3C:E1:C6:A3:A1:54:D7:5D:77:03
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/xX5JinJipvJB8zzhxqOhVNdddwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.45.0/24
Signature Algorithm: sha256WithRSAEncryption
11:eb:3d:84:6f:20:ff:e0:85:68:5d:52:80:0e:89:b9:d0:34:
14:fe:38:e3:f5:84:c0:46:a7:c0:ea:3a:d0:fd:16:43:e2:e1:
50:bb:5e:22:58:de:2a:4c:50:e2:4d:c1:c6:40:0f:77:9d:01:
96:54:88:87:d4:ad:58:8a:eb:84:37:5d:09:a5:d2:a3:ad:ca:
58:a3:22:5d:cd:31:79:7d:db:fa:6e:74:40:a8:e7:8d:f1:2d:
62:91:80:96:3f:1c:48:4b:1f:01:6e:4b:28:bf:8e:84:52:0e:
1c:d3:09:57:87:21:e1:be:44:7f:f0:e4:fd:55:c9:17:94:b7:
5e:97:ce:ef:ad:a8:37:f7:3c:cd:2f:3a:28:63:33:86:60:3f:
7f:dd:48:45:0e:df:6b:16:6e:9c:a3:2a:e5:73:43:5f:7a:8b:
17:af:10:a3:8f:3f:ce:dd:18:fc:a0:8a:fa:b1:a5:cc:82:75:
ec:c5:b5:5a:ec:80:b0:01:20:8f:3f:7b:42:2d:2a:c3:de:bd:
48:b5:e1:b7:ee:b6:1d:16:51:fd:6e:cc:35:5c:ad:34:49:81:
9a:90:65:fe:08:a5:41:da:b2:8f:66:df:e1:cb:f2:00:ca:68:
cb:af:26:8f:a5:80:81:cf:fc:db:26:5a:8c:af:05:ee:70:9c:
bb:61:c3:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org