Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/zdjyqHKEHGzx0vmLEWSOIZWt534.roa
File: zdjyqHKEHGzx0vmLEWSOIZWt534.roa (raw, json)
Hash identifier: aEr5I+zB9G6Sx5b4Nuv7Va0SwhliDD40NJEpOPrQr0Q=
Subject key identifier: CD:D8:F2:A8:72:84:1C:6C:F1:D2:F9:8B:11:64:8E:21:95:AD:E7:7E
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018BF236D49E12DA298E8D010689CB0AA110
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/zdjyqHKEHGzx0vmLEWSOIZWt534.roa
Signing time: Tue 21 Nov 2023 14:09:21 +0000
ROA not before: Tue 21 Nov 2023 14:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 46.34.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Nov 2023 10:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f2:36:d4:9e:12:da:29:8e:8d:01:06:89:cb:0a:a1:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Nov 21 14:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdd8f2a872841c6cf1d2f98b11648e2195ade77e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a9:c7:d6:03:6e:c0:a4:42:86:07:b2:0b:d6:
fc:c8:ee:2b:b0:ef:75:f8:8b:09:0f:f4:9e:fd:8e:
36:83:cd:24:74:84:fb:f1:ea:c8:cb:00:0c:c0:29:
32:d7:87:9c:28:b2:b9:ca:88:d9:6a:47:99:f7:f6:
c7:23:66:c3:14:46:1c:00:09:3c:dc:42:db:04:f0:
2d:18:a4:bb:ae:7d:1c:cc:ba:e4:4b:f9:e4:61:c8:
68:c6:c0:e4:e4:04:5f:b1:c9:25:e7:f5:12:15:3c:
be:02:79:85:de:0e:11:06:d5:60:7b:87:3e:03:77:
3e:49:17:87:1a:67:a0:57:1d:f4:55:87:43:a4:1f:
c9:32:cb:94:8f:d1:a3:eb:87:40:89:4f:74:f6:65:
94:72:74:0c:07:41:ca:a3:b7:8f:b9:64:c1:5b:99:
56:2c:94:fd:e9:f1:52:b2:05:c5:eb:3b:a0:35:25:
bd:f7:83:ec:2d:29:e5:e8:f6:85:24:03:4a:6d:5c:
e4:63:93:d1:b3:66:2a:1d:5f:7f:d4:24:98:de:0d:
6c:86:9f:8a:cf:5f:a2:3e:3c:16:cc:82:22:b6:ce:
19:f4:a7:b3:77:5a:8c:b3:ac:d8:ec:46:02:ae:f1:
6f:63:7a:5a:10:80:a6:45:b4:66:c4:2d:94:f1:5c:
f6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D8:F2:A8:72:84:1C:6C:F1:D2:F9:8B:11:64:8E:21:95:AD:E7:7E
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/zdjyqHKEHGzx0vmLEWSOIZWt534.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.60.0/24
Signature Algorithm: sha256WithRSAEncryption
42:9c:c9:56:fd:ae:b6:35:19:54:d4:dd:1c:43:f5:f2:78:0c:
1f:93:8b:b4:f7:e5:c0:a1:08:14:49:2d:07:30:e4:54:1e:e7:
1f:6a:dd:ca:9b:10:c5:1a:ad:58:19:9b:b7:aa:af:1e:73:e2:
a8:73:2d:0f:16:73:82:b2:53:6b:a8:ea:e6:e0:ab:26:0a:db:
0c:63:e0:b5:1b:cd:ef:46:cb:9c:63:52:d6:9c:78:f8:eb:89:
59:db:ff:3f:59:3e:bc:4b:46:72:a7:1d:59:f2:5e:6d:4a:9b:
19:6f:60:02:3d:db:7d:84:00:1d:b7:f4:3b:ef:0a:ab:d5:9e:
13:61:13:4b:ac:06:3f:d9:3d:00:14:e8:26:cb:86:5e:49:c4:
2f:aa:33:ee:e6:96:aa:77:07:62:5a:e6:fb:0b:b3:ca:39:9d:
3e:11:75:f8:e6:2f:32:04:98:c5:53:a3:37:d4:f7:87:ce:6d:
58:6d:fe:8c:26:da:7b:46:82:34:77:a4:f9:b7:21:05:76:44:
ff:2a:78:6e:b3:51:07:d0:8b:d4:ba:0f:31:4b:ea:b8:ad:14:
65:ac:53:c4:a7:c1:59:a5:dc:d6:7c:8b:46:32:90:2b:ba:68:
e5:fe:6d:75:f3:e7:2d:dc:65:7e:e7:7c:47:fd:79:46:7a:8a:
20:80:3c:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvyNtSeEtopjo0BBonLCqEQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjMxMTIxMTQwOTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGQ4ZjJhODcyODQxYzZjZjFkMmY5OGIxMTY0OGUyMTk1YWRlNzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6nH1gNuwKRChgeyC9b8yO4rsO91
+IsJD/Se/Y42g80kdIT78erIywAMwCky14ecKLK5yojZakeZ9/bHI2bDFEYcAAk8
3ELbBPAtGKS7rn0czLrkS/nkYchoxsDk5ARfsckl5/USFTy+AnmF3g4RBtVge4c+
A3c+SReHGmegVx30VYdDpB/JMsuUj9Gj64dAiU909mWUcnQMB0HKo7ePuWTBW5lW
LJT96fFSsgXF6zugNSW994PsLSnl6PaFJANKbVzkY5PRs2YqHV9/1CSY3g1shp+K
z1+iPjwWzIIits4Z9Kezd1qMs6zY7EYCrvFvY3paEICmRbRmxC2U8Vz27QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM3Y8qhyhBxs8dL5ixFkjiGVred+MB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvemRqeXFIS0VIR3p4MHZtTEVXU09JWld0NTM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiI8MA0G
CSqGSIb3DQEBCwUAA4IBAQBCnMlW/a62NRlU1N0cQ/XyeAwfk4u09+XAoQgUSS0H
MORUHucfat3KmxDFGq1YGZu3qq8ec+Kocy0PFnOCslNrqOrm4KsmCtsMY+C1G83v
RsucY1LWnHj464lZ2/8/WT68S0Zypx1Z8l5tSpsZb2ACPdt9hAAdt/Q77wqr1Z4T
YRNLrAY/2T0AFOgmy4ZeScQvqjPu5paqdwdiWub7C7PKOZ0+EXX45i8yBJjFU6M3
1PeHzm1Ybf6MJtp7RoI0d6T5tyEFdkT/Knhus1EH0IvUug8xS+q4rRRlrFPEp8FZ
pdzWfItGMpArumjl/m118+ct3GV+53xH/XlGeooggDzQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org