Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/aDKgUP7h2ItQVHFq2vgZgKtBrfU.roa
File: aDKgUP7h2ItQVHFq2vgZgKtBrfU.roa (raw, json)
Hash identifier: CPXq/9lm9s3C6P/HQrCYja4QyHBiQlCrq+p9Ump4rRE=
Subject key identifier: 68:32:A0:50:FE:E1:D8:8B:50:54:71:6A:DA:F8:19:80:AB:41:AD:F5
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65FC354CEE37F622920550D5894C2
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/aDKgUP7h2ItQVHFq2vgZgKtBrfU.roa
Signing time: Sun 01 Jan 2023 10:35:15 +0000
ROA not before: Sun 01 Jan 2023 10:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60457
IP address blocks: 46.10.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5f:c3:54:ce:e3:7f:62:29:20:55:0d:58:94:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6832a050fee1d88b5054716adaf81980ab41adf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:08:71:3a:26:5a:3b:46:2c:2c:cc:85:14:e0:
51:9d:01:1f:e6:47:fa:6c:85:e5:eb:b9:30:db:8c:
14:49:15:11:d6:09:56:18:94:db:76:a8:6f:10:33:
cb:31:01:de:e0:8b:18:7c:ec:18:ff:b4:a9:ba:c6:
81:ef:17:c3:c7:ec:a2:f5:0a:d3:24:a1:13:07:b2:
8f:7e:c0:d9:a3:e8:ff:b3:ce:8a:12:7c:db:15:ce:
84:18:9e:01:33:e2:d7:a8:be:39:0c:b9:a3:0c:dd:
75:7b:a1:29:9b:b0:6a:66:e5:11:84:a3:1e:57:02:
0c:bd:d3:de:0c:3d:b0:d2:5e:43:a6:55:36:88:e0:
84:6c:32:c0:37:f5:36:3e:ec:98:57:a1:ce:c6:eb:
84:b1:a0:ff:c6:19:97:3c:e7:f0:5d:60:cb:b8:e2:
a1:b7:91:4b:cc:81:85:43:24:b3:3e:f0:78:2c:84:
84:ed:fb:e2:c2:0f:84:85:22:ec:e2:20:22:96:f0:
e6:e6:f5:46:6d:54:83:de:4b:dc:9f:4a:3a:05:1b:
2b:a0:6b:5a:5b:cc:cc:a5:bd:fa:e0:8f:32:61:ab:
aa:f0:39:20:20:14:98:76:41:de:0f:5e:78:ff:b4:
cb:65:d7:a9:5e:c2:6a:6f:6a:0c:8d:cb:a0:c7:ad:
11:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:32:A0:50:FE:E1:D8:8B:50:54:71:6A:DA:F8:19:80:AB:41:AD:F5
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/aDKgUP7h2ItQVHFq2vgZgKtBrfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.156.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:00:06:eb:b3:f4:b5:fe:05:9c:7c:48:5c:da:9f:a0:b8:2a:
24:14:01:93:09:1b:3a:ce:9f:16:08:9f:be:88:f9:d9:36:15:
a0:a4:67:af:48:ce:db:d6:42:58:b4:b7:f1:df:54:53:b9:57:
2d:92:c4:0e:51:fd:34:86:8c:87:38:5d:91:4b:1a:f9:e5:04:
db:08:0c:81:d5:7a:c1:cf:7b:9c:71:aa:62:26:4a:f0:04:51:
1f:9c:6b:d0:f9:24:fe:e4:25:96:e5:43:f7:e5:49:28:78:da:
a2:2d:2c:c2:f1:9a:7e:f7:f7:d5:2f:56:dd:a6:6c:f9:d6:dd:
c8:ad:a8:d7:a9:d4:df:58:9a:65:34:b4:f6:ec:41:3f:77:31:
d5:b3:17:93:62:e3:92:08:68:a7:56:a8:ab:b0:e7:c0:62:1b:
57:1f:b7:ce:00:0e:38:28:7c:28:43:69:0f:32:76:00:8e:17:
44:dd:ea:18:68:f6:7e:3b:e8:36:37:ff:ba:e2:72:f8:a4:8f:
90:61:75:de:60:11:d2:53:5e:dd:54:3e:37:95:e5:1a:fd:4d:
3f:5b:fe:8a:d1:97:32:5b:5c:26:6e:70:1d:39:5d:dc:9c:21:
b5:f8:11:48:86:1d:59:5a:96:ce:66:51:84:f9:f3:b6:9e:fe:
dd:32:4c:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5l/DVM7jf2IpIFUNWJTCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODMyYTA1MGZlZTFkODhiNTA1NDcxNmFkYWY4MTk4MGFiNDFhZGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAhxOiZaO0YsLMyFFOBRnQEf5kf6
bIXl67kw24wUSRUR1glWGJTbdqhvEDPLMQHe4IsYfOwY/7SpusaB7xfDx+yi9QrT
JKETB7KPfsDZo+j/s86KEnzbFc6EGJ4BM+LXqL45DLmjDN11e6Epm7BqZuURhKMe
VwIMvdPeDD2w0l5DplU2iOCEbDLAN/U2PuyYV6HOxuuEsaD/xhmXPOfwXWDLuOKh
t5FLzIGFQySzPvB4LISE7fviwg+EhSLs4iAilvDm5vVGbVSD3kvcn0o6BRsroGta
W8zMpb364I8yYauq8DkgIBSYdkHeD154/7TLZdepXsJqb2oMjcugx60RAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGgyoFD+4diLUFRxatr4GYCrQa31MB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvYURLZ1VQN2gySXRRVkhGcTJ2Z1pnS3RCcmZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALgqcMA0G
CSqGSIb3DQEBCwUAA4IBAQCrAAbrs/S1/gWcfEhc2p+guCokFAGTCRs6zp8WCJ++
iPnZNhWgpGevSM7b1kJYtLfx31RTuVctksQOUf00hoyHOF2RSxr55QTbCAyB1XrB
z3uccapiJkrwBFEfnGvQ+ST+5CWW5UP35UkoeNqiLSzC8Zp+9/fVL1bdpmz51t3I
rajXqdTfWJplNLT27EE/dzHVsxeTYuOSCGinVqirsOfAYhtXH7fOAA44KHwoQ2kP
MnYAjhdE3eoYaPZ+O+g2N/+64nL4pI+QYXXeYBHSU17dVD43leUa/U0/W/6K0Zcy
W1wmbnAdOV3cnCG1+BFIhh1ZWpbOZlGE+fO2nv7dMkxZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org