Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/HaL85gtW0vhNWdE2AaGH7ISZsZc.roa
File: HaL85gtW0vhNWdE2AaGH7ISZsZc.roa (raw, json)
Hash identifier: 77ozjZGtt4mPwWC7/C14Ct6j59Wqolm+lZPvXSR+xLo=
Subject key identifier: 1D:A2:FC:E6:0B:56:D2:F8:4D:59:D1:36:01:A1:87:EC:84:99:B1:97
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 01856F94B533376737D2F8E74B3A8F162D1F
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/HaL85gtW0vhNWdE2AaGH7ISZsZc.roa
Signing time: Sun 01 Jan 2023 23:04:54 +0000
ROA not before: Sun 01 Jan 2023 23:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17941
IP address blocks: 46.32.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 27 Oct 2023 07:17:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:b5:33:37:67:37:d2:f8:e7:4b:3a:8f:16:2d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Jan 1 23:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1da2fce60b56d2f84d59d13601a187ec8499b197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:02:7d:a1:64:b2:cb:bd:48:ee:e2:bf:ed:76:
e3:af:48:b0:2c:fc:a6:38:22:55:c1:26:eb:8e:51:
9f:3a:2f:d3:63:97:56:ac:9e:7e:4c:8c:e7:76:8c:
ad:76:db:2a:c3:7a:04:6d:04:9b:4d:60:e3:dc:5c:
08:22:2e:47:4a:ab:a2:5c:08:55:90:5f:c2:c1:a6:
09:2d:87:13:53:ec:76:c0:6a:89:04:28:d2:e8:5e:
08:88:50:52:b3:5d:52:0e:d3:68:e0:71:1d:0a:23:
f4:fe:21:5e:9b:af:82:cf:59:62:70:91:38:d5:41:
36:13:09:56:42:8b:b5:ab:fb:c5:30:84:99:79:57:
41:7d:8f:d5:e3:fc:52:45:92:c4:0c:c1:ee:5b:e1:
e9:c2:f8:6a:98:7d:58:70:f0:a3:de:52:8e:39:d2:
f6:11:f7:3f:91:cc:86:e0:ec:7f:17:ca:e1:76:6e:
eb:d2:35:6e:03:1f:57:bb:0e:e7:2a:98:4a:e4:bd:
8d:c6:5c:46:c5:ec:57:f7:df:5a:77:d3:cc:6a:5c:
e0:79:7e:43:5b:8f:23:b5:9a:ee:f7:f8:58:7e:1c:
14:d2:4f:ba:2c:99:81:d0:27:91:2a:7c:81:51:b1:
6f:9d:5c:0f:6a:b4:08:94:5f:c1:6b:24:a7:94:01:
af:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A2:FC:E6:0B:56:D2:F8:4D:59:D1:36:01:A1:87:EC:84:99:B1:97
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/HaL85gtW0vhNWdE2AaGH7ISZsZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.184.0/22
Signature Algorithm: sha256WithRSAEncryption
43:51:69:bc:e0:80:a9:59:f3:0f:36:d8:c9:b3:7e:a5:3a:ba:
1f:15:1b:f3:b2:50:82:38:ec:ae:2c:48:32:61:dd:96:31:6d:
11:ca:97:31:11:d5:dd:dd:fc:1b:79:34:e7:34:9d:fd:8d:91:
39:70:bb:4e:ba:d5:1a:74:64:6d:6d:8c:fe:01:b4:7b:67:9c:
d3:84:b8:4f:86:07:47:74:b9:3e:9f:5e:b1:04:0c:18:d5:59:
0f:ec:3a:14:58:f5:ad:31:28:da:ce:f0:07:4b:ba:ac:e3:b1:
2a:4e:83:01:39:c1:92:fb:1c:9b:70:d8:4d:84:0f:33:03:f0:
09:0e:a5:33:a3:37:99:ba:01:f6:4a:b8:d3:12:af:c2:30:ad:
a1:5c:b8:c8:dd:0c:16:44:f8:14:34:6b:75:9f:ba:30:8e:b4:
ff:68:2d:5a:3b:b1:55:c5:66:4a:28:83:a2:9e:b8:77:49:0b:
5e:a0:6b:69:21:81:4b:43:eb:fc:4c:1c:77:77:c0:fd:21:89:
5d:1e:fc:3c:fc:a4:65:28:d2:27:98:1b:d5:82:1a:02:34:8a:
5c:80:64:8f:ee:57:98:78:5a:9f:d6:17:52:37:af:b1:06:48:
54:71:a4:15:47:91:78:42:c5:50:5f:1e:0b:9b:95:68:0b:a3:
77:0d:de:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org