Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/hTe_heGyhWP_D9T5cmZqbtKosvc.roa
File: hTe_heGyhWP_D9T5cmZqbtKosvc.roa (raw, json)
Hash identifier: Y6GYs/zzxZJupx/PjWelbSY1KfHvRmyay37V37HxB3o=
Subject key identifier: 85:37:BF:85:E1:B2:85:63:FF:0F:D4:F9:72:66:6A:6E:D2:A8:B2:F7
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 018B1E4EB21B8E388B327D6480EDF280A4C8
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/hTe_heGyhWP_D9T5cmZqbtKosvc.roa
Signing time: Wed 11 Oct 2023 10:35:55 +0000
ROA not before: Wed 11 Oct 2023 10:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216189
IP address blocks: 46.32.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:4e:b2:1b:8e:38:8b:32:7d:64:80:ed:f2:80:a4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Oct 11 10:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8537bf85e1b28563ff0fd4f972666a6ed2a8b2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:59:88:37:e1:d2:28:80:34:52:13:0f:bd:22:
46:7c:b7:dc:c3:f1:fc:d6:5e:90:70:68:5a:6a:af:
1a:a9:71:8a:9c:15:af:16:4b:13:63:75:74:49:97:
29:45:e0:0c:ca:fb:16:17:81:93:87:47:59:cb:19:
67:ea:85:35:3a:97:c2:96:d4:32:17:fe:8d:20:0f:
21:5d:6e:61:8e:e4:b0:4f:6e:dd:f2:b8:3c:b0:3e:
62:5b:93:e0:94:3e:fa:db:2f:12:f2:1e:4b:b8:a9:
2b:f6:3b:05:06:06:4d:6b:fb:aa:27:f8:6f:64:f3:
55:02:69:0c:1f:9d:86:35:64:2a:00:25:16:25:e9:
50:d6:43:d0:fc:c0:7b:90:3a:34:ef:18:72:6e:68:
b2:b4:f8:88:1a:e7:97:88:11:8e:b3:01:04:3f:c1:
6d:08:35:0b:4a:37:fa:64:e4:05:68:8a:3c:ce:f7:
3d:ea:70:93:55:ce:44:f6:5e:a1:1d:87:71:37:d8:
2f:85:d5:12:08:8b:24:9c:09:e1:34:b5:e4:41:da:
d5:9d:e1:d6:ca:19:7f:f1:80:08:48:ae:64:b9:2c:
e8:ef:59:0d:8f:07:74:76:b9:d6:e1:09:fe:53:7f:
28:cd:8c:14:3f:f0:7e:a5:a6:ad:08:2e:8c:3d:89:
30:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:37:BF:85:E1:B2:85:63:FF:0F:D4:F9:72:66:6A:6E:D2:A8:B2:F7
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/hTe_heGyhWP_D9T5cmZqbtKosvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.188.0/24
Signature Algorithm: sha256WithRSAEncryption
74:88:cf:94:d0:e5:da:0a:39:48:6a:c7:4e:6e:3c:bc:76:f1:
e3:cc:5f:a0:5b:5a:79:66:4e:66:e9:ee:92:33:7d:36:37:47:
76:38:61:4c:2c:a0:d5:2b:37:f9:7a:25:cb:9c:63:72:60:e1:
60:8a:38:ba:3e:51:4a:13:bb:1a:89:3e:4d:64:94:4f:f9:4b:
8d:fc:18:9b:bd:60:ba:71:d2:d5:87:49:b2:70:0a:e8:f6:91:
0f:10:09:26:71:e8:27:c5:f8:fa:be:d2:8a:94:03:e0:80:fc:
e1:6c:bc:46:57:8c:b8:ca:18:d0:83:09:a0:13:9c:63:d9:fa:
22:bf:05:31:14:ca:fb:57:84:a3:98:5e:21:b0:f2:77:ae:bb:
43:30:18:84:c9:6f:aa:0f:80:33:31:c0:31:7e:7a:6f:8a:23:
51:0b:af:24:fb:bd:b7:fb:cc:1a:2b:5b:bf:35:bb:f2:b2:b3:
0d:15:48:2b:99:0b:99:0d:e3:45:22:26:e6:46:26:04:c8:8b:
a2:fe:df:ad:b4:10:10:a1:18:2a:6f:63:ba:b2:50:c6:60:d0:
db:1a:33:cc:1f:b8:64:0d:6f:45:b4:46:f7:03:87:bd:25:7d:
42:b9:86:75:4f:1f:fd:a3:46:9c:13:ba:21:42:12:83:71:3e:
9b:ed:25:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:22 2024 by rpki-client on console-ams.rpki-client.org