Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/ogU8XPE2lD12SfZLX2aCTICUtss.roa
File: ogU8XPE2lD12SfZLX2aCTICUtss.roa (raw, json)
Hash identifier: byJ+5qg36lopkUVNINVpT3T4A9hVU4IiU40oV2riNHM=
Subject key identifier: A2:05:3C:5C:F1:36:94:3D:76:49:F6:4B:5F:66:82:4C:80:94:B6:CB
Certificate issuer: /CN=7078e75635a09dcc03f625a80bfa552b22e3662c
Certificate serial: 0185720C90BE5ABDAD441E383670E2E90C12
Authority key identifier: 70:78:E7:56:35:A0:9D:CC:03:F6:25:A8:0B:FA:55:2B:22:E3:66:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHjnVjWgncwD9iWoC_pVKyLjZiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/ogU8XPE2lD12SfZLX2aCTICUtss.roa
Signing time: Mon 02 Jan 2023 10:35:04 +0000
ROA not before: Mon 02 Jan 2023 10:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 46.174.16.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 06 Nov 2023 14:44:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:90:be:5a:bd:ad:44:1e:38:36:70:e2:e9:0c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7078e75635a09dcc03f625a80bfa552b22e3662c
Validity
Not Before: Jan 2 10:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2053c5cf136943d7649f64b5f66824c8094b6cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:86:f4:6c:30:d9:1d:07:64:5f:4c:1f:1a:60:
a4:2f:33:5b:36:13:72:94:38:4f:d8:83:91:86:60:
c4:54:81:83:e1:40:a8:8c:d4:34:d8:43:4e:05:c5:
7f:b9:c8:b8:74:f4:19:cc:56:2e:91:95:99:a6:17:
64:26:91:08:8a:01:31:29:da:35:61:0c:53:45:e3:
ac:19:cc:b8:ce:2b:83:b0:5d:2f:27:18:4f:53:9b:
e2:02:6b:1c:7a:8b:26:20:c0:9a:b5:ba:21:fe:e7:
69:64:2c:6c:19:30:b1:2e:ac:e8:54:a5:40:30:48:
0e:55:c9:b9:c9:ae:cf:2c:83:f8:61:da:85:74:2b:
02:83:be:8b:ea:43:aa:fd:b6:0c:80:49:ba:16:e2:
06:c1:80:b5:03:c4:86:54:3a:8e:d6:c9:ca:a2:a7:
5b:8f:15:eb:33:69:64:9a:3f:b8:7f:91:ce:fb:9b:
6f:32:cd:ca:05:89:f1:41:0d:19:67:2e:25:51:4c:
cf:11:41:9d:92:e3:5d:c2:8b:4b:c2:18:45:c8:db:
1e:f6:17:c4:cd:58:d8:3e:de:59:32:29:14:c7:60:
57:52:78:91:d7:e5:2b:22:9a:09:ca:d4:a8:5f:bd:
84:a0:c6:13:4c:39:2d:32:ca:e1:f3:f1:29:35:ec:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:05:3C:5C:F1:36:94:3D:76:49:F6:4B:5F:66:82:4C:80:94:B6:CB
X509v3 Authority Key Identifier:
keyid:70:78:E7:56:35:A0:9D:CC:03:F6:25:A8:0B:FA:55:2B:22:E3:66:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHjnVjWgncwD9iWoC_pVKyLjZiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/ogU8XPE2lD12SfZLX2aCTICUtss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/ca17f7-c593-474d-8cf0-538b47709956/1/cHjnVjWgncwD9iWoC_pVKyLjZiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.16.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:db:a6:0e:76:f5:44:20:04:3e:8a:99:91:48:2c:19:07:50:
3e:52:86:d9:40:a1:b3:07:a4:33:23:c5:d9:04:21:99:bc:fd:
61:a5:84:6b:31:e0:72:4c:24:f3:70:59:66:6e:af:ad:dd:df:
70:5e:ae:8c:34:4e:a5:31:60:68:3f:ff:3d:ad:8d:fe:b6:3e:
d1:a5:2d:06:e9:e7:db:d1:7e:f4:95:27:21:cf:b0:a9:e4:d9:
76:b5:45:85:ad:aa:0d:a8:66:b6:6d:63:ec:aa:54:19:cf:1a:
2b:ae:50:39:f2:f0:6e:bd:1a:e3:40:4b:25:ad:c9:b3:7c:c9:
24:78:a9:73:19:d1:7d:f1:4b:91:1d:bc:08:d5:7c:e0:ac:55:
cb:8a:a6:d0:aa:bc:23:aa:4b:04:a5:66:9f:dc:0a:be:b1:87:
58:c8:23:91:40:ca:17:58:b6:94:5a:a6:f1:17:ec:5c:d4:4d:
98:23:19:85:6d:0a:57:76:cf:62:3d:c6:7b:d5:d8:b7:63:6f:
dc:7b:00:a1:f4:23:bd:d7:b9:4c:cd:14:35:d9:da:f5:e6:c3:
d5:b2:40:39:92:56:83:28:06:74:4d:bf:f9:eb:b1:7b:02:cd:
45:90:82:a6:b5:a2:26:ba:1a:e6:a4:e3:e7:fd:85:46:de:4d:
a8:51:35:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyDJC+Wr2tRB44NnDi6QwSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNzhlNzU2MzVhMDlkY2MwM2Y2MjVhODBiZmE1NTJiMjJl
MzY2MmMwHhcNMjMwMTAyMTAzNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjA1M2M1Y2YxMzY5NDNkNzY0OWY2NGI1ZjY2ODI0YzgwOTRiNmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIb0bDDZHQdkX0wfGmCkLzNbNhNy
lDhP2IORhmDEVIGD4UCojNQ02ENOBcV/uci4dPQZzFYukZWZphdkJpEIigExKdo1
YQxTReOsGcy4ziuDsF0vJxhPU5viAmsceosmIMCatboh/udpZCxsGTCxLqzoVKVA
MEgOVcm5ya7PLIP4YdqFdCsCg76L6kOq/bYMgEm6FuIGwYC1A8SGVDqO1snKoqdb
jxXrM2lkmj+4f5HO+5tvMs3KBYnxQQ0ZZy4lUUzPEUGdkuNdwotLwhhFyNse9hfE
zVjYPt5ZMikUx2BXUniR1+UrIpoJytSoX72EoMYTTDktMsrh8/EpNey+wQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKIFPFzxNpQ9dkn2S19mgkyAlLbLMB8GA1UdIwQY
MBaAFHB451Y1oJ3MA/YlqAv6VSsi42YsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hqblZqV2duY3dEOWlXb0NfcFZLeUxqWml3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jYTE3ZjctYzU5My00NzRkLThjZjAt
NTM4YjQ3NzA5OTU2LzEvb2dVOFhQRTJsRDEyU2ZaTFgyYUNUSUNVdHNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9jYTE3ZjctYzU5My00NzRkLThjZjAtNTM4YjQ3NzA5OTU2
LzEvY0hqblZqV2duY3dEOWlXb0NfcFZLeUxqWml3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLq4QMA0G
CSqGSIb3DQEBCwUAA4IBAQAf26YOdvVEIAQ+ipmRSCwZB1A+UobZQKGzB6QzI8XZ
BCGZvP1hpYRrMeByTCTzcFlmbq+t3d9wXq6MNE6lMWBoP/89rY3+tj7RpS0G6efb
0X70lSchz7Cp5Nl2tUWFraoNqGa2bWPsqlQZzxorrlA58vBuvRrjQEslrcmzfMkk
eKlzGdF98UuRHbwI1XzgrFXLiqbQqrwjqksEpWaf3Aq+sYdYyCORQMoXWLaUWqbx
F+xc1E2YIxmFbQpXds9iPcZ71di3Y2/cewCh9CO917lMzRQ12dr15sPVskA5klaD
KAZ0Tb/567F7As1FkIKmtaImuhrmpOPn/YVG3k2oUTWT
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:21 2024 by rpki-client on console-ams.rpki-client.org