Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/s2dwiRcficHPojyIKwfHjtoxA8w.roa
File: s2dwiRcficHPojyIKwfHjtoxA8w.roa (raw, json)
Hash identifier: +LZDGT+9oPkLJcIc2X6OOCH2lovqIN59aiaQR8eJwH4=
Subject key identifier: B3:67:70:89:17:1F:89:C1:CF:A2:3C:88:2B:07:C7:8E:DA:31:03:CC
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CE72332D61CC4B593DBDE20BFCF2F
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/s2dwiRcficHPojyIKwfHjtoxA8w.roa
Signing time: Mon 02 Jan 2023 03:36:00 +0000
ROA not before: Mon 02 Jan 2023 03:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205060
IP address blocks: 46.61.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e7:23:32:d6:1c:c4:b5:93:db:de:20:bf:cf:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3677089171f89c1cfa23c882b07c78eda3103cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a5:b4:5e:fb:11:6d:93:2a:13:8e:d8:88:ee:
6f:7a:46:0e:7e:7d:dd:d9:dc:8c:aa:56:91:df:13:
eb:17:93:4c:1c:11:d8:4e:cd:be:ac:af:28:08:38:
81:c3:39:f5:c3:24:8f:d3:a6:d8:e0:8b:de:79:a7:
63:42:d4:f6:fc:a4:05:b1:a4:a7:b7:a6:b0:af:60:
16:16:1f:6c:3f:ea:d7:6f:f6:dc:b6:71:29:26:19:
f8:23:b4:97:a4:bf:d4:f2:48:9c:77:18:89:40:98:
fd:f9:5b:92:a3:82:b2:bd:e0:b2:d0:d6:c5:42:3b:
36:43:23:8f:f6:4f:91:3b:4f:40:27:b0:db:4c:6b:
cd:7e:6c:f3:63:26:b0:c2:14:da:58:6a:33:16:a2:
1e:96:dc:d1:9a:39:11:94:5c:f0:5c:94:1d:59:be:
9b:a4:00:fe:cc:7b:ff:6a:2a:65:0e:03:ec:a9:a7:
34:8b:01:fe:9e:f4:e5:04:d1:fe:1a:1d:99:ad:d2:
ee:78:30:01:a0:e7:9d:8a:92:c2:01:17:e8:27:7f:
c6:71:fb:20:96:5f:28:49:ee:c5:af:a0:ee:51:fe:
0b:9b:2c:c3:2d:24:d0:10:bd:e6:be:5d:a7:38:d9:
c8:fa:de:6f:c2:55:da:0d:db:0c:b5:fe:24:9f:6d:
14:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:67:70:89:17:1F:89:C1:CF:A2:3C:88:2B:07:C7:8E:DA:31:03:CC
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/s2dwiRcficHPojyIKwfHjtoxA8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.61.209.0/24
Signature Algorithm: sha256WithRSAEncryption
87:c8:ce:3b:25:d3:38:61:13:c4:2b:3e:9b:28:b1:d3:77:31:
83:1e:f2:e5:ba:1d:d3:4a:40:93:78:ec:3f:60:2a:36:a3:68:
ae:4d:b9:8e:ba:a0:b7:25:da:c4:bb:07:9a:b7:db:10:09:4f:
bd:43:8b:03:7c:70:48:7a:ec:11:92:53:dd:ca:d5:59:db:2a:
d1:c0:7d:22:2d:df:59:b6:ac:9b:d4:ed:96:75:97:0f:b3:2d:
57:d4:85:f7:5e:54:6a:2e:46:6e:95:83:d0:24:aa:54:0a:1e:
b7:1a:fd:79:1e:91:81:6d:62:72:d2:3d:e5:de:bc:4b:42:14:
f9:6a:b9:88:72:36:63:de:31:ed:ce:37:79:04:a1:3c:1b:bf:
7c:75:41:e0:98:46:15:18:c6:13:c2:fa:9b:01:41:2e:bf:88:
c7:6f:43:fb:6f:6b:a8:ee:2a:8f:b7:3e:ed:c2:bb:9a:a1:fa:
50:a0:52:7a:6f:3e:f7:cd:2a:29:14:76:0b:24:b4:aa:88:97:
17:de:34:3e:71:8a:c5:b9:8b:b2:0a:b0:5a:d2:67:99:4e:ee:
09:36:5b:55:37:f8:11:39:9b:e2:cf:87:61:ff:2b:5e:68:38:
50:50:b8:b4:70:58:ec:4e:69:8f:33:65:34:85:11:05:ef:db:
90:1c:8b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org