Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/y97Xd_5OFtrpAbstRgJt0Okl6L8.roa
File: y97Xd_5OFtrpAbstRgJt0Okl6L8.roa (raw, json)
Hash identifier: Z6JZ1v9ejz3T/fjdpV97Fd0RaY60GLXm4hxof5sAb/w=
Subject key identifier: CB:DE:D7:77:FE:4E:16:DA:E9:01:BB:2D:46:02:6D:D0:E9:25:E8:BF
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CE7F555E2DB2002FBDAA7F3E61766
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/y97Xd_5OFtrpAbstRgJt0Okl6L8.roa
Signing time: Mon 02 Jan 2023 03:36:00 +0000
ROA not before: Mon 02 Jan 2023 03:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205576
IP address blocks: 46.61.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e7:f5:55:e2:db:20:02:fb:da:a7:f3:e6:17:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbded777fe4e16dae901bb2d46026dd0e925e8bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:37:d8:e4:01:49:35:fa:5f:8f:cc:b3:a8:d2:
af:09:d4:d7:1e:ed:89:ce:e7:87:2a:f2:fa:68:2e:
9a:91:48:db:51:f6:98:3b:1d:52:fa:e4:23:6f:95:
3e:4b:fc:7e:b7:8a:46:ca:74:fe:ce:97:92:ce:4e:
ce:ec:1c:e6:3c:ae:b9:e0:5c:28:d7:16:dc:7b:65:
f4:e5:e8:08:d2:36:38:c8:d0:de:73:34:90:9a:ba:
e7:6b:1b:72:40:ca:ab:ad:09:98:8e:34:90:47:cd:
f0:66:eb:f9:83:45:64:8d:de:f6:4b:c3:13:d6:f6:
ac:09:6f:72:ed:9f:74:72:db:f7:db:46:c6:f4:37:
6d:af:d8:97:c9:60:a5:b7:d6:93:f3:d9:9f:e1:83:
ae:a1:60:7a:73:5e:64:fd:4d:7b:3a:2c:db:90:73:
14:7a:dd:1f:ec:52:36:9b:ce:0d:43:10:14:ee:f1:
4f:0b:de:d0:76:4c:4f:25:24:e9:9a:5b:ca:79:f8:
f8:f7:03:7e:60:bc:6a:4d:b0:f3:e7:44:34:f4:90:
0b:c8:42:59:2a:c1:4c:94:db:71:e8:fe:6b:06:65:
b1:b7:00:1e:40:de:c9:80:86:ae:77:88:60:c5:1a:
b2:ae:9a:49:44:e4:db:79:da:34:ae:af:b0:ce:69:
ba:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:DE:D7:77:FE:4E:16:DA:E9:01:BB:2D:46:02:6D:D0:E9:25:E8:BF
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/y97Xd_5OFtrpAbstRgJt0Okl6L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.61.184.0/24
Signature Algorithm: sha256WithRSAEncryption
36:dc:fa:7e:55:b2:2d:1b:80:99:c6:18:32:60:18:61:7b:28:
0e:e8:6e:49:63:92:e7:40:a1:3b:cd:8f:90:38:42:82:07:62:
f7:18:b6:db:cb:d0:34:85:dc:56:70:34:79:01:26:95:75:60:
09:3e:eb:be:23:7d:ec:38:29:2c:69:e1:eb:6c:f5:03:7a:1b:
ee:dc:7a:cb:3b:42:78:ff:1d:f6:eb:28:94:d0:47:5e:f0:fe:
02:06:0b:c4:52:64:44:f1:79:33:29:e6:89:7d:49:dd:d0:4e:
29:77:2e:85:53:26:94:a7:08:1a:b2:08:64:e5:81:47:2d:2d:
5e:eb:0a:68:66:5c:88:68:f7:29:9b:d3:8e:ef:4e:61:a8:47:
9a:48:80:30:8e:a1:96:14:5e:22:22:36:d9:de:26:e2:fe:67:
ea:e8:f4:64:9b:3c:3b:3f:7a:c8:93:06:84:a0:94:58:96:cc:
1b:2f:75:3e:d5:51:5e:32:d5:f0:9d:f0:18:35:b2:68:6a:72:
1c:59:3f:e1:7c:63:af:b9:ac:78:4b:0b:b9:e8:71:e1:08:bc:
18:35:bd:86:5e:a9:2a:a5:e4:5d:ed:09:39:75:ef:b0:f5:4a:
2e:01:1c:c0:c9:16:a3:79:ba:51:9a:f6:06:9e:78:bf:9e:ad:
86:97:6f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org