Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/OnlEoT9BwEydUf6sx4YwdQf4uiU.roa
File: OnlEoT9BwEydUf6sx4YwdQf4uiU.roa (raw, json)
Hash identifier: X1yuqWgznWcnutR+H86JKYAPExDAyt40SpT42eekS0w=
Subject key identifier: 3A:79:44:A1:3F:41:C0:4C:9D:51:FE:AC:C7:86:30:75:07:F8:BA:25
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0185700287984C4AE168CA6DCD039AA898C0
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/OnlEoT9BwEydUf6sx4YwdQf4uiU.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58156
IP address blocks: 46.234.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:87:98:4c:4a:e1:68:ca:6d:cd:03:9a:a8:98:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a7944a13f41c04c9d51feacc786307507f8ba25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:53:84:85:5a:0f:23:1d:56:95:63:f6:89:42:
8c:1c:e5:62:4c:43:52:af:3b:89:77:1a:38:16:3d:
25:10:10:3b:b2:e4:1a:eb:4a:3d:81:4a:33:c3:52:
bd:e6:5c:57:39:be:f4:e9:61:80:ce:46:ad:9e:56:
f1:c3:5f:ae:80:15:78:c9:17:8b:e0:91:d1:e5:1d:
71:97:43:98:19:95:ba:3b:a1:e2:22:94:fd:fa:f1:
f1:be:32:49:64:ca:fc:aa:74:74:33:33:64:dc:8a:
c5:24:fb:82:42:a9:1b:22:c5:78:e2:14:e6:6f:b3:
6b:a0:de:4a:5c:56:47:fa:9a:d3:b6:0b:51:5a:52:
dd:6a:32:8d:15:62:ee:3c:92:b5:dc:ec:67:55:04:
67:a4:1e:e4:d0:a5:54:2a:44:91:82:62:43:d9:85:
bc:92:e2:7f:a5:ca:9e:b6:61:21:14:32:fd:2d:b2:
64:1d:81:39:1f:35:ee:01:77:ef:14:41:70:4b:b0:
1c:61:b0:aa:63:be:14:f9:39:2c:19:43:98:a2:24:
f5:14:8b:3e:39:1e:91:b5:49:6d:c4:d2:ec:52:07:
f3:9c:2f:7f:0b:69:ce:6c:ed:0f:52:4e:0a:61:66:
00:f4:34:ad:17:bd:50:1f:e3:d0:27:ef:56:f5:f5:
08:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:79:44:A1:3F:41:C0:4C:9D:51:FE:AC:C7:86:30:75:07:F8:BA:25
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/OnlEoT9BwEydUf6sx4YwdQf4uiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.234.13.0/24
Signature Algorithm: sha256WithRSAEncryption
53:41:52:c2:77:fc:55:17:06:e3:d1:c8:25:04:8f:ae:63:61:
6f:d9:9c:f6:f6:84:cd:a2:cb:76:81:64:16:44:1e:88:59:dc:
4f:2c:bd:32:c8:46:91:1e:0f:28:1e:4a:80:3b:67:91:5a:cb:
1f:3e:ae:50:0a:88:bf:f5:44:ec:68:60:bd:1f:9d:7f:e3:a7:
99:ba:fb:2e:db:46:be:f9:7c:fa:32:b9:c0:c3:3a:de:5e:dd:
35:12:d3:6b:0a:49:31:bf:6d:c7:46:8c:af:0b:a3:dd:bd:00:
21:f1:77:76:84:66:c5:8a:35:9e:e7:3a:f7:47:6f:1a:48:a6:
15:64:2e:9c:3d:25:36:ef:ce:6f:86:7f:ad:84:5b:d8:3d:44:
11:9e:a1:02:25:ed:ab:7c:c1:08:25:7b:33:c4:ed:31:14:b2:
88:be:c4:d6:63:35:35:fb:19:4d:c5:57:e0:fa:9a:8b:3b:a0:
17:49:d0:88:2a:2c:9f:72:33:1c:50:58:6e:5d:f1:23:8b:07:
35:f7:07:82:75:ac:f1:92:17:ff:1c:2f:66:14:60:90:d7:fe:
18:c6:d9:51:dd:a2:59:98:01:b4:f8:44:0b:e1:24:1d:4b:9c:
81:c6:d7:b8:74:47:20:00:c1:4b:ce:43:32:c1:80:f0:69:ce:
56:d1:69:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org