Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/0I-CmtFCUFTZRywWhg040zJUH5U.roa
File: 0I-CmtFCUFTZRywWhg040zJUH5U.roa (raw, json)
Hash identifier: zWX6xkqjUPg+mloPw9rSndr5dMiNJbqkEXpek7hmk+A=
Subject key identifier: D0:8F:82:9A:D1:42:50:54:D9:47:2C:16:86:0D:38:D3:32:54:1F:95
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F023AE2DD2A96D3D754ADF8F7CD799B
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/0I-CmtFCUFTZRywWhg040zJUH5U.roa
Signing time: Sun 01 Jan 2023 20:24:55 +0000
ROA not before: Sun 01 Jan 2023 20:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25004
IP address blocks: 46.19.203.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:3a:e2:dd:2a:96:d3:d7:54:ad:f8:f7:cd:79:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d08f829ad1425054d9472c16860d38d332541f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:02:ae:32:b7:5c:e5:c7:0f:44:14:bc:d6:
58:ec:60:02:db:6e:f7:f7:12:7c:fe:75:69:21:6d:
f7:17:42:0a:9a:2f:3d:f3:ca:4b:fc:e1:bc:0f:a9:
2f:85:09:7a:29:44:ca:d0:b5:c5:f4:6f:86:65:28:
d9:a3:cc:9b:4d:c6:db:cf:5b:8a:13:3f:31:55:19:
64:44:19:d3:53:8f:26:0d:27:6a:ff:ef:8f:e4:22:
2c:23:04:b7:45:33:bb:e1:a6:07:aa:a9:af:fd:ab:
f0:aa:8d:c2:08:e7:af:a4:4d:f0:e0:a6:24:c0:8b:
4d:8a:df:43:2c:65:de:d0:cc:97:74:de:8b:b7:a5:
41:46:dc:e0:49:70:02:9f:eb:d8:d6:c5:8a:9c:de:
ec:a7:a0:4e:05:01:0f:df:a2:2f:75:b8:c4:73:c8:
5c:6c:5c:bd:17:f0:57:54:21:ce:c6:35:9b:5c:bc:
81:6d:3a:bc:59:e0:73:9b:2c:a2:41:69:70:bd:c6:
f6:18:20:c7:81:80:1b:33:37:8b:d9:9f:4f:b3:25:
17:5f:b2:fd:40:78:15:92:2b:32:c9:df:e2:a0:2f:
b7:bf:33:d7:5d:af:68:e2:c8:da:01:55:de:a6:21:
da:5c:6e:40:eb:1b:9b:39:5e:c6:cd:a2:9c:39:f5:
a3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8F:82:9A:D1:42:50:54:D9:47:2C:16:86:0D:38:D3:32:54:1F:95
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/0I-CmtFCUFTZRywWhg040zJUH5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.203.0/24
Signature Algorithm: sha256WithRSAEncryption
07:8e:20:ee:f1:e0:57:93:16:27:08:2e:6e:ec:af:84:ae:77:
43:91:4c:39:bf:5f:9b:b0:08:b4:3b:86:38:4f:31:7a:3d:40:
0c:8c:1b:79:fe:3f:91:26:ad:f4:60:11:59:0d:ab:8a:78:21:
f3:05:f1:8f:f2:97:43:c7:bd:26:fc:be:79:cf:8a:40:f3:e7:
fb:fb:39:35:69:cd:ab:45:48:ad:01:c1:7c:e3:c4:20:43:49:
c0:76:05:ea:f5:fd:e6:d6:19:63:e6:d5:ba:5e:f1:62:e5:8f:
90:41:1f:03:33:e8:9c:73:64:7d:e2:83:f8:93:68:55:ca:b6:
9a:27:e8:4a:02:97:47:32:37:36:d1:db:7e:07:fb:c6:76:a4:
1d:40:b9:c9:25:47:80:e9:57:71:80:01:20:c6:d6:3a:07:cc:
89:3b:ca:3a:d8:c7:33:63:85:d2:63:80:18:fc:81:18:47:28:
82:cd:29:a1:7a:09:a9:55:62:f0:d5:26:54:6e:f5:b7:f2:41:
b9:01:c8:02:d4:f3:39:64:f7:76:a5:d9:ac:48:2b:af:b4:fa:
94:d7:9d:c1:68:f7:f6:4f:7d:7f:1b:ce:5b:a2:62:76:27:bb:
72:83:f9:9c:de:73:eb:0b:33:a4:88:05:9b:3f:f1:9e:e4:42:
23:e5:f5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org