Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/MFq0uywJ8ltLc8kk5Hu-peeVWtA.roa
File: MFq0uywJ8ltLc8kk5Hu-peeVWtA.roa (raw, json)
Hash identifier: JCZShxyaPNkXa1CVpusy6YtGezFDo5udEb0Z7B5OJVY=
Subject key identifier: 30:5A:B4:BB:2C:09:F2:5B:4B:73:C9:24:E4:7B:BE:A5:E7:95:5A:D0
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 01856CAEF6F39E406859947764DEFDC1CF6C
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/MFq0uywJ8ltLc8kk5Hu-peeVWtA.roa
Signing time: Sun 01 Jan 2023 09:34:43 +0000
ROA not before: Sun 01 Jan 2023 09:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25467
IP address blocks: 46.183.185.0/24 maxlen: 24
46.183.184.0/24 maxlen: 24
2a03:f80:385::/48 maxlen: 48
2a03:f80:389::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 28 Jun 2023 05:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ae:f6:f3:9e:40:68:59:94:77:64:de:fd:c1:cf:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 09:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=305ab4bb2c09f25b4b73c924e47bbea5e7955ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:4a:99:2f:34:fd:0a:ea:9b:7f:b9:ec:cf:
ab:7e:c6:c9:50:16:29:4c:c0:af:43:2f:7d:7c:85:
f7:5c:f6:cb:8b:23:44:b7:c6:f2:de:61:8f:43:3d:
76:c3:48:e9:09:49:d0:a0:8b:31:8e:83:ed:16:db:
dc:c5:c0:c7:20:42:2b:5e:18:90:ca:4a:13:74:66:
08:81:e3:7b:ab:b5:c7:6d:0d:b5:3f:16:21:28:fc:
59:93:8d:8f:88:90:3f:76:3b:22:00:df:bb:af:69:
22:fc:b6:21:b8:81:eb:a5:c7:9b:5f:97:c8:ed:b7:
8c:f0:80:47:6f:0c:2d:5b:ad:4b:65:01:ea:c7:f4:
65:9b:9a:82:84:62:d4:92:46:f2:fa:fe:48:a4:c2:
92:c3:09:41:4b:e7:d5:8a:56:43:a0:86:d5:f9:1d:
76:d7:7c:75:af:cc:c0:b2:0d:a7:93:bd:c6:23:75:
85:3a:3c:57:61:81:85:77:5c:b9:d8:cd:b3:c8:c0:
eb:3f:b7:40:e9:b3:cd:a9:0e:70:da:cd:a1:7b:bf:
aa:65:16:63:5d:d3:db:cc:aa:82:2b:86:a7:5e:06:
d2:2f:d8:5e:f0:56:b7:fe:96:6a:fc:da:2d:22:9a:
e2:a8:b5:37:d0:1d:8d:a9:f9:89:17:0a:98:d0:a4:
5c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5A:B4:BB:2C:09:F2:5B:4B:73:C9:24:E4:7B:BE:A5:E7:95:5A:D0
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/MFq0uywJ8ltLc8kk5Hu-peeVWtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.184.0/23
IPv6:
2a03:f80:385::/48
2a03:f80:389::/48
Signature Algorithm: sha256WithRSAEncryption
c2:04:0b:f2:9f:8c:76:29:03:8a:a0:21:2c:b3:cc:64:5b:1b:
98:f3:4c:8b:39:85:d0:9a:b0:a9:79:5b:a3:a7:40:9b:38:34:
92:09:08:5a:f3:3c:65:b0:04:82:32:94:ea:11:3f:e3:eb:25:
36:b5:32:96:62:8a:33:50:7b:9e:89:21:77:3a:f9:7a:b6:4e:
78:ed:2d:32:81:22:31:3f:e8:01:8d:a8:96:be:44:c2:65:ab:
34:31:57:36:85:3b:ed:16:bc:24:f3:9c:79:6c:ec:8e:d9:52:
87:20:c2:d6:dc:94:7d:25:a7:5d:b7:c8:c0:09:93:69:70:26:
ad:bb:bc:6d:5d:42:c6:c4:a4:4f:09:bf:9b:91:04:58:77:36:
f8:51:3d:b6:4d:87:9b:b3:07:2e:d0:c1:b1:09:53:84:43:5e:
0e:c3:8c:32:5a:d4:06:ad:fe:d6:51:20:95:43:48:89:1e:d9:
35:57:cd:c9:d1:a8:0e:5f:f2:ff:f3:84:94:54:bc:b7:69:20:
58:c4:51:44:fe:c4:c1:5f:86:cd:f8:2c:84:4e:76:24:50:55:
2d:6c:ee:0a:62:82:a9:38:fc:ee:26:2c:be:54:3a:68:d0:26:
98:38:9b:90:20:02:d2:88:e0:a6:46:98:82:cf:d1:11:c8:09:
74:01:35:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org