Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/tMIFbjB2hXe16k9Y_BLiSfB3MEQ.roa
File: tMIFbjB2hXe16k9Y_BLiSfB3MEQ.roa (raw, json)
Hash identifier: N7exOITvkq82gSUly9Cz9wReoxYn+lzbtXjnrfdH15I=
Subject key identifier: B4:C2:05:6E:30:76:85:77:B5:EA:4F:58:FC:12:E2:49:F0:77:30:44
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 0190CC11387FFE31E5B24D1239A0ADE13627
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/tMIFbjB2hXe16k9Y_BLiSfB3MEQ.roa
Signing time: Fri 19 Jul 2024 17:36:38 +0000
ROA not before: Fri 19 Jul 2024 17:36:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53856
IP address blocks: 46.173.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 22 Jul 2024 13:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cc:11:38:7f:fe:31:e5:b2:4d:12:39:a0:ad:e1:36:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: Jul 19 17:36:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4c2056e30768577b5ea4f58fc12e249f0773044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6e:d9:43:6d:bf:16:79:78:4b:29:b6:27:0b:
8b:06:d5:c5:67:05:11:89:72:23:69:a5:da:57:37:
1a:da:c6:70:5c:96:10:01:46:44:41:14:44:f4:04:
8c:9a:3a:e8:71:09:1b:0e:e7:c8:ab:e1:0a:8b:c2:
06:2f:dd:bc:bb:67:e9:1b:3f:da:f7:f6:1e:80:2d:
f7:94:4e:50:22:e5:a8:63:76:0b:69:8d:c2:60:07:
b2:f9:6f:03:34:a9:b3:68:26:4e:4f:e8:be:51:c5:
60:13:b5:f5:04:39:fd:f6:b1:27:01:84:48:80:7c:
9a:02:86:1a:d3:6e:d5:46:91:ef:c8:af:73:07:43:
dd:f0:31:6b:2f:49:0d:46:c3:b4:fe:39:df:2f:64:
1e:fb:4d:64:18:00:e9:8e:15:7f:1a:96:77:33:3a:
40:52:46:7d:ab:3a:c3:99:12:ce:86:b5:b9:97:38:
d6:e9:d4:16:47:6d:e8:b4:1b:ae:fb:b4:11:45:a0:
54:12:35:6f:72:3b:3c:95:15:44:c4:97:3b:87:5a:
57:4e:2b:41:67:1b:65:35:19:9e:80:31:06:41:56:
59:09:00:05:55:29:e6:7f:d8:b7:f3:60:7c:2e:93:
8f:ce:d6:4d:fc:77:34:99:69:fa:25:c7:8f:66:6f:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C2:05:6E:30:76:85:77:B5:EA:4F:58:FC:12:E2:49:F0:77:30:44
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/tMIFbjB2hXe16k9Y_BLiSfB3MEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.173.68.0/22
Signature Algorithm: sha256WithRSAEncryption
39:66:1e:2c:c2:81:d6:aa:e3:45:b8:4c:80:ac:8e:97:13:52:
f7:33:36:23:87:65:96:74:5c:87:05:63:5e:f5:a0:e3:e3:f4:
db:36:34:db:88:16:05:f5:05:02:4b:a1:70:6a:5f:f6:0e:63:
e0:0c:c9:a6:eb:6d:9f:b3:9f:85:28:34:3a:32:35:55:e0:44:
fb:9d:07:61:09:60:92:30:b4:9b:bb:05:95:34:b4:c3:4f:96:
28:74:d5:1c:19:ac:8f:06:2c:59:24:92:fd:7a:e8:de:ce:59:
ce:20:e4:7c:5d:77:98:79:62:a6:a7:34:e8:dc:f1:ba:8a:3e:
5c:3b:78:f9:16:48:41:fb:75:a8:80:24:bc:a1:db:a0:e2:1b:
52:8d:63:fa:93:74:c3:82:72:f1:f2:3d:9d:e6:c0:a7:0d:5e:
3b:76:35:fe:14:b8:05:dd:87:f2:81:06:d3:87:61:07:5a:e0:
2b:ba:70:e0:60:7b:f2:61:30:ec:86:91:b9:e3:10:0c:6c:ea:
fa:c0:fe:8f:a0:f8:20:8c:10:08:af:15:d4:44:63:11:f1:d2:
bf:84:9e:03:ed:88:ed:21:0e:14:b5:a4:a6:66:80:68:84:dc:
bd:ae:2a:2f:0a:fa:05:71:9a:64:59:17:ba:36:eb:c0:a1:95:
63:bc:1b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 22 17:32:36 2024 by rpki-client on console-ams.rpki-client.org