Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/c76383-591c-4cde-b2cf-251d74ed7754/1/4HC5VX5iwFecEp3oktyRAYz-m8I.roa
File: 4HC5VX5iwFecEp3oktyRAYz-m8I.roa (raw, json)
Hash identifier: 7DVXADGPEukbevMDdkpVIQ7IM4UgjOQ5OJ7hD03iUdo=
Subject key identifier: E0:70:B9:55:7E:62:C0:57:9C:12:9D:E8:92:DC:91:01:8C:FE:9B:C2
Certificate issuer: /CN=8c0c7f2ebab7c96111cae687cedd1cd2e9bcd56a
Certificate serial: 018CC795351BB488FC503C6004E0EA81E671
Authority key identifier: 8C:0C:7F:2E:BA:B7:C9:61:11:CA:E6:87:CE:DD:1C:D2:E9:BC:D5:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jAx_Lrq3yWERyuaHzt0c0um81Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/c76383-591c-4cde-b2cf-251d74ed7754/1/4HC5VX5iwFecEp3oktyRAYz-m8I.roa
Signing time: Tue 02 Jan 2024 00:31:33 +0000
ROA not before: Tue 02 Jan 2024 00:31:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197336
IP address blocks: 46.31.32.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 31 Jul 2024 08:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:35:1b:b4:88:fc:50:3c:60:04:e0:ea:81:e6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c0c7f2ebab7c96111cae687cedd1cd2e9bcd56a
Validity
Not Before: Jan 2 00:31:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e070b9557e62c0579c129de892dc91018cfe9bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d6:94:ac:31:32:28:96:94:93:5a:ac:16:0b:
c8:d0:64:f0:8a:63:9e:07:f9:4f:dc:3b:5e:d1:62:
15:3a:db:28:25:74:03:00:06:a9:94:5e:f1:0b:4e:
ee:e5:78:f0:08:d4:c8:7b:9e:ad:83:dd:dc:b8:37:
5b:00:4a:d1:68:6a:d6:26:07:e4:bd:b2:75:91:f0:
f1:28:00:36:36:63:9a:44:cf:35:41:a7:29:9d:61:
7d:4a:c4:3b:71:d8:d9:1f:bb:fc:bb:b2:cf:02:d0:
19:11:ad:45:ed:5f:1f:39:39:17:36:d6:cf:ed:de:
ef:68:0a:ae:49:d9:2f:a7:7d:ca:1d:9a:81:3c:eb:
8c:9d:54:d9:22:8f:0e:2b:20:c5:da:2b:32:bb:33:
ac:70:75:a6:c4:e1:44:3e:06:d8:f6:4f:68:4c:27:
5e:f7:67:29:e9:a9:76:c6:a8:c9:fe:2d:d5:65:07:
55:7c:91:1a:45:b4:84:90:aa:3e:ae:87:21:de:00:
cd:eb:a6:73:86:6a:ab:2d:3a:7a:da:5b:19:a0:fd:
be:62:cb:5a:f8:a3:5a:e7:9b:1e:ca:a0:f6:9f:5b:
6d:12:83:a1:00:d1:71:d4:75:2a:26:53:37:1d:37:
fd:fa:44:cc:10:45:52:96:ba:88:61:20:13:cf:4a:
e4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:70:B9:55:7E:62:C0:57:9C:12:9D:E8:92:DC:91:01:8C:FE:9B:C2
X509v3 Authority Key Identifier:
keyid:8C:0C:7F:2E:BA:B7:C9:61:11:CA:E6:87:CE:DD:1C:D2:E9:BC:D5:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jAx_Lrq3yWERyuaHzt0c0um81Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c76383-591c-4cde-b2cf-251d74ed7754/1/4HC5VX5iwFecEp3oktyRAYz-m8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c76383-591c-4cde-b2cf-251d74ed7754/1/jAx_Lrq3yWERyuaHzt0c0um81Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.32.0/22
Signature Algorithm: sha256WithRSAEncryption
69:bb:40:9f:82:fd:2f:0d:92:b8:5c:78:d0:0d:97:a0:e8:ba:
42:45:f3:a5:be:05:27:87:98:8d:99:33:53:0b:f8:51:84:8d:
ad:c3:71:99:3b:ce:27:68:c1:2a:4c:9a:84:a9:2e:cc:e5:5d:
c5:55:91:26:84:a2:e8:59:d2:3b:04:77:cb:fa:1f:79:75:f4:
ec:67:40:8a:df:ab:eb:e6:10:6a:49:fe:d0:8e:38:63:0a:f6:
e3:72:79:16:71:a1:d7:f5:28:0d:1a:b2:56:37:0b:3b:65:52:
be:81:89:2d:61:a5:bf:2a:47:d1:84:6a:cf:53:ec:b4:86:60:
6b:dd:0e:84:12:84:a6:92:2c:9d:c4:f2:d4:bf:b0:35:ad:4f:
f0:82:22:03:53:4e:4b:ff:70:bd:6a:cc:9d:8f:3d:3c:11:a9:
e6:a8:80:ae:67:ad:3c:c9:b1:51:66:91:53:ad:f9:54:f4:54:
3c:5c:ab:ad:51:80:e6:40:f6:16:53:aa:12:a1:c2:64:4c:6a:
18:9c:9d:bf:4d:1e:3d:8d:e3:11:60:83:a3:45:0a:4b:4b:f6:
82:59:00:5e:65:20:71:a7:64:22:c6:13:08:da:5b:e8:c5:6a:
0a:02:e0:6f:eb:1f:99:3e:0c:27:de:18:da:91:70:e9:57:f4:
14:03:91:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 10:33:50 2024 by rpki-client on console-fra.rpki-client.org