Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/KwPMsrTr1O4KreA1uLM9z3vH6lM.roa
File: KwPMsrTr1O4KreA1uLM9z3vH6lM.roa (raw, json)
Hash identifier: NdQCapWWvCSUP7pqE7AK5RhP0Nt4RhBQeNw9Rj5qITI=
Subject key identifier: 2B:03:CC:B2:B4:EB:D4:EE:0A:AD:E0:35:B8:B3:3D:CF:7B:C7:EA:53
Certificate issuer: /CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Certificate serial: 018D9C5691B9EA1CD78BD1346F66F9EAD2D4
Authority key identifier: D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/KwPMsrTr1O4KreA1uLM9z3vH6lM.roa
Signing time: Mon 12 Feb 2024 08:02:15 +0000
ROA not before: Mon 12 Feb 2024 08:02:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200370
IP address blocks: 46.36.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 12:09:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9c:56:91:b9:ea:1c:d7:8b:d1:34:6f:66:f9:ea:d2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Validity
Not Before: Feb 12 08:02:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b03ccb2b4ebd4ee0aade035b8b33dcf7bc7ea53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:97:72:22:fa:19:a6:70:90:79:e1:33:d8:87:
d5:26:8d:7f:27:1d:15:7e:71:38:e3:ee:9d:5a:6a:
c1:e6:3d:1b:e0:a4:6f:93:5c:99:42:41:e9:7e:71:
1e:4c:92:71:ed:6d:c3:df:bd:7b:77:69:4e:e2:d7:
6c:d3:55:e8:9f:c7:bf:31:7d:5b:3c:10:19:79:73:
81:f0:23:72:8f:20:7f:01:34:3f:48:98:d3:c3:f9:
02:c3:61:3e:8b:b6:78:f5:8a:f2:76:e1:49:7e:96:
d3:a7:6d:68:7c:0a:20:c0:18:af:d4:84:39:f6:b2:
6a:6b:3d:17:5a:87:12:5c:ba:fb:e2:c1:d6:64:c3:
63:73:aa:39:71:0f:c2:4b:d2:4b:cb:a3:a5:76:7a:
da:58:a5:30:28:10:d5:98:c2:ed:79:6c:ab:2f:3d:
04:3e:8a:30:28:25:00:70:8a:92:af:9d:3e:d1:17:
d4:84:1d:69:21:5f:b6:a2:18:a3:0e:79:c6:3d:3e:
fb:e7:5a:25:91:5d:83:fb:e0:d4:14:0a:b9:e8:a1:
21:34:cc:5a:d1:6a:d3:85:bf:a7:da:60:c0:57:32:
36:9a:85:a7:a9:7c:55:4b:2c:93:22:31:b8:d7:d7:
c2:a8:53:74:33:0a:07:3a:8a:f4:1b:07:53:46:08:
cb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:03:CC:B2:B4:EB:D4:EE:0A:AD:E0:35:B8:B3:3D:CF:7B:C7:EA:53
X509v3 Authority Key Identifier:
keyid:D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/KwPMsrTr1O4KreA1uLM9z3vH6lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.106.0/24
Signature Algorithm: sha256WithRSAEncryption
35:5c:33:86:16:ea:c5:48:a2:88:e2:3c:15:39:df:8e:ae:79:
a1:4b:c5:38:1c:f0:0c:4f:99:95:59:90:5c:4d:ad:19:88:c7:
69:0e:af:ad:a6:16:8e:e1:0d:3e:9b:c3:6a:b5:a7:6c:64:60:
0e:cf:d7:31:54:16:f4:bd:3e:28:77:bf:38:fc:af:82:53:0c:
96:0f:6f:0a:d5:82:73:86:be:62:78:97:a3:b4:21:e8:46:d4:
4f:22:af:18:d9:51:47:0b:c1:01:fc:0d:d7:c5:c2:a6:0a:77:
07:45:48:42:fe:74:5a:71:02:da:5b:1a:6a:4d:ab:80:0b:58:
91:ef:79:5c:42:c9:b0:05:53:b2:23:38:3e:3b:55:a7:1e:1a:
5e:e3:07:7b:fc:c5:ac:be:da:f9:e6:ab:e2:2a:38:b7:39:65:
0d:fd:29:f5:1e:89:5d:2f:21:b3:82:85:3f:4c:da:3e:37:5f:
9e:66:99:6a:86:ed:28:7a:de:36:2b:0b:a3:78:80:54:c3:b1:
ba:e3:d6:38:10:7d:de:d6:ee:66:c9:d4:00:02:7c:89:69:22:
9e:e2:94:27:33:97:a0:d5:56:c8:00:68:26:76:ae:84:8c:7f:
a5:1a:24:68:22:69:5c:16:d9:61:b9:2f:6b:3c:95:20:90:74:
61:e8:90:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 17:00:28 2024 by rpki-client on console-ams.rpki-client.org