Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/RUvWGu3YKGjb1wL1wAvRoPReYag.roa
File: RUvWGu3YKGjb1wL1wAvRoPReYag.roa (raw, json)
Hash identifier: NHLj8lQOL6qVvOZp64Z0eE/4m1f4Yin6THYSNBrh4+Q=
Subject key identifier: 45:4B:D6:1A:ED:D8:28:68:DB:D7:02:F5:C0:0B:D1:A0:F4:5E:61:A8
Certificate issuer: /CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Certificate serial: 018B8465A5B655E830FFD6DB5E6A39965009
Authority key identifier: D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/RUvWGu3YKGjb1wL1wAvRoPReYag.roa
Signing time: Tue 31 Oct 2023 06:22:15 +0000
ROA not before: Tue 31 Oct 2023 06:22:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216205
IP address blocks: 46.36.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:84:65:a5:b6:55:e8:30:ff:d6:db:5e:6a:39:96:50:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Validity
Not Before: Oct 31 06:22:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=454bd61aedd82868dbd702f5c00bd1a0f45e61a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:97:c2:75:71:20:e4:ff:5b:83:56:ba:1a:
90:ae:ee:cf:0d:e7:b5:9d:f4:38:fb:95:b8:01:f6:
83:6c:f2:99:27:88:d6:e1:35:8a:19:be:ec:1d:1c:
86:32:dd:12:d3:a8:2e:2d:5f:8f:95:f6:11:aa:58:
6d:0f:ff:5d:bb:e0:f3:a9:e6:ce:bb:8f:22:a0:e7:
67:bd:77:89:fd:1c:56:57:9b:3c:3f:3e:fa:af:01:
ff:7c:1b:6d:d8:3f:81:dc:51:2f:20:30:f6:2f:14:
20:9d:47:47:0e:61:5f:03:65:a3:d8:bf:b7:13:a7:
02:cd:23:9a:87:ee:4e:0e:cf:38:7b:d7:37:0d:d4:
4f:05:75:ed:7e:d2:ab:2d:42:ec:c0:b2:c9:36:78:
e3:0e:af:d8:18:21:a1:3d:44:7f:2f:25:a1:9e:d9:
36:04:7a:f2:ef:bf:35:ec:46:d3:cd:34:7c:df:48:
58:0e:e0:16:f9:ca:ae:6a:c2:04:c3:f6:05:e1:0a:
2b:a6:d7:28:19:43:42:c7:05:ef:79:79:bf:e4:4f:
2a:68:50:d8:2d:bf:0c:04:92:3d:f8:00:72:93:3f:
b4:b3:38:6e:96:39:66:1b:47:7b:ef:e2:71:eb:5e:
17:ec:cf:de:07:54:4e:5b:a9:98:e7:e7:43:1f:a2:
05:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4B:D6:1A:ED:D8:28:68:DB:D7:02:F5:C0:0B:D1:A0:F4:5E:61:A8
X509v3 Authority Key Identifier:
keyid:D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/RUvWGu3YKGjb1wL1wAvRoPReYag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.99.0/24
Signature Algorithm: sha256WithRSAEncryption
27:30:e2:4c:e6:62:04:fa:33:de:97:c7:c8:91:d9:8e:94:29:
3b:ed:a8:77:36:92:41:dc:5c:c7:88:df:d9:e6:8e:16:cd:51:
20:21:19:3c:1b:bf:8e:a0:68:e5:5d:6e:d2:1c:37:be:5a:29:
77:ea:fa:5c:24:f1:da:dd:86:9a:9d:ac:d3:d5:39:73:2d:d3:
bc:c2:4b:fd:ec:ff:20:a4:92:fb:39:43:65:55:dc:58:75:b6:
c2:92:2e:c0:43:00:af:8f:34:b5:ee:12:17:2c:5d:89:0f:79:
a1:57:cc:98:5c:2b:8b:1d:f5:45:1b:df:bd:e6:fb:9c:e7:13:
f2:dc:e6:95:79:bd:94:15:bf:11:2c:32:45:7d:a9:bc:03:b9:
84:18:07:8d:05:c1:aa:a4:71:c6:03:62:18:45:57:a7:bf:ea:
33:b6:d9:e8:79:e4:7b:4b:5a:98:50:ed:a5:f6:53:b5:0b:2b:
58:2b:69:4a:2b:4e:15:ea:3a:9c:7d:ae:a4:f9:d9:37:6a:f1:
e3:54:2d:62:92:c5:e7:d4:83:1d:0e:9e:a0:49:a3:a9:52:6e:
84:b5:5d:9c:cb:95:99:94:1f:3a:71:8e:f0:8a:d1:98:44:1c:
f4:3a:31:3a:8c:d9:99:53:77:55:52:1a:80:86:2f:7a:62:45:
1a:16:fe:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org