Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/KHJQeIE1dweJCoylLqWRpTjO0yA.roa
File: KHJQeIE1dweJCoylLqWRpTjO0yA.roa (raw, json)
Hash identifier: nF1dN8GJTGzCY6sb6f9O3uYov1/TNb35zT5nobwBBms=
Subject key identifier: 28:72:50:78:81:35:77:07:89:0A:8C:A5:2E:A5:91:A5:38:CE:D3:20
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018572470111212EF15463AD87FF31D30DD2
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/KHJQeIE1dweJCoylLqWRpTjO0yA.roa
Signing time: Mon 02 Jan 2023 11:38:53 +0000
ROA not before: Mon 02 Jan 2023 11:38:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40824
IP address blocks: 46.161.12.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:01:11:21:2e:f1:54:63:ad:87:ff:31:d3:0d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2872507881357707890a8ca52ea591a538ced320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:69:cb:9d:27:fb:27:4c:0b:a0:4f:b0:46:fa:
48:7a:e6:f9:35:c9:c2:37:f5:36:ea:b3:28:c9:76:
aa:8a:db:64:37:3d:6c:28:2f:ee:e8:af:f5:64:a8:
a5:81:3c:6f:be:ea:31:e7:e4:17:2c:99:be:3b:1c:
07:d1:da:fa:64:96:f9:c8:20:53:53:8c:40:45:8e:
04:b5:4e:d9:24:41:cb:5d:9d:d8:ad:5d:ef:1f:8e:
7f:c7:f0:aa:29:f4:b9:65:e2:32:a8:d9:8f:e5:3c:
e9:23:3d:f8:43:88:72:37:92:06:6d:42:38:c4:a0:
da:f1:69:ca:78:f7:75:85:2b:a9:a8:9e:2d:a0:5c:
97:8e:e0:2b:a2:dd:99:a5:68:0e:26:31:14:4e:a3:
3e:05:9b:aa:27:37:f8:c3:a3:6f:cd:38:34:49:81:
e1:88:c6:f6:5f:30:45:75:70:05:0b:6b:a6:88:bf:
e9:c0:e6:d3:10:2b:6e:f9:49:dc:4c:31:1e:e1:b3:
96:30:3a:d7:6c:98:c7:c0:42:79:6d:66:28:9e:3b:
5d:3d:41:f6:84:f0:8e:49:53:e0:a1:42:96:4a:75:
3a:b0:cd:a7:f2:ed:b4:fc:f2:63:5a:2d:4a:05:60:
d0:19:03:eb:08:0b:a2:06:61:13:37:03:6f:bb:b8:
dd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:72:50:78:81:35:77:07:89:0A:8C:A5:2E:A5:91:A5:38:CE:D3:20
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/KHJQeIE1dweJCoylLqWRpTjO0yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.161.12.0/23
Signature Algorithm: sha256WithRSAEncryption
32:92:bd:c4:dc:38:61:aa:e7:3b:9c:87:1c:4e:fd:fb:41:df:
5f:47:93:b3:f2:69:fb:28:93:ad:fd:49:6e:f3:63:95:ad:e4:
8a:a2:35:7f:3f:4a:3d:99:21:c8:f0:0b:26:a1:1d:0b:9f:8c:
f5:cd:1e:92:ac:ce:ba:d9:b3:1a:34:59:39:b6:42:59:e8:19:
60:56:f4:be:8a:c3:38:f0:2a:d4:0b:ab:e4:29:52:a4:7a:30:
7e:66:8f:d7:f0:07:5b:ea:66:ff:ae:5c:d3:d6:3e:c2:b1:fd:
69:e3:3d:17:4e:31:cb:d2:b5:80:18:3a:44:00:fd:ba:b3:60:
f3:a9:ad:35:7b:1b:3b:04:7a:cf:a4:37:13:bd:f1:83:5f:e8:
da:88:a4:7d:b9:5b:64:04:ab:19:1b:5c:c0:e6:4e:99:28:3f:
ae:a4:21:e6:ea:16:ec:3a:9b:09:50:24:bb:db:16:b0:ec:04:
cf:d5:92:6d:f2:52:d1:c4:6f:09:d9:28:be:cd:c9:c1:a0:36:
8b:c5:5d:ff:ab:e1:c4:8c:fc:2e:3c:06:3c:fe:7a:c7:7c:2e:
9c:ca:76:39:a3:16:30:c3:48:ed:32:4e:f0:d7:09:f0:05:96:
e5:8f:02:af:3a:ef:02:05:80:da:01:bd:82:a9:07:cb:1b:0a:
92:a8:ae:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:56 2023 by rpki-client on console-fra.rpki-client.org