Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/ACN00GJHp0WEoovfJqC3ZBvEtyA.roa
File: ACN00GJHp0WEoovfJqC3ZBvEtyA.roa (raw, json)
Hash identifier: S8uUsGOKPLxIj1tyzBjhZaYfReQZYoVD5PRy6QmEi8A=
Subject key identifier: 00:23:74:D0:62:47:A7:45:84:A2:8B:DF:26:A0:B7:64:1B:C4:B7:20
Certificate issuer: /CN=40e3953c5cb452f159f8e1505fc702e883657e72
Certificate serial: 018BDAF5278B8FC24BA039E1229531E5B00C
Authority key identifier: 40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/ACN00GJHp0WEoovfJqC3ZBvEtyA.roa
Signing time: Fri 17 Nov 2023 01:46:21 +0000
ROA not before: Fri 17 Nov 2023 01:46:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60261
IP address blocks: 46.183.92.0/24 maxlen: 24
178.79.216.0/24 maxlen: 24
178.79.216.0/23 maxlen: 23
178.79.217.0/24 maxlen: 24
178.249.109.0/24 maxlen: 24
46.183.91.0/24 maxlen: 24
46.183.90.0/24 maxlen: 24
2a02:3d0:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:da:f5:27:8b:8f:c2:4b:a0:39:e1:22:95:31:e5:b0:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40e3953c5cb452f159f8e1505fc702e883657e72
Validity
Not Before: Nov 17 01:46:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=002374d06247a74584a28bdf26a0b7641bc4b720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:53:67:5f:ac:12:22:62:8f:b3:5d:03:de:b7:
22:ef:9c:2d:d2:6f:e7:9d:d9:b3:a0:b5:c0:43:ee:
f0:48:ed:7b:97:21:a1:5f:12:ce:b7:fb:c1:91:80:
6d:63:e8:4e:e3:10:56:0c:98:99:fe:6b:83:12:4b:
0f:dc:fc:0d:6b:47:20:d9:39:07:25:14:89:2a:a2:
af:70:5d:c0:2e:4c:c8:22:3c:b5:2b:e8:f1:6b:e1:
72:d0:43:fc:44:0e:8d:2c:ec:b5:db:6d:51:df:7a:
f7:88:b8:d6:ec:ea:26:e6:c1:bb:37:2d:bf:e4:9b:
3b:00:3e:15:50:76:f6:b5:28:d7:6e:ed:3a:cd:01:
46:f2:31:24:2e:dd:b5:b9:af:89:cc:ac:c8:42:e0:
bb:1d:0f:ea:bd:81:f8:7b:8f:cf:75:c2:20:cc:86:
02:0e:94:88:4b:9d:24:ee:ba:3e:44:6c:96:bc:d6:
7e:c6:5e:96:e2:48:af:2f:62:66:2c:3e:c4:8b:44:
04:b0:17:65:30:04:df:90:06:a4:d7:cd:85:1a:e0:
5b:9a:fb:02:f8:5a:50:97:19:2d:a0:82:7d:f0:ac:
95:e9:92:92:0e:39:91:62:33:f6:b2:21:f3:ab:31:
80:0d:f6:11:aa:04:d2:3a:a9:ac:c6:f1:5a:3b:1c:
aa:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:23:74:D0:62:47:A7:45:84:A2:8B:DF:26:A0:B7:64:1B:C4:B7:20
X509v3 Authority Key Identifier:
keyid:40:E3:95:3C:5C:B4:52:F1:59:F8:E1:50:5F:C7:02:E8:83:65:7E:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QOOVPFy0UvFZ-OFQX8cC6INlfnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/ACN00GJHp0WEoovfJqC3ZBvEtyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7d8505-3899-4a9e-8cf1-fa5af38deb5e/1/QOOVPFy0UvFZ-OFQX8cC6INlfnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.183.90.0-46.183.92.255
178.79.216.0/23
178.249.109.0/24
IPv6:
2a02:3d0:a::/48
Signature Algorithm: sha256WithRSAEncryption
05:71:18:3e:b8:e8:4a:51:14:9f:d9:05:d8:1a:a8:b4:cb:d8:
78:de:18:0a:70:80:35:5b:dc:94:4c:6c:9c:55:70:4a:3b:02:
c4:5d:b8:6b:16:7f:93:f5:10:a9:32:24:ae:61:e7:24:28:62:
7b:07:de:86:3b:1a:52:37:62:1c:51:8d:d7:c4:79:d2:32:85:
03:77:5a:c7:7a:01:01:97:82:ec:c4:05:86:05:f0:29:a0:91:
2a:b7:75:f5:a2:14:86:0f:8a:97:be:54:9e:3b:58:fd:0c:61:
e7:ed:7c:ce:46:a0:ca:e1:da:4a:e7:9b:e3:4a:4c:2f:2e:92:
df:79:ad:2b:64:2c:03:ba:e3:ee:2b:c1:c3:cb:a6:1b:d7:e3:
17:fe:45:a0:a1:44:4d:03:0a:81:a8:d2:a1:43:1f:76:4f:50:
70:80:8b:99:33:7a:d4:48:4c:60:b2:59:02:e8:0b:97:0b:b1:
f3:d6:4f:84:26:2b:b9:c5:d1:90:9d:f8:ae:b9:d0:0d:38:b7:
2d:0a:77:7b:d1:73:6a:47:21:a7:f0:68:34:44:09:51:f9:d4:
57:f2:96:20:6c:48:04:72:b0:8e:c7:d6:ec:0c:a2:14:96:51:
f7:7a:2b:9b:55:84:c8:5a:9a:b8:1b:da:8b:20:6d:c3:a1:53:
80:76:68:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:18 2024 by rpki-client on console-fra.rpki-client.org