Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/x0KzqcN4BmmpH8M5ipyNNCxy3X4.roa
File: x0KzqcN4BmmpH8M5ipyNNCxy3X4.roa (raw, json)
Hash identifier: B2/dTKzm0eVpO0imUFcapjTl8bmR+gxiVQex5/XadaU=
Subject key identifier: C7:42:B3:A9:C3:78:06:69:A9:1F:C3:39:8A:9C:8D:34:2C:72:DD:7E
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 01856B40C9B25BCE91DD5FCC1EB7DCE8D52D
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/x0KzqcN4BmmpH8M5ipyNNCxy3X4.roa
Signing time: Sun 01 Jan 2023 02:54:46 +0000
ROA not before: Sun 01 Jan 2023 02:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206830
IP address blocks: 46.24.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:c9:b2:5b:ce:91:dd:5f:cc:1e:b7:dc:e8:d5:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 02:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c742b3a9c3780669a91fc3398a9c8d342c72dd7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:43:ae:e8:dd:85:77:e4:92:05:94:06:26:21:
81:7b:7a:55:ed:e8:8e:05:25:61:16:8c:02:dd:c2:
e4:f6:f0:7e:68:b3:d3:83:4c:c3:59:49:e4:bb:0b:
38:6e:27:d7:cc:69:5f:59:24:3c:87:48:08:63:d3:
2c:02:24:1b:a2:d7:bb:a4:f2:74:60:7a:86:c6:dd:
07:1b:d9:43:b7:57:ee:90:a3:50:41:a9:94:fa:50:
36:31:4c:cf:8e:0b:df:d2:d0:cb:e3:53:8d:d9:c8:
0a:f5:99:30:65:ca:d1:49:51:c6:98:1c:94:9d:85:
8f:af:23:04:52:77:d5:d9:01:55:78:69:5a:6e:d2:
0d:84:f1:9b:16:99:8e:b3:58:74:db:7f:98:b3:4c:
c2:54:e5:a9:a5:e3:86:62:b1:08:49:f7:5c:12:c5:
be:14:e2:72:95:e3:69:31:24:c5:c6:3f:98:ff:7b:
07:c4:ea:a2:79:94:d1:25:5a:87:f4:8c:41:19:0d:
ec:51:b6:ab:78:61:7e:de:3d:29:4e:9c:37:e2:04:
f7:4b:a7:46:56:4d:a9:b1:27:b1:3c:7c:9a:96:66:
34:8f:32:34:2c:1e:60:35:09:2d:8b:fb:53:06:be:
e8:ea:3c:c5:1b:9d:c2:ea:6d:10:05:22:4e:f8:4f:
34:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:42:B3:A9:C3:78:06:69:A9:1F:C3:39:8A:9C:8D:34:2C:72:DD:7E
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/x0KzqcN4BmmpH8M5ipyNNCxy3X4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.24.148.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:04:26:e3:1b:9a:4c:c1:19:15:d1:13:47:1f:8e:0f:bd:3d:
f5:6e:68:ee:c6:56:e9:32:2b:25:b5:53:8a:d5:43:f4:ac:58:
fc:61:c7:67:35:63:06:ec:ec:f4:9b:ae:c9:38:cb:4e:7f:a5:
e9:24:dc:21:43:db:ab:11:50:b2:ab:9f:26:03:a2:4f:f7:1d:
0f:45:c5:39:7e:50:1a:17:b1:a7:f0:b3:97:64:7d:4f:c8:dc:
95:45:4f:8d:c9:38:1e:1c:e1:5a:a2:ef:54:af:47:56:c5:c6:
d1:46:01:5e:26:c8:4f:3a:ef:8a:2d:b5:13:b4:07:57:b3:48:
2c:84:15:e7:31:f2:c7:3e:9b:a4:fb:0a:ea:3e:f7:b1:c6:ad:
62:d3:d3:4b:fc:be:6a:ac:7c:d0:4f:a5:b6:ab:40:81:8a:56:
15:6a:1d:6c:54:07:af:14:4a:0a:2f:0e:d0:75:5c:3a:a8:bb:
91:d4:d4:d2:d1:85:f8:c1:31:4d:72:34:43:4b:0b:8c:33:2d:
70:5a:b3:85:45:cf:b6:37:c6:6b:db:8f:7e:74:8a:78:b7:73:
a1:f9:23:58:6f:63:15:a4:10:14:9b:30:98:b0:9c:bf:08:d6:
2b:b7:7f:95:d3:b8:1a:c3:e4:79:b6:7f:5f:44:96:f3:42:d0:
b7:80:dc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:01 2024 by rpki-client on console-fra.rpki-client.org