Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/SfQcRLAv5gqYCxtt_aCpOi-lwtc.roa
File: SfQcRLAv5gqYCxtt_aCpOi-lwtc.roa (raw, json)
Hash identifier: fWaPJeuCxLc9y/OmIL1L8k4AX39MhJYs90tmWOC9F8k=
Subject key identifier: 49:F4:1C:44:B0:2F:E6:0A:98:0B:1B:6D:FD:A0:A9:3A:2F:A5:C2:D7
Certificate issuer: /CN=e9aab1446100a8fce03df19d755e06329ee24713
Certificate serial: 018571D7E9D8DD6D960EA1F1715F38BD451E
Authority key identifier: E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/SfQcRLAv5gqYCxtt_aCpOi-lwtc.roa
Signing time: Mon 02 Jan 2023 09:37:33 +0000
ROA not before: Mon 02 Jan 2023 09:37:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206804
IP address blocks: 46.246.1.0/24 maxlen: 24
178.73.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:e9:d8:dd:6d:96:0e:a1:f1:71:5f:38:bd:45:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9aab1446100a8fce03df19d755e06329ee24713
Validity
Not Before: Jan 2 09:37:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49f41c44b02fe60a980b1b6dfda0a93a2fa5c2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:89:9a:08:d5:dc:3e:a2:7b:d2:14:ab:8d:
6f:b4:af:e6:b3:d1:8c:a8:8b:5f:8d:70:71:06:c9:
0c:78:d3:ae:e0:c1:d2:e8:ff:f3:c3:07:04:56:ff:
0f:10:7c:c8:dd:86:ec:61:9b:98:d2:16:66:e6:b5:
77:a6:91:22:4c:82:21:b9:8a:c5:d4:c8:28:54:44:
16:a7:fe:5c:ff:ed:48:9b:e0:6d:96:be:46:d0:19:
a5:12:0e:c1:3f:aa:09:11:01:2f:d3:e8:3f:e9:eb:
2b:23:c6:a1:31:1e:36:70:b1:88:69:09:58:a4:db:
af:97:9d:18:ae:6d:65:2f:9f:f1:ac:54:08:4a:c1:
55:c1:96:7c:b6:7b:26:0a:ae:05:51:d3:5d:87:e4:
45:3a:5c:d5:2d:82:4f:1c:5f:a9:cd:fb:19:ea:be:
81:76:43:e1:1c:1a:db:b4:27:1a:fe:98:39:91:5e:
cc:9e:89:81:2c:30:e1:4f:85:9d:fc:4b:40:4c:9b:
3a:62:e2:da:00:34:ff:a1:d6:ce:ac:24:8d:0d:83:
a4:96:76:94:50:b6:6a:2a:43:ce:de:11:2b:dc:f9:
41:2f:5f:d9:32:ab:fc:8d:6b:a4:c3:0f:0c:59:59:
fa:8a:9b:89:ec:c9:8c:96:c3:21:0d:ee:4e:a3:19:
bf:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F4:1C:44:B0:2F:E6:0A:98:0B:1B:6D:FD:A0:A9:3A:2F:A5:C2:D7
X509v3 Authority Key Identifier:
keyid:E9:AA:B1:44:61:00:A8:FC:E0:3D:F1:9D:75:5E:06:32:9E:E2:47:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6aqxRGEAqPzgPfGddV4GMp7iRxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/SfQcRLAv5gqYCxtt_aCpOi-lwtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/71e09c-28f3-4825-806f-a0dc354f4ca3/1/6aqxRGEAqPzgPfGddV4GMp7iRxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.246.1.0/24
178.73.220.0/24
Signature Algorithm: sha256WithRSAEncryption
57:43:f1:0b:eb:20:d8:16:cb:63:a5:27:4f:62:69:81:e1:c2:
e2:4a:aa:44:f3:a2:cd:8c:31:82:9d:72:20:6e:2a:cf:38:53:
21:39:3f:3f:f3:4a:4e:3e:8a:ee:70:a4:56:64:14:78:3e:49:
36:6c:a0:91:a0:e6:d2:07:8a:97:0d:b0:83:6e:b3:87:3e:25:
13:7e:5f:7f:c7:6a:47:5b:50:2d:b2:9a:98:a1:b4:c6:18:ea:
7a:a9:de:33:d0:73:df:c1:3b:df:61:5d:e1:da:5f:c0:3b:9a:
f3:84:71:4a:93:87:30:b4:25:f6:23:fd:88:55:1f:44:43:34:
6e:4d:a5:6a:24:8e:60:47:a9:c0:3b:c3:f6:74:6b:61:7a:08:
6f:14:0f:55:53:4f:b6:da:52:80:5d:42:9e:40:76:76:fa:2e:
84:41:33:24:f6:8b:7f:14:85:d8:e7:f8:d7:00:d6:0d:13:d2:
13:26:2d:df:f4:61:e0:3e:07:98:fd:0d:19:08:18:0b:31:d4:
68:c2:22:64:29:ff:18:b0:20:14:cf:b6:a7:f5:34:d4:a4:dc:
a0:c2:e4:0e:30:e0:1c:df:03:a1:5c:67:f0:63:2c:af:16:51:
28:10:f5:00:5f:4c:1e:0f:39:67:bb:4a:a2:f2:0c:2c:16:69:
7e:d8:5c:c8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVx1+nY3W2WDqHxcV84vUUeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YWFiMTQ0NjEwMGE4ZmNlMDNkZjE5ZDc1NWUwNjMyOWVl
MjQ3MTMwHhcNMjMwMTAyMDkzNzMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWY0MWM0NGIwMmZlNjBhOTgwYjFiNmRmZGEwYTkzYTJmYTVjMmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzKJmgjV3D6ie9IUq41vtK/ms9GM
qItfjXBxBskMeNOu4MHS6P/zwwcEVv8PEHzI3YbsYZuY0hZm5rV3ppEiTIIhuYrF
1MgoVEQWp/5c/+1Im+Btlr5G0BmlEg7BP6oJEQEv0+g/6esrI8ahMR42cLGIaQlY
pNuvl50Yrm1lL5/xrFQISsFVwZZ8tnsmCq4FUdNdh+RFOlzVLYJPHF+pzfsZ6r6B
dkPhHBrbtCca/pg5kV7MnomBLDDhT4Wd/EtATJs6YuLaADT/odbOrCSNDYOklnaU
ULZqKkPO3hEr3PlBL1/ZMqv8jWukww8MWVn6ipuJ7MmMlsMhDe5Ooxm/xQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEn0HESwL+YKmAsbbf2gqTovpcLXMB8GA1UdIwQY
MBaAFOmqsURhAKj84D3xnXVeBjKe4kcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmFxeFJHRUFxUHpnUGZHZGRWNEdNcDdpUnhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83MWUwOWMtMjhmMy00ODI1LTgwNmYt
YTBkYzM1NGY0Y2EzLzEvU2ZRY1JMQXY1Z3FZQ3h0dF9hQ3BPaS1sd3RjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS83MWUwOWMtMjhmMy00ODI1LTgwNmYtYTBkYzM1NGY0Y2Ez
LzEvNmFxeFJHRUFxUHpnUGZHZGRWNEdNcDdpUnhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALvYBAwQA
skncMA0GCSqGSIb3DQEBCwUAA4IBAQBXQ/EL6yDYFstjpSdPYmmB4cLiSqpE86LN
jDGCnXIgbirPOFMhOT8/80pOPorucKRWZBR4Pkk2bKCRoObSB4qXDbCDbrOHPiUT
fl9/x2pHW1AtspqYobTGGOp6qd4z0HPfwTvfYV3h2l/AO5rzhHFKk4cwtCX2I/2I
VR9EQzRuTaVqJI5gR6nAO8P2dGtheghvFA9VU0+22lKAXUKeQHZ2+i6EQTMk9ot/
FIXY5/jXANYNE9ITJi3f9GHgPgeY/Q0ZCBgLMdRowiJkKf8YsCAUz7an9TTUpNyg
wuQOMOAc3wOhXGfwYyyvFlEoEPUAX0weDzlnu0qi8gwsFml+2FzI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:17 2024 by rpki-client on console-fra.rpki-client.org