Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/rkgU0H3tOVjn3PRgbMVzlk-4TYY.roa
File: rkgU0H3tOVjn3PRgbMVzlk-4TYY.roa (raw, json)
Hash identifier: bq8xpe5QJGrpMftr0OU8S9vVc9D3nzhMyWq413/EJDs=
Subject key identifier: AE:48:14:D0:7D:ED:39:58:E7:DC:F4:60:6C:C5:73:96:4F:B8:4D:86
Certificate issuer: /CN=13a8bfb3f54754bd329180e593750265ef7e3999
Certificate serial: 018570CBDE641DD15C6F746B8F89DA620EF2
Authority key identifier: 13:A8:BF:B3:F5:47:54:BD:32:91:80:E5:93:75:02:65:EF:7E:39:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6i_s_VHVL0ykYDlk3UCZe9-OZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/rkgU0H3tOVjn3PRgbMVzlk-4TYY.roa
Signing time: Mon 02 Jan 2023 04:44:46 +0000
ROA not before: Mon 02 Jan 2023 04:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61271
IP address blocks: 46.18.109.0/24 maxlen: 24
2a11:8d00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:de:64:1d:d1:5c:6f:74:6b:8f:89:da:62:0e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a8bfb3f54754bd329180e593750265ef7e3999
Validity
Not Before: Jan 2 04:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae4814d07ded3958e7dcf4606cc573964fb84d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:65:52:e7:2e:ea:83:7d:2d:04:ca:4a:72:f8:
42:74:1b:1d:07:51:7b:51:8f:b5:d8:07:e2:6d:e4:
01:03:41:ee:d4:29:3a:6f:8d:a7:0c:31:f6:71:21:
c9:db:68:25:ba:2b:c5:2e:62:8c:c3:1f:1f:d5:5a:
2d:b1:c0:5b:95:86:44:e8:00:ba:b1:5e:ab:56:e0:
98:b0:98:b8:fd:b4:cb:bd:d6:bc:c4:b3:25:b7:31:
97:4d:d4:24:9e:59:68:11:fb:73:ab:51:9b:18:c0:
c2:f4:e6:49:d3:03:0e:a6:bf:61:db:44:e4:b1:96:
99:01:6e:32:83:82:a0:f6:72:70:a4:7c:fe:73:df:
87:c9:a6:49:d3:9f:ff:b4:af:37:3c:ee:f1:ce:13:
8d:d5:e0:59:e1:d5:4e:da:2d:db:b5:3b:b0:fe:81:
a4:51:f1:a1:41:0a:2c:fe:b5:e5:a2:f1:0c:bc:e6:
e8:54:86:5e:9e:7d:55:e4:7d:d6:92:23:6f:d3:cb:
c7:e2:58:c0:bb:77:87:a5:1b:5a:84:ba:68:e7:23:
2d:13:a6:6c:89:c5:36:29:e8:67:e2:d6:bf:5a:13:
e6:4a:ee:a4:a2:8e:d7:0d:7b:a1:3f:6e:ff:16:41:
80:27:eb:52:2f:c9:83:b0:0f:43:a0:ea:eb:bc:5a:
e1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:48:14:D0:7D:ED:39:58:E7:DC:F4:60:6C:C5:73:96:4F:B8:4D:86
X509v3 Authority Key Identifier:
keyid:13:A8:BF:B3:F5:47:54:BD:32:91:80:E5:93:75:02:65:EF:7E:39:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6i_s_VHVL0ykYDlk3UCZe9-OZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/rkgU0H3tOVjn3PRgbMVzlk-4TYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/E6i_s_VHVL0ykYDlk3UCZe9-OZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.109.0/24
IPv6:
2a11:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
1f:c9:4f:60:6e:3c:6a:36:34:fe:4e:0b:b7:9c:14:3a:a4:e2:
ea:f7:ef:09:fb:7f:3e:58:69:bd:ef:16:ce:34:7a:29:7f:3a:
b1:c7:83:7d:37:4c:40:01:96:77:67:33:97:07:52:03:95:a3:
39:79:c0:fb:14:49:a9:05:7c:7b:11:38:1b:73:e1:dd:74:1b:
48:02:2b:f5:36:a4:44:36:45:fe:67:85:06:a1:c2:21:48:72:
33:01:46:5a:59:37:bd:f0:7f:c8:5a:e0:bc:1f:18:81:bf:67:
a1:16:f6:c1:1f:10:01:93:ba:6f:fc:60:fb:ab:7f:21:54:c9:
cc:68:6f:bb:00:8a:ed:fd:a3:26:e7:9f:8b:f2:fe:2d:f8:fa:
7b:c3:89:8b:9b:35:26:bf:60:44:d3:92:4c:e1:a8:ba:4a:4b:
51:19:08:5e:67:42:f5:e8:4d:5b:85:62:ea:ec:8a:17:64:1f:
d8:92:63:fa:25:96:21:ec:40:6a:47:07:42:b4:c8:27:c1:cb:
d5:d9:a5:14:66:eb:67:bc:93:56:09:2d:cd:25:aa:bb:ce:3b:
e6:83:02:fd:e2:3b:05:81:dd:08:05:f3:e2:71:bd:9d:f4:55:
ae:68:71:5b:66:db:56:cf:30:02:70:a9:b6:60:96:b7:27:5d:
6a:3a:39:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:14 2024 by rpki-client on console-fra.rpki-client.org