Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/4rxuUTBQGxxkHrJ0Aoly-C6xNBw.roa
File: 4rxuUTBQGxxkHrJ0Aoly-C6xNBw.roa (raw, json)
Hash identifier: nD7iZuQx8OS1oBU1pynkKq+Y3aF/7KBEnMfhWdC0e70=
Subject key identifier: E2:BC:6E:51:30:50:1B:1C:64:1E:B2:74:02:89:72:F8:2E:B1:34:1C
Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039
Certificate serial: 01857102CE7F877C3657EB96BF7FAE8EF908
Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/4rxuUTBQGxxkHrJ0Aoly-C6xNBw.roa
Signing time: Mon 02 Jan 2023 05:44:47 +0000
ROA not before: Mon 02 Jan 2023 05:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203088
IP address blocks: 46.172.80.0/24 maxlen: 24
46.172.87.0/24 maxlen: 24
46.172.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:ce:7f:87:7c:36:57:eb:96:bf:7f:ae:8e:f9:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039
Validity
Not Before: Jan 2 05:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2bc6e5130501b1c641eb274028972f82eb1341c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d1:37:45:a6:62:71:15:32:89:a1:67:28:5f:
1c:44:9e:a4:0f:12:a0:8f:c0:d0:c5:2e:7b:fc:64:
2e:f4:2c:5c:73:57:f3:3d:ab:90:78:e7:05:13:4e:
50:5a:48:1b:b8:14:fb:aa:98:91:3c:60:0b:a5:01:
da:eb:2b:d8:34:98:da:70:59:86:8c:7f:95:fa:40:
18:9c:00:03:9d:be:b7:56:87:d1:3a:1f:76:18:b5:
83:a9:b6:c6:6f:20:1d:99:56:16:a1:c7:62:3a:a7:
8f:32:3a:39:a3:ca:25:46:93:30:bf:37:52:4b:63:
cd:30:98:4b:3b:6f:85:ee:67:d1:ee:2d:33:c0:4b:
49:93:8f:1f:d8:59:2b:a7:03:b8:ec:1f:73:7c:c1:
71:22:90:20:a4:96:a0:c8:ac:47:7e:86:43:8c:f3:
0f:0f:cd:a8:b4:e2:ca:73:bb:b0:35:1e:69:11:52:
bd:c4:6f:91:eb:ca:14:20:ea:b1:dc:5a:f1:d5:2f:
e6:71:e6:ab:c1:3f:a5:44:ca:df:b1:4c:97:97:1a:
0f:57:93:a2:19:87:2e:c0:82:38:71:94:f8:6d:42:
38:44:17:1b:20:29:49:59:8c:02:e1:ca:48:f0:37:
0d:25:b2:77:e8:77:60:4f:bb:2d:b7:af:e0:f3:c3:
2d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BC:6E:51:30:50:1B:1C:64:1E:B2:74:02:89:72:F8:2E:B1:34:1C
X509v3 Authority Key Identifier:
keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/4rxuUTBQGxxkHrJ0Aoly-C6xNBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.80.0/24
46.172.86.0/23
Signature Algorithm: sha256WithRSAEncryption
90:5c:01:de:49:73:24:2c:9a:67:5f:13:5f:64:fa:aa:93:79:
06:08:0c:95:d9:ed:7f:ec:62:75:bd:fa:17:a7:8c:cb:33:0d:
a2:16:99:3a:f1:b8:6d:b9:db:e7:8a:43:70:e3:dc:8b:0d:5f:
da:08:b1:a4:e7:24:76:80:c3:cc:82:1d:41:34:68:cf:85:ad:
af:48:65:b7:43:52:5b:49:3f:e1:c9:42:db:4d:09:01:67:c0:
0e:13:60:5e:e9:02:3e:13:3b:68:16:e2:f5:a3:4e:09:29:a1:
72:a6:cd:89:1e:6d:65:39:e2:98:b5:32:7b:3a:c9:07:20:a5:
04:94:04:b4:9d:82:15:97:73:d2:8a:85:54:6d:bd:cc:f2:56:
18:55:7e:32:62:8e:12:3e:2a:4f:6e:40:07:01:26:24:33:a7:
3a:13:c0:93:aa:c4:ec:98:f5:f5:34:94:a3:a5:e4:0e:55:56:
a0:e5:28:77:89:a6:13:c9:71:f0:e1:77:1a:77:9b:36:72:f2:
a2:a5:dc:3a:cc:37:11:97:f0:c8:d6:37:11:79:d1:c6:81:af:
42:fc:14:6a:4c:19:21:3a:1e:8b:3a:12:e2:92:fd:a1:1a:54:
82:da:0e:75:c2:f1:da:24:6a:f8:1b:4d:a1:d4:91:25:7e:23:
6f:16:1f:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org