Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/ImdG3IrVhwVnbFGWYp7vL6Wg4rY.roa
File: ImdG3IrVhwVnbFGWYp7vL6Wg4rY.roa (raw, json)
Hash identifier: Iprrbcf8W7vJ2W0FlDZ5iObMk1UfIq1VF1l680Nemak=
Subject key identifier: 22:67:46:DC:8A:D5:87:05:67:6C:51:96:62:9E:EF:2F:A5:A0:E2:B6
Certificate issuer: /CN=1cee91296c94992d151a232240e6cf3a176d2039
Certificate serial: 01857102CFD9CB7C5332BBB1F72976C50C1F
Authority key identifier: 1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/ImdG3IrVhwVnbFGWYp7vL6Wg4rY.roa
Signing time: Mon 02 Jan 2023 05:44:47 +0000
ROA not before: Mon 02 Jan 2023 05:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212621
IP address blocks: 46.172.90.0/24 maxlen: 24
46.172.93.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:cf:d9:cb:7c:53:32:bb:b1:f7:29:76:c5:0c:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cee91296c94992d151a232240e6cf3a176d2039
Validity
Not Before: Jan 2 05:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=226746dc8ad58705676c5196629eef2fa5a0e2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:02:58:77:07:e8:ec:15:2a:08:1f:c5:a5:82:
b5:d8:a0:6d:ae:58:42:45:99:a6:61:e2:68:c2:b2:
c3:18:fb:bb:df:65:f7:eb:65:d8:d0:e7:6f:d3:92:
6c:0b:42:56:ec:ca:98:0e:17:0c:1b:a7:a4:fa:be:
35:5d:2c:fb:3e:a0:dc:75:5a:6a:6c:0a:4c:07:77:
ae:59:a8:8e:31:9c:6d:7b:aa:1c:f8:ca:a5:52:20:
5d:3d:7d:ed:91:7c:a0:f0:c2:9e:6b:74:85:7d:be:
87:1c:1f:a3:03:9e:1e:c9:69:cd:51:45:ef:9d:78:
f3:41:4d:fc:b1:a1:29:b8:e9:84:27:0c:26:70:89:
21:84:1d:aa:87:e3:48:ef:b0:5a:dd:2d:95:eb:3d:
d5:d6:db:72:3f:50:d8:11:70:17:6a:7a:12:fe:24:
56:30:5a:b7:75:6d:79:f6:14:e7:65:1f:6d:cb:79:
c9:97:ff:8e:70:d0:a4:bd:dd:ca:35:7c:2b:bc:8e:
de:eb:90:32:3c:36:68:91:bb:69:fc:a7:82:3b:5c:
75:6e:71:94:d9:6e:c3:3d:4b:1d:50:c8:cd:c6:a5:
88:8d:3e:b7:65:15:de:f0:e1:87:63:f0:f1:42:db:
96:a4:b9:94:58:c1:49:9a:25:ea:c8:a1:fe:ab:12:
54:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:67:46:DC:8A:D5:87:05:67:6C:51:96:62:9E:EF:2F:A5:A0:E2:B6
X509v3 Authority Key Identifier:
keyid:1C:EE:91:29:6C:94:99:2D:15:1A:23:22:40:E6:CF:3A:17:6D:20:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HO6RKWyUmS0VGiMiQObPOhdtIDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/ImdG3IrVhwVnbFGWYp7vL6Wg4rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/c91ec3-2820-417b-9aad-bacab475e6cc/1/HO6RKWyUmS0VGiMiQObPOhdtIDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.172.90.0/24
46.172.93.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:65:87:bc:de:e1:08:ce:0f:b3:b1:cb:8d:4f:a6:fa:fd:15:
3f:b6:51:8a:ed:e3:26:6b:f1:29:a1:cf:18:ff:1d:a6:30:d6:
12:21:96:a2:57:38:b7:0f:f9:94:52:1b:b0:29:5f:32:b5:36:
81:d9:ed:1b:71:46:78:bf:c5:5a:91:8f:62:00:39:85:1a:4c:
34:97:4c:2d:22:11:1b:b7:0f:9f:67:73:5d:2a:95:9c:23:8e:
2d:c5:b9:8e:06:ba:32:22:6f:eb:5c:23:b4:44:19:d4:bb:e5:
52:43:5f:29:ea:1b:14:d5:5e:b1:2c:42:9f:03:39:e5:2c:3c:
6c:c9:8f:e1:79:52:5b:93:ab:81:2c:20:de:8c:8f:c9:8d:14:
7e:ee:a3:87:04:37:00:27:80:bf:3e:f7:10:fe:97:cd:41:60:
e4:6f:d7:c5:65:7b:6f:63:c4:10:22:73:3c:98:48:9c:68:19:
d9:27:94:53:60:7b:0c:91:51:e5:7b:24:34:e1:4c:ea:66:a8:
79:65:ad:30:d4:20:63:1f:95:3c:18:58:33:ba:40:76:82:3e:
24:9b:cf:02:55:d9:18:e0:b3:ea:c7:85:98:70:14:71:26:da:
6c:fb:fb:15:bd:38:41:7d:5c:cd:72:14:a1:e6:85:28:c9:3b:
25:45:ec:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:40 2024 by rpki-client on console-ams.rpki-client.org