Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/HH1UR6rcQguN8gap3INX9JosGnA.roa
File: HH1UR6rcQguN8gap3INX9JosGnA.roa (raw, json)
Hash identifier: f27/c0ITFk8cAmJoi2p6zcAm2DxKM0+Xs+61VXKL6XY=
Subject key identifier: 1C:7D:54:47:AA:DC:42:0B:8D:F2:06:A9:DC:83:57:F4:9A:2C:1A:70
Certificate issuer: /CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Certificate serial: 0185711534FB1D6B517344051E0D404081B6
Authority key identifier: 9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/HH1UR6rcQguN8gap3INX9JosGnA.roa
Signing time: Mon 02 Jan 2023 06:04:53 +0000
ROA not before: Mon 02 Jan 2023 06:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 46.229.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Jan 2023 04:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:34:fb:1d:6b:51:73:44:05:1e:0d:40:40:81:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eb50e5386c809a0fae6530aa5e8d9825251ded0
Validity
Not Before: Jan 2 06:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c7d5447aadc420b8df206a9dc8357f49a2c1a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e7:b8:36:1e:0d:a9:67:6f:8d:c9:2e:ed:77:
3d:55:9b:f8:6e:cd:80:62:b8:d2:74:48:04:0f:9b:
f0:d4:d6:dd:1d:b9:bc:32:a1:a5:ed:29:6f:02:9a:
7b:0e:ff:c6:45:c6:e4:92:3f:97:58:94:f2:cb:83:
6c:40:9c:7d:51:ec:d3:c1:9f:5a:02:00:46:26:b2:
34:53:14:df:29:4d:f2:b6:f7:b4:0a:23:c0:b1:22:
a8:7e:0a:ae:fc:c6:bd:73:31:d4:17:6b:f6:aa:4c:
64:55:42:ec:ec:79:30:e4:92:83:40:88:0d:f6:69:
de:9d:f4:d1:ae:8c:fe:2d:f0:7c:ed:f5:6a:70:af:
1d:08:ac:08:f6:28:28:b4:ab:4a:78:fd:51:cd:84:
e1:49:aa:a2:18:4f:c6:7f:d5:ba:49:0c:0f:01:3d:
9f:5c:52:49:0b:7b:5d:76:af:9f:87:cc:fc:e1:b3:
37:27:43:c1:4b:2f:3a:b3:84:22:a9:a2:80:8d:68:
b0:7d:f6:de:ae:8c:c4:3c:6d:af:cf:5c:11:07:ec:
85:65:85:6f:36:38:1f:6e:9f:a1:0b:b2:bd:18:ef:
b7:7f:e4:72:c1:4e:1b:00:d3:fe:dc:b1:f8:3c:05:
bc:7a:71:e6:74:77:ba:3d:01:cc:bc:dc:39:03:e5:
31:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7D:54:47:AA:DC:42:0B:8D:F2:06:A9:DC:83:57:F4:9A:2C:1A:70
X509v3 Authority Key Identifier:
keyid:9E:B5:0E:53:86:C8:09:A0:FA:E6:53:0A:A5:E8:D9:82:52:51:DE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nrUOU4bICaD65lMKpejZglJR3tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/HH1UR6rcQguN8gap3INX9JosGnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b54641-a95a-4add-a45e-1cada6e8b1a9/1/nrUOU4bICaD65lMKpejZglJR3tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.229.243.0/24
Signature Algorithm: sha256WithRSAEncryption
66:3e:e7:a2:54:50:46:de:74:da:b8:15:f0:5c:28:4b:91:e6:
6a:f9:8d:4b:3e:ca:e6:ba:0a:d3:ba:ac:3e:dd:fe:bf:48:8d:
8a:8f:e3:61:eb:f4:96:e4:39:67:5b:a9:74:cc:89:ab:e0:03:
cc:98:0b:fc:f9:1c:3e:94:ee:af:a6:61:94:0a:89:4c:59:dc:
1e:69:f8:92:ef:09:ba:c8:6e:9c:39:b0:c9:0b:39:7e:9d:76:
2d:2c:87:23:34:dc:e6:1b:92:8f:75:6e:03:01:b7:e7:09:ae:
c0:62:68:34:6f:d0:8b:c4:64:7e:a6:b4:2a:36:4c:23:be:e0:
02:c5:0a:c9:57:7a:9b:85:71:02:1b:e4:59:2e:61:87:89:91:
42:c9:51:d3:97:7b:64:30:8e:c0:e7:0d:c4:e9:dd:60:c9:b0:
a5:06:11:a6:62:23:7d:8a:4a:4e:16:f5:87:2a:88:71:00:7e:
ed:68:b8:e4:50:b3:2d:17:1b:a9:b6:ca:6e:13:19:9f:d4:c2:
16:9e:9f:4b:67:c3:73:ab:39:4f:83:9f:69:3b:ce:a9:1f:51:
4d:04:07:f5:21:c6:f2:74:e1:db:4e:c3:09:35:f7:db:ad:24:
75:02:d8:98:2d:5c:c5:74:5d:a3:e7:31:ad:09:cb:a7:07:f5:
e9:1d:44:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:19 2024 by rpki-client on console-fra.rpki-client.org