Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/3OrS5zWlNTWrlFrPyXf-6NKl-c0.roa
File: 3OrS5zWlNTWrlFrPyXf-6NKl-c0.roa (raw, json)
Hash identifier: rojby7Y92agThwAMpFAOAyePFv+qqYnRB7ASUGXl/N4=
Subject key identifier: DC:EA:D2:E7:35:A5:35:35:AB:94:5A:CF:C9:77:FE:E8:D2:A5:F9:CD
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0186753BC81D2B36D346076C85A0C2DE6EE0
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/3OrS5zWlNTWrlFrPyXf-6NKl-c0.roa
Signing time: Tue 21 Feb 2023 18:28:17 +0000
ROA not before: Tue 21 Feb 2023 18:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 46.29.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:3b:c8:1d:2b:36:d3:46:07:6c:85:a0:c2:de:6e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Feb 21 18:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcead2e735a53535ab945acfc977fee8d2a5f9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7b:40:ee:ab:69:09:91:f3:15:eb:e8:61:16:
54:a9:7c:ba:62:33:1f:70:93:5f:3d:2c:dc:52:a0:
0d:76:f6:31:06:39:86:41:07:be:a3:a8:6d:d3:4b:
c3:f1:9f:04:92:8f:c4:e9:ed:cd:7b:55:a2:5d:3e:
5d:e1:59:18:5d:ea:b9:c4:89:d3:fb:96:4c:64:f2:
0d:ce:42:80:09:f7:05:09:db:60:90:12:f3:6b:65:
4a:1d:73:42:0c:8d:81:23:7b:e9:85:6a:94:65:fb:
0a:fa:73:fd:ce:46:d5:9c:9e:7d:fa:a5:33:bb:aa:
14:c6:4d:ff:49:c6:9b:39:38:dd:fd:01:62:2c:93:
63:c2:77:23:93:0f:1e:cc:7d:f7:c2:bb:de:02:9a:
6f:e2:86:8d:2f:40:35:49:29:bd:02:60:01:6b:61:
1b:cb:f9:24:34:5f:54:52:97:f4:95:5d:fe:14:da:
41:c5:a5:ac:1d:09:10:7d:3e:18:58:44:8f:64:66:
57:5a:8a:63:a7:58:4e:9f:2b:7e:d0:2a:88:b0:bf:
51:ac:9f:2a:a9:00:1a:64:eb:35:66:f3:fe:7e:4a:
c1:47:b0:a7:c7:d1:ec:eb:fb:1c:eb:6e:6c:55:30:
ae:1c:2d:99:c0:94:50:86:cc:c4:dd:3c:58:ff:0b:
a9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:EA:D2:E7:35:A5:35:35:AB:94:5A:CF:C9:77:FE:E8:D2:A5:F9:CD
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/3OrS5zWlNTWrlFrPyXf-6NKl-c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:b4:94:fe:4f:8a:f1:f5:44:02:05:72:98:34:63:41:17:86:
41:7a:53:5d:9d:b8:57:b9:82:18:92:4b:85:96:fe:d2:a6:0e:
65:f3:10:41:18:25:df:27:d8:d2:28:9d:b2:31:46:12:0c:05:
66:3b:79:bd:45:50:d2:cf:c0:5a:b2:aa:32:49:33:24:c5:c6:
24:71:d1:e7:71:4c:e2:60:57:05:79:4a:c3:77:c6:be:28:f7:
f2:1c:79:10:b8:a2:1c:e2:ec:a7:ce:3b:23:b7:ae:47:57:06:
56:df:7d:74:41:74:d5:85:56:07:15:4f:b9:86:2b:54:8a:92:
b7:33:2d:32:75:f5:38:77:74:93:26:93:e5:c2:20:5f:6d:92:
e8:e8:45:a5:18:3d:70:e6:f6:d5:55:e2:e1:9d:2b:10:cb:ff:
52:3b:c1:d7:91:ec:e0:d5:f0:43:c7:77:64:2c:12:26:6d:b4:
9b:57:a8:7a:fd:22:80:6d:17:05:1d:dc:d8:c7:7e:9e:66:0d:
50:69:4d:60:7a:d7:00:34:3a:7a:bc:6b:20:63:1f:26:cf:2a:
8a:56:e0:68:68:c4:48:02:5e:f2:78:1b:71:63:c5:8d:43:4f:
c6:37:bb:a3:00:4c:1e:ad:3f:ec:a5:66:e7:fc:8b:63:52:11:
0f:21:a0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org