Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/CBNxPnpT67zC5ewfYAg5rw_yc1M.roa
File: CBNxPnpT67zC5ewfYAg5rw_yc1M.roa (raw, json)
Hash identifier: nQSEmLZwDspEcfxsEUqqJlUzn7KfUn8pIqT8z+6FDqE=
Subject key identifier: 08:13:71:3E:7A:53:EB:BC:C2:E5:EC:1F:60:08:39:AF:0F:F2:73:53
Certificate issuer: /CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Certificate serial: 01860849379697D50AA5630B28E2E417C95E
Authority key identifier: 55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/CBNxPnpT67zC5ewfYAg5rw_yc1M.roa
Signing time: Tue 31 Jan 2023 14:44:21 +0000
ROA not before: Tue 31 Jan 2023 14:44:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198228
IP address blocks: 46.253.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:49:37:96:97:d5:0a:a5:63:0b:28:e2:e4:17:c9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=557b0ac10b8642a27dd3d74ed6cb5ee045e67b97
Validity
Not Before: Jan 31 14:44:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0813713e7a53ebbcc2e5ec1f600839af0ff27353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:06:15:7f:8a:2c:99:75:01:e5:8c:39:20:93:
b9:77:c8:c5:f5:70:86:67:3e:86:b3:5c:10:7d:32:
99:3c:26:fb:f9:84:db:48:d2:8b:ca:2f:81:c2:5b:
d0:5a:a9:e5:4c:be:72:b8:b2:1d:10:2a:25:2a:57:
f8:46:b6:f6:90:ad:4e:58:d0:cd:c5:ae:df:f4:ff:
6e:fa:11:95:97:13:6e:4d:c8:4e:58:e5:2c:61:42:
b9:19:be:9f:d0:5a:13:68:c0:78:9c:9b:07:41:cb:
19:9c:21:c0:bc:cf:ac:82:1d:b6:e9:99:b2:00:bd:
79:de:76:cd:24:42:c5:09:5b:10:cf:59:cd:a2:09:
77:b2:d4:a2:04:fd:ae:46:0c:ec:4f:98:d5:ec:e5:
95:7e:c4:e9:ef:4b:4f:81:c4:38:57:6c:54:1c:69:
00:ed:a0:db:7b:79:76:80:19:d4:d9:52:9b:b2:98:
ca:e3:a8:cd:ba:62:4a:56:39:6c:fc:8a:6d:3c:6c:
de:bd:fa:66:96:b5:dd:ca:2f:72:35:ad:c9:29:59:
00:c0:f0:b4:e3:de:fc:b1:c7:48:f9:5f:38:94:fd:
f4:4f:a3:44:f7:dd:e9:65:a5:55:49:4b:24:c1:6e:
9d:c1:e2:16:71:3f:d5:ee:be:d5:1e:6e:3f:fe:31:
92:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:13:71:3E:7A:53:EB:BC:C2:E5:EC:1F:60:08:39:AF:0F:F2:73:53
X509v3 Authority Key Identifier:
keyid:55:7B:0A:C1:0B:86:42:A2:7D:D3:D7:4E:D6:CB:5E:E0:45:E6:7B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXsKwQuGQqJ909dO1ste4EXme5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/CBNxPnpT67zC5ewfYAg5rw_yc1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5e5c30-8aa4-47e8-bd8f-fbe1a0d0aa98/1/VXsKwQuGQqJ909dO1ste4EXme5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.9.0/24
Signature Algorithm: sha256WithRSAEncryption
94:c9:6a:d8:5a:a8:03:a2:f5:16:6d:99:2b:e6:80:4a:bd:6c:
af:7a:ec:16:96:38:d3:99:a7:c6:29:49:44:13:c0:18:ea:d9:
4d:08:83:3e:0e:1a:90:17:29:97:93:bb:e7:69:6f:94:5d:e8:
d6:39:03:e1:eb:58:04:99:8b:eb:14:6b:9c:8e:bd:66:43:d5:
7d:e1:4f:10:97:81:e8:6b:e3:8d:80:93:2d:0e:a2:7c:91:31:
b2:fe:02:c7:fe:a9:fd:a7:2a:0d:d1:03:6c:df:e3:33:09:8a:
2b:ae:23:0f:80:94:44:a1:b3:93:06:4a:97:fd:11:3c:b1:5a:
6c:50:89:92:83:fc:7f:51:9a:b6:e9:f5:c6:ce:40:df:94:6c:
c2:8a:50:63:69:51:8f:51:29:d7:81:e5:ab:cf:fb:aa:b8:3a:
c1:5b:78:71:fa:18:b2:48:e1:b3:1a:d7:7e:c9:f9:de:d2:ad:
dc:46:00:76:d6:e4:01:2a:51:9e:3d:a7:07:76:69:dc:a4:f6:
68:28:e1:6d:fd:3b:ab:5a:d8:49:ac:5c:a7:55:1d:d5:f6:3e:
56:18:b8:4e:87:c7:cc:cd:e1:1a:97:43:a2:97:bb:7a:94:1f:
d4:02:3e:be:bf:20:7b:41:c9:d4:4e:31:9d:af:ed:ef:ed:4a:
df:df:58:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org