Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/h1FGxHdiOi79NK1sAaotkuk4KY8.roa
File: h1FGxHdiOi79NK1sAaotkuk4KY8.roa (raw, json)
Hash identifier: mUae4X+VSB3yskKp22RoUh6wmUNC2abidwXVi8P3IQI=
Subject key identifier: 87:51:46:C4:77:62:3A:2E:FD:34:AD:6C:01:AA:2D:92:E9:38:29:8F
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 018EE1C1F005E1D53823C77729B8FCCCABC4
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/h1FGxHdiOi79NK1sAaotkuk4KY8.roa
Signing time: Mon 15 Apr 2024 12:36:07 +0000
ROA not before: Mon 15 Apr 2024 12:36:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 149767
IP address blocks: 46.20.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 23:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:c1:f0:05:e1:d5:38:23:c7:77:29:b8:fc:cc:ab:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Apr 15 12:36:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=875146c477623a2efd34ad6c01aa2d92e938298f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5b:f2:1f:4f:c8:20:50:a0:2e:8b:01:22:b3:
39:dd:8d:eb:53:18:c1:56:ef:0d:b6:9f:ef:2e:81:
82:74:c4:1c:45:9d:81:dc:89:bd:0b:72:35:28:fe:
d8:74:60:38:ff:6c:f8:a6:f2:b4:3c:5f:6e:30:4b:
2d:dd:3c:41:3e:82:7f:ad:8f:3a:a2:da:80:93:a5:
0a:67:66:e2:94:31:43:86:41:bd:12:c5:8c:c2:1a:
4b:df:3d:9c:70:f7:c2:9d:c4:06:ae:72:39:75:15:
fe:90:2a:b1:21:6c:f2:a9:64:35:0e:fd:0c:10:49:
e7:41:7a:ad:c6:42:10:59:0f:e4:9c:78:96:70:29:
68:3c:ae:2b:8f:92:78:c0:6a:b2:54:f9:61:5a:90:
dd:2b:8a:a9:3e:59:f8:f7:6b:6e:97:36:6c:7c:79:
55:ad:99:2b:50:ca:cf:7d:b8:db:fd:7c:e9:df:13:
ad:72:32:3d:7f:25:d6:22:dc:a2:9d:ac:93:7a:69:
8d:d8:32:5b:c3:39:9c:7d:84:9f:97:38:39:e1:94:
dd:3f:1f:cb:19:5d:8b:bc:0e:b1:bc:f8:66:16:58:
6a:af:0e:ae:b5:b4:ac:e0:94:87:ef:61:bf:2e:42:
9d:50:75:b3:56:a6:a9:ce:ae:5c:74:fa:78:69:47:
a3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:51:46:C4:77:62:3A:2E:FD:34:AD:6C:01:AA:2D:92:E9:38:29:8F
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/h1FGxHdiOi79NK1sAaotkuk4KY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.109.0/24
Signature Algorithm: sha256WithRSAEncryption
62:f0:a5:8c:48:c8:d4:75:51:6d:93:c2:b1:48:b6:08:70:bf:
fc:97:5b:1a:f8:59:72:f2:64:c3:67:43:e7:35:40:a3:01:d2:
37:27:fd:8c:9a:fe:9e:db:bb:d7:68:ec:71:1e:18:8f:cc:b4:
58:aa:66:d6:42:6a:5e:d7:5f:7d:a2:a7:52:cb:5b:31:ed:cb:
7d:35:c0:cf:1f:fb:18:6a:9d:05:dc:3e:ba:6d:80:91:2d:ef:
08:e7:6a:9d:10:58:dc:1a:50:2c:a7:05:b3:34:87:a3:2e:cc:
16:78:d4:21:c9:f6:65:54:7e:41:dc:1e:96:e8:fa:4d:ad:f6:
fc:29:ff:f6:bb:3c:71:ff:13:6a:4c:be:a8:65:ff:33:b3:fe:
79:2f:51:7b:19:a5:75:7a:4f:1d:a6:20:30:11:54:80:84:c5:
d7:bb:51:3e:8c:08:94:be:89:e4:ed:54:c7:6c:72:9e:13:a9:
4a:78:6f:7b:21:1b:e7:8e:05:e2:a8:78:b4:fb:9f:f7:de:46:
53:88:7f:ec:47:40:a0:63:f4:d4:f6:1b:33:a2:4a:32:74:b2:
4a:f7:1d:00:5d:a1:50:81:c9:4f:e0:05:8c:8c:62:88:a1:13:
63:45:84:b5:db:22:4a:52:4f:99:18:ca:7c:6d:e4:72:8c:aa:
24:61:f7:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 00:52:10 2024 by rpki-client on console-ams.rpki-client.org