Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/0uheVS3ve8Zr_vRObEvaOt38bwM.roa
File: 0uheVS3ve8Zr_vRObEvaOt38bwM.roa (raw, json)
Hash identifier: GT2olZH9vfK6xYIDDLc57ttc/aftfTzuyRxL9x7f4IU=
Subject key identifier: D2:E8:5E:55:2D:EF:7B:C6:6B:FE:F4:4E:6C:4B:DA:3A:DD:FC:6F:03
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01909780BABC2F25B9CABDB7B01EB229AF7B
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/0uheVS3ve8Zr_vRObEvaOt38bwM.roa
Signing time: Tue 09 Jul 2024 12:38:34 +0000
ROA not before: Tue 09 Jul 2024 12:38:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201949
IP address blocks: 46.38.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 10:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:80:ba:bc:2f:25:b9:ca:bd:b7:b0:1e:b2:29:af:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 9 12:38:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2e85e552def7bc66bfef44e6c4bda3addfc6f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:54:f5:5b:ec:9e:d1:fb:a9:76:2f:e8:65:a8:
77:fd:d1:d2:f9:4e:eb:00:ad:a7:cd:79:5d:00:63:
35:27:66:da:0d:ea:5e:39:2b:c4:cd:da:6b:2d:9e:
53:b6:a2:61:32:ea:08:2b:01:c6:21:63:65:73:b3:
8c:10:df:93:b9:79:74:18:b1:0e:c6:f7:d3:7b:36:
1f:77:c1:e2:a1:d5:0d:43:cc:ea:f1:a9:6d:2b:f8:
34:91:41:8b:b7:f3:e9:e3:ed:89:09:4b:f8:07:d6:
b2:67:38:47:c6:69:f5:9e:13:d0:22:94:bc:47:a5:
51:08:5a:e1:d7:34:1d:d3:e8:84:f3:06:29:93:a1:
e1:a8:55:f0:2d:12:38:3b:d9:18:f7:23:e2:6e:b7:
9b:a5:fc:45:8b:64:62:30:b4:f2:28:49:73:08:33:
89:22:23:b0:7f:9a:b1:3d:1a:e9:0a:09:50:ac:b5:
af:79:4b:8d:ac:42:7d:07:d6:c8:ed:aa:ef:46:ee:
5b:48:bb:8d:25:2a:99:15:4f:b1:6a:d0:8a:d2:89:
87:05:4a:22:8f:0f:22:eb:c8:a2:a9:d6:31:b1:3f:
09:23:cd:7b:4b:52:87:b0:65:8f:8f:ce:ea:6f:26:
86:04:32:74:b9:48:29:ef:eb:ed:78:b7:3f:3b:10:
db:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E8:5E:55:2D:EF:7B:C6:6B:FE:F4:4E:6C:4B:DA:3A:DD:FC:6F:03
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/0uheVS3ve8Zr_vRObEvaOt38bwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.157.0/24
Signature Algorithm: sha256WithRSAEncryption
84:cc:cf:1b:24:f0:0e:df:32:8e:8f:9e:0d:af:89:f9:33:29:
dc:ba:0d:f1:b2:63:37:19:33:47:00:6f:ed:38:7e:d7:ab:4b:
44:dd:b5:b7:a2:1d:92:14:22:72:3a:77:62:ec:9b:07:af:c6:
0d:68:c4:f7:6f:be:a2:37:93:f8:38:f5:36:cd:00:e0:39:75:
39:43:c6:67:20:6f:b0:15:7d:91:89:1c:6a:27:58:a2:e3:a3:
29:9a:78:d5:a2:6b:3a:04:4a:ba:ad:9c:0b:db:c5:f5:eb:d6:
1b:2d:3f:dc:f4:dd:18:a7:8d:e4:53:bb:b3:1a:e9:02:08:27:
a5:41:b2:0d:69:dd:9c:2d:c3:47:bb:2e:a2:08:aa:aa:6b:38:
e7:06:7d:a2:ab:44:79:d5:68:30:92:e1:bf:d9:e5:75:98:20:
fb:c8:ba:fa:48:f1:2d:97:5b:12:0f:9e:92:92:1b:7c:f7:b9:
29:b5:73:98:1c:90:2c:d0:31:23:80:4e:4e:3a:e9:88:97:61:
4c:6a:12:df:28:06:0f:3c:5a:35:4f:e6:38:13:5e:37:22:d9:
8e:38:28:e4:a7:1d:65:49:39:4d:f0:4e:0a:5a:ac:80:bf:28:
e2:0a:e1:a1:dd:07:55:38:18:8d:7d:60:8a:9f:b5:cb:09:3e:
40:c9:1e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 12:23:05 2024 by rpki-client on console-ams.rpki-client.org