Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/IlIpa2m0MdOmW35Wrw_ZrZYXiSo.roa
File: IlIpa2m0MdOmW35Wrw_ZrZYXiSo.roa (raw, json)
Hash identifier: ZXQxlmDZ2lNWYa3QJXBF8KCFXckD5TPL9alQIU8ixrY=
Subject key identifier: 22:52:29:6B:69:B4:31:D3:A6:5B:7E:56:AF:0F:D9:AD:96:17:89:2A
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018FC6040287449417147099C2BAAE2768C5
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/IlIpa2m0MdOmW35Wrw_ZrZYXiSo.roa
Signing time: Wed 29 May 2024 20:21:42 +0000
ROA not before: Wed 29 May 2024 20:21:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214858
IP address blocks: 46.38.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 12:38:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c6:04:02:87:44:94:17:14:70:99:c2:ba:ae:27:68:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: May 29 20:21:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2252296b69b431d3a65b7e56af0fd9ad9617892a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:d8:94:59:02:09:3d:a8:24:af:fe:00:cd:
2b:44:54:ca:49:84:6d:91:cb:cf:64:63:67:fd:b0:
bf:07:57:a3:79:1a:7a:b7:6b:f1:a0:e1:1c:11:a8:
87:9d:a4:71:e2:36:25:91:67:72:1f:2a:41:95:c2:
e3:a2:53:68:d2:2a:7f:32:f2:c1:c4:08:57:c6:fd:
21:4c:78:df:42:36:ec:ef:f8:1c:0c:d0:6a:d2:1f:
8f:74:28:2c:47:0f:a7:57:6d:c3:46:0a:84:91:10:
51:ff:a4:50:81:64:40:f5:53:50:b4:97:ea:45:a6:
f2:5d:75:78:c1:ff:85:a0:6e:93:29:8b:42:2b:7e:
cc:eb:11:d5:02:a9:85:38:f4:41:59:5b:22:03:b7:
92:d1:2d:de:1d:74:c2:5e:3c:4f:af:dd:19:66:de:
6d:2c:f1:63:fd:35:ce:8d:b7:d9:71:64:91:10:8f:
33:29:a0:79:98:1c:67:b1:bb:c9:a3:9c:0c:86:a4:
2f:5f:95:2b:8f:92:7d:63:02:8a:7c:c5:11:89:3a:
7a:90:e9:77:e5:f6:93:6c:b4:5b:b5:0e:6d:18:7c:
90:fd:66:e9:14:d6:87:85:9f:b9:01:31:91:3e:c4:
60:e7:00:5b:13:75:d8:d3:f3:1d:75:b5:4f:94:fb:
b2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:52:29:6B:69:B4:31:D3:A6:5B:7E:56:AF:0F:D9:AD:96:17:89:2A
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/IlIpa2m0MdOmW35Wrw_ZrZYXiSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.157.0/24
Signature Algorithm: sha256WithRSAEncryption
39:7a:0c:52:f7:d8:52:13:dd:f8:67:6b:95:86:93:f4:00:f5:
05:42:48:43:ff:c6:44:a1:57:43:f7:25:ce:bc:e2:c7:1e:6d:
c9:d4:e7:80:f9:92:70:99:ce:e0:63:94:a3:20:b7:61:ff:d4:
82:7f:57:c1:b4:50:80:ee:c9:ce:6f:16:ce:8d:41:f5:12:1b:
e6:c2:0e:b5:48:d3:f6:d9:e4:a4:e8:2c:56:7b:a6:0c:41:0d:
e0:63:2f:49:7b:c5:cd:a6:e2:0c:cb:52:6e:47:8c:3d:67:58:
2f:17:bd:11:22:83:f8:f6:ab:eb:ac:1e:3f:3e:65:4f:b6:ee:
c1:01:d6:e8:52:69:7a:57:e7:86:e5:08:6c:89:07:19:d5:d9:
7a:7d:2c:79:2b:3c:d1:70:80:70:01:e2:98:af:c3:30:76:54:
52:a9:e8:f9:52:2f:84:15:4e:be:37:e6:ba:03:4a:b9:2a:81:
d9:b7:ee:0a:52:89:17:b7:13:4f:f5:18:35:91:b4:fc:2c:5b:
9b:a0:7f:91:6d:ee:50:16:68:ab:5e:a0:67:8d:bb:07:ff:b8:
e6:04:38:a3:e7:bd:c2:7a:cb:4f:a5:e2:e8:c4:b3:70:b9:c5:
db:6f:fe:15:14:fc:dd:d4:1a:c6:c9:5f:1f:4a:6d:14:f1:8a:
9f:0c:a7:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 9 15:12:05 2024 by rpki-client on console-fra.rpki-client.org