Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/iFlD3NvfC1tQeH0UGEKipokZK74.roa
File: iFlD3NvfC1tQeH0UGEKipokZK74.roa (raw, json)
Hash identifier: NLPsfHeAPYTDTXoNOihcSiizP9qMHFCbkEC5bgIsdmQ=
Subject key identifier: 88:59:43:DC:DB:DF:0B:5B:50:78:7D:14:18:42:A2:A6:89:19:2B:BE
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018EA90978E4B1B1A228B381A1E0307F9F01
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/iFlD3NvfC1tQeH0UGEKipokZK74.roa
Signing time: Thu 04 Apr 2024 12:15:54 +0000
ROA not before: Thu 04 Apr 2024 12:15:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47585
IP address blocks: 46.38.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 18:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a9:09:78:e4:b1:b1:a2:28:b3:81:a1:e0:30:7f:9f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Apr 4 12:15:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=885943dcdbdf0b5b50787d141842a2a689192bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:72:d3:01:04:91:0f:e9:66:f1:fd:68:32:f9:
58:00:e7:95:dd:0b:bb:5a:56:c3:14:5f:cb:70:87:
6a:5e:b1:4b:1e:fe:35:71:ba:51:15:98:d5:db:2c:
97:e4:98:69:a7:f0:23:85:b4:ab:98:92:d8:0c:cb:
f2:50:81:20:f7:10:ef:aa:9b:e0:54:f5:41:99:5a:
97:d6:ad:a7:09:e1:a1:81:28:04:97:d0:b6:eb:2e:
7a:3a:60:b8:9e:9c:7d:60:67:0d:8f:70:d1:f3:b2:
08:e4:1a:49:1c:14:78:0d:5b:74:50:1e:00:7b:25:
b7:d9:7c:36:ed:9a:59:26:6e:9c:ab:ec:18:0c:ad:
c0:85:97:8a:c4:27:d6:c6:20:27:5e:35:6a:72:1e:
b1:a8:f4:29:f8:2c:fa:27:57:22:40:bc:d4:68:8a:
71:20:0e:17:d5:b6:ee:8a:39:09:d1:c6:cc:1c:cc:
09:0e:87:93:02:b7:ba:a2:e4:04:51:2f:2e:a5:81:
47:3e:94:df:3c:72:6b:f4:7c:20:db:8d:c9:64:54:
84:35:be:b8:68:97:6c:ef:59:e6:8d:ba:49:31:0c:
66:d7:ca:b6:f2:91:86:f5:02:2c:f0:f8:c2:81:0f:
78:f6:db:97:88:1a:9e:1c:bd:47:fe:44:60:17:08:
0b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:59:43:DC:DB:DF:0B:5B:50:78:7D:14:18:42:A2:A6:89:19:2B:BE
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/iFlD3NvfC1tQeH0UGEKipokZK74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.153.0/24
Signature Algorithm: sha256WithRSAEncryption
27:43:a5:d5:01:5a:d4:69:f2:ee:74:1e:3e:1a:0d:2d:f1:7d:
5d:15:df:66:cc:6f:ea:d3:cc:b9:a1:60:cd:5e:1a:13:dc:59:
80:3e:9c:43:ce:c0:2f:4d:f5:68:90:03:3d:6c:4a:a7:99:52:
03:02:0b:7d:78:03:46:f8:f1:ff:99:a5:c7:e7:47:17:d1:00:
96:4a:02:0e:97:b7:0a:e5:11:03:8a:66:c1:a3:54:06:98:77:
01:66:2a:7b:45:65:46:02:df:8d:38:0c:0b:8d:45:a0:42:8a:
f6:82:21:6d:14:8e:46:7a:a9:7b:dc:c4:69:c6:a3:e6:eb:ac:
fc:dc:07:62:a1:d5:f8:f7:42:25:85:1d:49:4c:2d:58:40:61:
c1:51:9b:9b:dd:59:50:c5:79:0d:bd:d7:27:2a:63:7a:2f:6f:
d6:c8:29:f8:1e:93:65:66:2e:5f:f6:98:20:5b:5a:51:1b:e0:
14:5f:7d:9a:26:71:12:ba:62:3e:67:a7:d4:f9:db:de:ee:d0:
84:1d:b4:4f:b0:12:14:8c:44:26:52:17:b9:1c:79:f2:ed:2b:
f3:3c:13:a3:b5:3f:38:ce:85:ab:35:cf:f0:0f:6c:2f:d6:5a:
9c:19:1e:53:12:20:6d:00:41:81:40:22:43:bd:7b:28:a3:ee:
cf:09:d2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org