Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/0jjOoiMQ7rBJlcv5gFqsuEqUmLc.roa
File: 0jjOoiMQ7rBJlcv5gFqsuEqUmLc.roa (raw, json)
Hash identifier: DN20a/j0ZRvASJO1HaygBcPenkYHS2vDAUKV3az88mI=
Subject key identifier: D2:38:CE:A2:23:10:EE:B0:49:95:CB:F9:80:5A:AC:B8:4A:94:98:B7
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 01889A358398A488C65A326664EE5963A3F0
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/0jjOoiMQ7rBJlcv5gFqsuEqUmLc.roa
Signing time: Thu 08 Jun 2023 08:52:58 +0000
ROA not before: Thu 08 Jun 2023 08:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206424
IP address blocks: 46.8.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:35:83:98:a4:88:c6:5a:32:66:64:ee:59:63:a3:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jun 8 08:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d238cea22310eeb04995cbf9805aacb84a9498b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:37:e5:7f:2c:0c:5a:34:99:b2:c3:5e:03:11:
3f:7a:6d:9e:d1:86:65:26:4a:fb:66:11:f4:e9:c2:
e9:c4:95:18:5b:c0:62:d0:3d:7d:9b:9f:5f:d8:2a:
e0:03:23:e3:bc:cd:44:82:42:e9:34:7d:12:a8:e2:
31:d3:ca:5b:2d:03:3f:82:e2:11:85:3a:74:c8:1e:
b0:92:1f:00:25:20:58:e4:a9:7d:b3:ac:e3:42:b7:
f8:b5:0e:c3:d1:0e:03:d2:bc:fb:34:7e:09:d3:e4:
48:0b:56:a5:a2:f2:41:4f:8b:15:00:5b:4c:50:2d:
60:f3:49:06:73:6c:b4:9c:ee:26:f1:ed:d6:0a:2b:
3b:f4:33:b7:f6:e6:05:6c:54:53:d9:c6:57:0d:b9:
cd:66:dc:a4:83:77:ab:de:12:12:37:46:92:82:4d:
54:d0:7a:97:6c:d4:cd:9b:fc:b7:ad:5d:4a:31:89:
1c:b5:87:78:19:3e:6f:1d:42:e6:7b:b5:9d:23:e3:
86:d4:0f:d1:fd:24:94:b0:b7:e1:c6:85:37:0f:1c:
17:aa:0f:67:a3:08:fe:19:82:2c:63:3f:6c:5a:6a:
f0:1e:69:3d:da:ad:6f:7b:84:e3:6a:b6:10:81:6a:
bc:30:f1:7d:68:d4:13:48:f7:a8:de:b8:e5:1e:1f:
09:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:38:CE:A2:23:10:EE:B0:49:95:CB:F9:80:5A:AC:B8:4A:94:98:B7
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/0jjOoiMQ7rBJlcv5gFqsuEqUmLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.27.0/24
Signature Algorithm: sha256WithRSAEncryption
02:e6:fb:9d:ce:94:ea:c1:81:d4:3a:78:87:f8:ff:fe:c5:bb:
57:e9:ba:60:6f:08:68:b3:22:96:6a:d6:dc:12:78:ef:c6:d6:
f0:8d:80:4a:ac:4c:b8:e4:0e:26:35:ac:71:ad:f3:67:af:60:
d3:20:4c:ba:ba:6a:2c:57:bd:96:85:d6:a8:7c:72:1a:31:a0:
2e:72:36:7d:23:3f:cb:7d:dd:8d:18:df:f8:d2:71:cb:4f:04:
d3:4c:a1:57:90:3e:70:48:f7:a3:9b:c8:09:48:7a:4b:d0:44:
e1:76:06:c0:e2:35:53:bb:bb:59:81:31:c0:02:63:55:40:2b:
b0:93:35:2f:b6:25:db:3b:83:50:cc:9c:9d:9b:ae:06:d9:68:
67:07:dc:31:c9:93:9f:02:99:35:8e:22:8e:79:6b:e6:63:f1:
3f:46:5a:23:ba:4a:80:63:4e:cd:55:24:78:21:6f:f3:20:e5:
10:51:64:24:15:ee:b0:61:ad:d2:f7:49:4a:35:2d:d8:6d:2a:
6a:b2:c3:8e:96:3f:d6:f6:a3:ba:28:1b:59:55:24:d6:e8:a6:
4f:9c:1e:92:76:56:7b:0f:6f:ee:43:b8:90:38:64:2d:9b:6e:
e5:16:9a:67:a8:e6:27:ee:98:73:6d:3b:8c:c4:64:c5:f5:5f:
d5:1b:31:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:58 2024 by rpki-client on console-ams.rpki-client.org