Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/8eaSa38N7w3ppnZXXMikC-cGfV0.roa
File: 8eaSa38N7w3ppnZXXMikC-cGfV0.roa (raw, json)
Hash identifier: VJ0U/j+PSoiG3P39Ubyg56q6etP2bTVE/QNvDtr2D+o=
Subject key identifier: F1:E6:92:6B:7F:0D:EF:0D:E9:A6:76:57:5C:C8:A4:0B:E7:06:7D:5D
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 01893EF6D36E855603A8734A270ADB575E00
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/8eaSa38N7w3ppnZXXMikC-cGfV0.roa
Signing time: Mon 10 Jul 2023 08:41:50 +0000
ROA not before: Mon 10 Jul 2023 08:41:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49357
IP address blocks: 46.8.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3e:f6:d3:6e:85:56:03:a8:73:4a:27:0a:db:57:5e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jul 10 08:41:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1e6926b7f0def0de9a676575cc8a40be7067d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a9:3c:88:c0:b4:3a:d7:bc:76:a7:f3:df:b1:
55:2b:01:91:94:e5:18:74:9b:ce:41:44:39:3a:64:
34:ea:cf:cf:d2:b9:11:3c:28:c9:17:b7:c9:c7:fb:
c3:96:b0:31:77:e4:bc:75:fd:62:04:50:18:5b:b7:
b7:3e:a9:96:ad:a3:23:bd:65:e9:27:3b:af:ed:0d:
a2:ad:97:1f:ee:57:47:b4:75:04:08:ea:57:c3:8c:
fd:74:10:17:c6:eb:47:4e:e8:0e:60:00:46:a3:95:
34:29:5a:92:b5:05:2e:f1:ab:7f:73:0b:7f:83:40:
27:86:b2:91:34:ff:09:a2:03:a1:fc:84:ff:21:9c:
c3:91:83:97:13:71:34:3b:0a:c2:c6:31:32:36:2e:
b2:c3:29:aa:8a:c9:17:5c:6a:de:62:59:33:5c:13:
f3:76:48:a2:7a:d3:cb:8b:6f:a8:09:75:65:3a:75:
4d:50:ed:9f:c7:41:d0:cd:05:78:25:52:4c:fc:90:
63:bb:b0:fc:cc:e8:38:4b:bc:a8:60:fd:a0:f6:95:
1c:32:44:cc:38:d9:2c:36:4c:54:37:d6:06:f6:31:
e1:71:ef:92:07:9f:8b:4e:bd:35:e4:24:45:a1:30:
6f:cf:7f:66:e9:75:0e:bd:a6:26:71:25:72:5d:ae:
38:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E6:92:6B:7F:0D:EF:0D:E9:A6:76:57:5C:C8:A4:0B:E7:06:7D:5D
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/8eaSa38N7w3ppnZXXMikC-cGfV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.159.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:dc:8b:ba:02:95:c1:b3:73:bd:ad:f3:6a:b8:81:40:d3:c2:
dc:54:79:1e:db:86:41:7d:1a:fa:2f:8f:a7:49:a1:f7:92:a5:
d6:32:13:32:bd:2f:b4:27:06:8b:9f:3a:ed:ea:06:85:81:0d:
60:31:fc:94:d2:55:de:cb:13:93:3e:3b:dd:01:14:96:7b:4e:
fe:0d:5c:37:ad:21:d2:99:26:9c:dd:bf:f7:81:2a:29:d2:b2:
a4:f1:aa:16:cc:c7:d0:f6:26:cc:d7:dc:67:a3:b0:8c:cd:a3:
3f:b7:33:b0:0c:da:62:0d:17:c5:25:ad:c8:a9:63:51:b9:80:
6b:38:0e:18:28:f1:3f:db:d5:a0:55:d5:fd:32:24:06:86:9c:
6b:e5:8c:db:8e:4a:3f:f9:22:56:5b:c9:64:be:9b:0b:f2:75:
94:f2:5d:38:91:1d:93:1a:47:21:aa:92:32:7f:8d:f2:a9:92:
cb:b7:0b:da:0d:22:56:f4:c2:59:a3:85:40:95:48:32:a5:87:
c0:d4:ca:24:ef:63:fd:9d:b6:1c:d8:e0:f4:d4:a6:ca:4a:0a:
ec:0b:43:5c:60:74:7b:05:da:a1:6b:43:a5:d4:7e:f0:c4:6a:
c3:4d:c2:a0:ee:3a:f9:5e:01:be:c8:08:43:2a:69:35:1b:8c:
eb:03:78:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org