Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/WBXkQAg1XEO__QdE8XHt4-cOsI8.roa
File: WBXkQAg1XEO__QdE8XHt4-cOsI8.roa (raw, json)
Hash identifier: cR17vkzePmBMHHGHNTRm8rGRve+JNwATMydw3F4uNlo=
Subject key identifier: 58:15:E4:40:08:35:5C:43:BF:FD:07:44:F1:71:ED:E3:E7:0E:B0:8F
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 01886DC85312A2BBE9596A45A623E0870EB6
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/WBXkQAg1XEO__QdE8XHt4-cOsI8.roa
Signing time: Tue 30 May 2023 17:50:24 +0000
ROA not before: Tue 30 May 2023 17:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208936
IP address blocks: 46.8.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6d:c8:53:12:a2:bb:e9:59:6a:45:a6:23:e0:87:0e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: May 30 17:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5815e44008355c43bffd0744f171ede3e70eb08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a5:e3:da:8c:ef:0f:a8:c2:e6:61:7f:bd:44:
fa:ca:91:65:83:67:0b:35:73:37:d1:33:f3:29:24:
3b:18:6a:8d:ad:9c:27:89:c8:38:32:ca:e8:8c:d8:
14:34:d3:5e:5b:3e:82:66:db:99:5f:49:c0:62:0b:
f3:7c:c4:a4:5f:4e:da:5b:03:a7:87:9f:79:5a:c0:
2d:6e:9f:00:6c:39:dd:3c:f7:4b:29:e0:44:d7:7f:
2f:cf:f1:33:b9:e3:e2:43:12:45:a9:4b:dc:82:28:
a4:83:3b:54:a8:0c:c9:d0:50:ff:c2:61:b6:f1:21:
3b:f9:3b:58:5a:93:3b:30:ff:84:5e:5a:97:0d:6c:
f2:6b:41:83:e3:6c:a5:8c:00:c4:3b:ee:f1:e2:d7:
31:cc:9c:e3:cb:c0:7c:c9:d2:1d:3b:59:75:f6:82:
63:a6:66:4e:72:87:4d:a0:7c:56:94:2d:22:d8:c2:
51:c2:50:e9:eb:28:67:3e:ae:9d:da:ef:fb:37:d4:
e2:15:36:9c:4d:eb:48:23:9a:50:5c:3a:fc:85:eb:
8a:a7:9c:23:c3:8b:fb:16:12:c3:01:8d:cd:1a:49:
41:8c:d8:99:f2:ff:5b:59:c9:55:23:e4:0b:b0:26:
ab:b9:04:24:5f:a1:e2:83:40:7d:a4:3a:53:43:5c:
ef:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:15:E4:40:08:35:5C:43:BF:FD:07:44:F1:71:ED:E3:E7:0E:B0:8F
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/WBXkQAg1XEO__QdE8XHt4-cOsI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.159.0/24
Signature Algorithm: sha256WithRSAEncryption
af:40:10:d6:4d:ce:71:5a:3e:69:37:15:8a:f5:7d:2f:48:bd:
2b:17:aa:44:a5:44:64:70:ad:72:4b:56:4b:ae:30:41:cc:d6:
0e:1f:91:2d:fc:92:c7:40:ad:19:70:05:87:8f:f0:11:84:2f:
03:99:89:e5:25:57:94:dd:27:7d:bd:11:dd:60:d8:95:62:5b:
9f:ef:1d:87:8a:f0:6c:e9:32:b5:b8:15:4a:bf:de:47:a7:a8:
f0:06:97:ad:1e:4b:79:40:1d:01:63:b0:e6:91:cd:58:a5:83:
0e:c2:92:a1:10:b9:91:25:2d:08:4f:e4:78:8e:1b:8e:42:19:
37:3a:69:5c:e5:ca:22:98:cc:84:b9:bd:a7:4a:02:5b:c5:51:
96:19:a2:99:4f:41:0b:4d:1a:ad:ca:30:0f:bb:fe:1e:1c:5c:
19:76:c6:27:54:b1:db:97:d5:02:3b:8c:14:4d:a1:35:15:85:
88:c6:9b:fc:4d:6c:a4:cf:ef:49:a1:07:57:db:77:3c:07:36:
13:3a:6c:65:5e:db:9b:32:a9:98:3e:34:59:c5:ca:d9:22:e8:
5b:4b:20:4d:cf:2b:e7:83:b4:4f:be:25:50:83:29:bb:fe:cc:
17:4e:82:64:8f:9c:2d:ee:71:75:a4:d8:3e:4c:60:b0:cb:04:
20:22:7c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org