Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/oAzRYQO57jFi6QzMlwoZVDzhh2U.roa
File: oAzRYQO57jFi6QzMlwoZVDzhh2U.roa (raw, json)
Hash identifier: gzgO+yQAmqH61kjCmTxazxqTP+JVW2HnTC8/0qhdnb4=
Subject key identifier: A0:0C:D1:61:03:B9:EE:31:62:E9:0C:CC:97:0A:19:54:3C:E1:87:65
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018572BA541D2A398A512855A796F94E7DFB
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/oAzRYQO57jFi6QzMlwoZVDzhh2U.roa
Signing time: Mon 02 Jan 2023 13:44:51 +0000
ROA not before: Mon 02 Jan 2023 13:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201746
IP address blocks: 46.8.160.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:54:1d:2a:39:8a:51:28:55:a7:96:f9:4e:7d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 2 13:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a00cd16103b9ee3162e90ccc970a19543ce18765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b6:e5:38:a4:1e:97:e6:0e:59:57:d6:5a:71:
b7:8f:77:fa:d3:e1:31:2e:ea:21:e3:73:9c:0c:c0:
34:f5:da:6f:28:03:d2:96:7c:76:51:52:02:a4:f7:
0b:c0:a2:b5:5e:87:44:f9:26:20:aa:0e:40:b0:8a:
de:2f:d4:4e:e0:84:4a:83:80:c3:d5:d1:11:af:79:
05:15:31:ec:85:6e:43:4a:cd:7b:5a:b9:17:9a:3e:
da:b1:22:18:24:01:68:15:f9:f6:af:d0:3c:34:d2:
a0:f2:c5:e0:c1:e4:01:89:e9:66:13:55:e0:f4:f1:
03:e8:3f:20:3c:a7:b5:24:58:76:b4:01:fc:ec:89:
cc:05:0e:e2:d6:c0:d1:6c:e8:63:20:14:e1:a6:d7:
5e:71:f2:d8:b5:d9:a9:20:82:5d:25:4c:07:fd:5e:
79:bf:0a:9f:0c:aa:75:59:40:bd:9d:f3:24:75:0a:
11:ad:67:be:dc:97:1e:24:d2:a7:bd:35:2a:52:6d:
cc:59:2c:3b:54:f2:5d:f2:0d:07:69:3a:04:39:27:
12:64:64:c2:34:79:9d:93:a2:a0:3c:3d:4d:c0:85:
2d:6d:50:1d:50:13:15:8d:1d:7d:a8:c8:00:a3:5d:
9f:b9:93:11:44:48:fa:7b:75:1f:9a:5a:b6:53:14:
9d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0C:D1:61:03:B9:EE:31:62:E9:0C:CC:97:0A:19:54:3C:E1:87:65
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/oAzRYQO57jFi6QzMlwoZVDzhh2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.160.0/20
Signature Algorithm: sha256WithRSAEncryption
45:d4:38:f9:6e:d6:34:20:7c:0e:3b:f4:18:5e:bd:65:b3:70:
27:d8:c1:00:54:c0:71:7f:b5:df:04:66:5b:de:04:bc:13:63:
07:24:27:19:69:e3:18:28:06:24:f2:e0:1e:3e:ac:7b:56:3b:
51:ba:8b:fc:8b:da:2f:17:c7:56:66:6d:f1:1e:c7:09:73:94:
2d:48:f6:58:43:90:bb:40:d1:2a:3d:f5:ff:b7:2b:bf:fc:3d:
54:28:20:c7:60:81:e4:05:0c:9a:06:4c:f3:cd:87:db:50:3b:
a1:29:2c:2e:be:58:10:2f:57:7b:ce:2e:9c:fc:82:65:7b:f6:
60:5b:fd:47:15:72:8b:28:fa:ab:7d:d3:53:cb:bd:fb:52:74:
9a:b3:23:cd:13:93:6d:f9:a7:ac:b5:74:89:c7:c3:18:3a:19:
b2:9d:50:69:b3:f1:26:bc:b7:66:1d:e4:18:a9:f6:8b:a3:53:
9a:cd:ba:15:8f:b5:a8:5b:93:a4:33:0e:bf:05:35:96:c8:7f:
27:88:88:eb:55:3e:06:45:1c:d4:05:d6:58:03:a0:ed:5d:08:
b6:4c:a5:30:89:27:22:e1:21:06:2f:bc:eb:28:e1:fc:a1:7a:
86:9f:62:b4:24:c6:93:0b:1b:00:e5:25:16:44:c2:9e:52:ac:
c8:24:50:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:58 2024 by rpki-client on console-ams.rpki-client.org