Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/tKjBDeCRs39guP3kZgVCcPry-08.roa
File: tKjBDeCRs39guP3kZgVCcPry-08.roa (raw, json)
Hash identifier: wS+oKt6ncPImRGBO/2OgyMhf0rdJp5MBfwLDe9r5OlE=
Subject key identifier: B4:A8:C1:0D:E0:91:B3:7F:60:B8:FD:E4:66:05:42:70:FA:F2:FB:4F
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018572BA5397C467A4042958D013D725DC29
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/tKjBDeCRs39guP3kZgVCcPry-08.roa
Signing time: Mon 02 Jan 2023 13:44:51 +0000
ROA not before: Mon 02 Jan 2023 13:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60931
IP address blocks: 46.8.80.0/20 maxlen: 20
46.8.80.0/21 maxlen: 21
46.8.88.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 07 Jul 2023 09:50:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:53:97:c4:67:a4:04:29:58:d0:13:d7:25:dc:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 2 13:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a8c10de091b37f60b8fde466054270faf2fb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cf:78:45:35:4e:86:d8:36:a6:e1:cc:f7:76:
13:98:84:3e:2a:ad:16:e1:a7:cc:5e:d2:f2:10:79:
f9:e5:87:b1:6f:d9:84:ab:84:ea:54:23:e7:0d:44:
89:00:9f:e1:f5:24:9c:b1:07:81:45:2b:03:7c:81:
d1:bf:88:8a:0c:24:2c:84:22:2c:32:93:22:17:b5:
d4:b0:d5:13:10:aa:a9:ac:6a:4b:4e:b5:a9:db:ea:
88:07:56:c7:6d:51:b8:3e:9b:0f:59:6a:37:52:73:
be:85:cf:be:5b:db:4e:52:10:0d:f5:68:7d:8e:4f:
f9:41:41:5b:42:e3:96:22:5a:66:ca:d6:cb:8d:01:
2e:78:3f:8f:cf:fe:1d:04:72:a3:ac:b9:d0:fe:0b:
bc:56:62:30:c7:69:52:4d:97:cc:2b:d6:d7:4b:b3:
cd:46:c1:f7:84:50:61:33:a3:84:46:90:2e:4f:52:
c3:d0:bb:8f:81:d6:c6:99:d9:cd:89:46:78:43:32:
91:a1:d1:1d:18:45:64:16:60:d7:11:de:ff:ff:dd:
89:46:8e:be:15:92:97:ff:ec:21:61:d0:c6:ec:86:
43:18:79:32:4c:08:76:b2:e9:9d:e3:ff:1e:09:04:
07:6f:31:e2:76:a2:ae:9e:ec:af:d1:a0:d4:c7:cd:
18:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A8:C1:0D:E0:91:B3:7F:60:B8:FD:E4:66:05:42:70:FA:F2:FB:4F
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/tKjBDeCRs39guP3kZgVCcPry-08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.80.0/20
Signature Algorithm: sha256WithRSAEncryption
22:f9:55:56:86:54:a1:b7:a7:05:4d:0a:bb:94:68:c3:9c:fe:
f2:50:a6:05:29:93:cb:98:d7:3a:d1:a1:f3:50:a7:8b:f0:0a:
fd:f3:96:84:bc:eb:07:c0:0d:fc:9f:1e:ed:ef:c7:95:aa:d0:
bb:dd:0d:60:35:52:05:e0:f3:2f:1d:e0:5a:e7:de:32:36:e2:
6c:96:ad:ed:ce:38:bf:37:f0:76:76:81:a3:e6:72:8d:d0:16:
e7:ad:90:e8:9a:6c:c1:d3:7d:b2:10:cb:b7:4a:7f:e6:4f:a6:
3c:4e:03:92:b6:b3:ec:85:2b:23:ca:84:4b:70:0d:da:9a:f5:
d2:31:05:ae:42:93:d6:fd:52:21:20:13:ef:c1:2c:ea:84:0c:
b2:40:f1:cc:a6:47:3c:81:4c:11:ce:c6:70:a4:13:bb:21:1e:
0f:0e:22:89:e3:b5:37:4e:9c:eb:b6:68:41:04:65:44:73:bb:
8f:8c:5e:81:91:b3:ba:76:56:fb:13:ba:62:8d:d7:a8:9a:0e:
e3:80:98:1b:0f:9f:ff:bc:c2:23:9e:48:0d:06:54:97:a0:82:
a4:05:98:7c:6a:a1:94:9a:28:3d:6b:57:7d:3e:37:b1:79:0d:
15:73:f4:ba:0c:b6:55:23:85:31:54:60:4d:8b:6e:c4:77:97:
8f:fa:95:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org