Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/vnwqk0uYKt9HMtcg-dIQmNHd-Kw.roa
File: vnwqk0uYKt9HMtcg-dIQmNHd-Kw.roa (raw, json)
Hash identifier: b3AamevB9FfIiYZbLzw7IZU4D46iLQtq/t9SOWkk1Kw=
Subject key identifier: BE:7C:2A:93:4B:98:2A:DF:47:32:D7:20:F9:D2:10:98:D1:DD:F8:AC
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 019092A91B45417B080089FF759388C52597
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/vnwqk0uYKt9HMtcg-dIQmNHd-Kw.roa
Signing time: Mon 08 Jul 2024 14:04:34 +0000
ROA not before: Mon 08 Jul 2024 14:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56971
IP address blocks: 46.8.236.0/24 maxlen: 24
46.8.237.0/24 maxlen: 24
46.8.238.0/24 maxlen: 32
188.130.154.0/24 maxlen: 24
188.130.206.0/24 maxlen: 32
188.130.207.0/24 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Aug 2024 12:35:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:a9:1b:45:41:7b:08:00:89:ff:75:93:88:c5:25:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jul 8 14:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be7c2a934b982adf4732d720f9d21098d1ddf8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:99:6c:01:ec:f2:28:0d:89:d4:c6:1a:33:
66:e6:8c:0d:6d:3e:82:d8:b5:57:eb:59:f7:ea:4a:
bf:86:33:72:80:d4:37:a0:a4:a3:81:c9:0d:3e:2e:
ef:6b:1e:cb:e3:fc:90:06:c3:3e:99:78:aa:7a:f9:
e2:8c:bf:4c:fa:4f:d5:f5:18:d8:40:92:ff:74:3b:
0a:f4:e6:a8:4c:35:fc:8d:49:a5:9c:c0:57:70:d9:
a7:b3:71:83:0e:c9:c0:df:cf:c6:4b:4b:53:b2:4a:
18:0c:b7:6f:c1:fd:73:e8:70:74:0c:7f:dc:99:60:
62:94:11:71:f0:29:86:ff:b6:e1:b3:f9:3e:76:a4:
75:2a:9f:f6:76:9d:6e:9c:40:e9:a8:23:72:3f:e0:
05:e7:c2:91:cd:bb:51:49:92:5d:01:d9:a9:c2:32:
cb:70:45:c1:69:a8:b6:94:17:f4:66:19:88:14:71:
65:ed:fa:ce:fe:f5:ab:5c:cc:2e:f7:3e:72:75:e6:
e4:1b:09:80:41:ae:12:b2:ec:d7:7f:d3:20:0f:ec:
de:15:cd:7a:74:fc:51:45:08:0b:98:26:c3:68:be:
64:6c:0c:9f:51:b7:b0:fa:11:37:3b:c4:0b:e5:59:
5e:1b:ae:ae:76:7f:23:3a:0e:d9:2a:36:26:8b:db:
6f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7C:2A:93:4B:98:2A:DF:47:32:D7:20:F9:D2:10:98:D1:DD:F8:AC
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/vnwqk0uYKt9HMtcg-dIQmNHd-Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.236.0-46.8.238.255
188.130.154.0/24
188.130.206.0/23
Signature Algorithm: sha256WithRSAEncryption
79:0e:fa:e7:2f:39:d7:af:8f:8d:bf:fb:6f:e3:79:87:e7:1a:
ed:91:7c:7b:7f:e8:0e:c9:1c:5a:1a:4c:34:4e:67:fc:f5:05:
cc:41:b0:7c:37:26:c6:4c:b1:68:c9:8d:66:2d:da:3d:9b:5b:
af:27:74:97:f6:91:e6:47:ed:63:33:57:f8:41:4c:fa:ea:eb:
16:ab:ec:40:85:e6:b0:81:35:44:43:2b:a2:33:a0:1e:e2:a4:
0a:2b:da:36:3a:b0:61:4c:7e:06:f1:17:46:37:26:68:51:37:
b2:8e:6a:09:0f:08:5d:37:75:e4:9d:72:d8:5e:c5:d4:c0:6e:
b6:7c:27:82:14:df:d6:d3:40:68:98:ae:ee:6b:47:a8:75:ba:
6b:70:f8:e3:5b:b2:4a:d1:46:d2:d9:62:b6:9d:fd:40:26:35:
b6:82:9a:f7:f4:e2:ec:7a:7c:d9:14:87:2e:2b:c1:ea:99:64:
68:4b:7d:29:3d:c0:2e:72:39:dc:ba:0b:6b:d0:65:16:b2:2a:
70:20:8e:e1:d9:5c:84:c7:52:f0:27:3b:6f:1e:a0:35:6b:41:
81:6c:fb:3b:a1:6f:c8:06:b4:03:dd:d7:72:61:b0:01:7b:02:
f4:9f:b0:27:28:fb:10:c5:a9:34:09:fd:33:0f:22:c3:22:3a:
73:cc:95:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 15:19:00 2024 by rpki-client on console-ams.rpki-client.org