Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Rgah-Kicaz-xQELjyVAUxKTLYSo.roa
File: Rgah-Kicaz-xQELjyVAUxKTLYSo.roa (raw, json)
Hash identifier: m0jpLF6UcHDvSgHbvJS0SR5eJy3+/6HQ9OJKMHre4CE=
Subject key identifier: 46:06:A1:F8:A8:9C:6B:3F:B1:40:42:E3:C9:50:14:C4:A4:CB:61:2A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0189E015476CCE6246157522C7E20E32147C
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Rgah-Kicaz-xQELjyVAUxKTLYSo.roa
Signing time: Thu 10 Aug 2023 15:33:58 +0000
ROA not before: Thu 10 Aug 2023 15:33:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197789
IP address blocks: 89.46.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 09:18:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e0:15:47:6c:ce:62:46:15:75:22:c7:e2:0e:32:14:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 10 15:33:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4606a1f8a89c6b3fb14042e3c95014c4a4cb612a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5c:02:c1:19:bf:9e:37:63:b8:27:b3:ca:50:
eb:f4:ca:50:6f:c0:dd:a3:44:74:cb:9d:4b:5b:19:
dc:2b:83:b6:02:72:01:ce:36:b5:e9:bc:85:4d:35:
00:cf:b7:7d:25:df:5f:50:8c:a6:5d:c8:f5:04:74:
55:71:0d:be:ce:80:0e:c8:23:ee:ef:b6:80:51:25:
88:c6:4a:d9:f6:e1:2d:32:f8:82:db:ff:3b:ab:75:
ec:5c:73:81:03:bd:65:e9:05:9e:e8:4b:14:34:2d:
c3:d4:98:79:ee:ec:1f:fa:b4:3d:c0:91:5b:18:a7:
d2:63:28:da:fb:25:cc:1e:d7:26:23:6d:b7:21:65:
c5:a8:c3:de:24:74:5d:05:0b:a9:cc:7e:47:a5:2d:
5a:2f:c0:cd:b4:cf:58:13:b6:0f:5a:4b:77:22:6f:
a1:e6:3a:b7:cf:07:6f:3b:02:d2:bb:67:bb:57:f1:
12:c1:56:76:13:89:65:8f:a7:2b:83:ff:22:c6:7b:
b0:bc:70:b4:4e:b8:ba:25:11:10:34:9b:68:ac:46:
f5:c3:8e:05:a0:43:70:da:fa:ac:77:e7:44:60:e7:
6e:67:c4:0a:11:de:e8:82:87:b9:a8:ab:15:99:26:
47:ce:54:9a:06:1d:50:ce:2f:b4:cb:1c:00:2b:6f:
fa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:06:A1:F8:A8:9C:6B:3F:B1:40:42:E3:C9:50:14:C4:A4:CB:61:2A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Rgah-Kicaz-xQELjyVAUxKTLYSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.42.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:47:9d:da:ea:0b:cb:4e:3a:89:52:ae:eb:7c:15:e8:dd:b7:
0a:41:f5:70:4f:ad:5c:26:ba:a2:fc:e6:3d:09:0b:08:7a:fc:
74:86:c5:08:5e:a9:1f:9c:38:b4:3c:46:d5:1a:ab:9b:08:15:
ea:8e:29:c9:55:8e:ed:14:47:0c:a4:f6:65:52:53:c3:6c:75:
8f:06:14:96:8b:60:46:b6:e9:f7:c8:27:c9:45:08:08:ab:be:
02:01:c5:d7:fa:26:a2:5d:1b:69:bb:04:56:ef:50:15:66:b3:
86:32:c2:ca:78:17:cc:90:60:c2:3c:3d:7b:9c:98:80:ea:1f:
b4:1e:c2:b5:32:77:0c:8c:06:21:c5:6d:01:68:b1:0f:f0:82:
08:ca:73:b4:68:4a:cb:60:4e:87:20:ad:c7:7f:b7:9e:a3:01:
f9:6d:59:7b:e2:9d:41:c7:8f:67:dd:be:d8:48:24:48:7a:b1:
4f:81:bc:b9:d2:5b:db:77:98:3c:35:d1:3e:7f:58:be:ac:9b:
ba:fe:b8:9d:01:24:50:a8:a1:12:6a:f2:40:c6:1f:d1:b2:e1:
d2:32:22:61:a5:77:2f:47:ca:63:2c:0f:68:cf:80:85:14:6d:
56:28:0e:fd:58:4e:60:cb:3c:8d:d6:49:fb:9b:1d:33:f0:de:
47:9e:d1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org