Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/u8HX4HORv343noIRHLhRBDeq4l0.roa
File: u8HX4HORv343noIRHLhRBDeq4l0.roa (raw, json)
Hash identifier: aN9wX7sk1pXP0aHxlzTGb9SXabn+rwWz8ogx0/FPiBQ=
Subject key identifier: BB:C1:D7:E0:73:91:BF:7E:37:9E:82:11:1C:B8:51:04:37:AA:E2:5D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E3DF58981E3CD9AFA17026325CC9B0545
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/u8HX4HORv343noIRHLhRBDeq4l0.roa
Signing time: Thu 14 Mar 2024 17:14:45 +0000
ROA not before: Thu 14 Mar 2024 17:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60647
IP address blocks: 46.102.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 11:34:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:f5:89:81:e3:cd:9a:fa:17:02:63:25:cc:9b:05:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 14 17:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbc1d7e07391bf7e379e82111cb8510437aae25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:15:f7:cd:4a:91:68:7e:e0:c3:57:1d:e5:32:
2c:3d:ca:56:4b:71:5e:13:5c:82:b3:95:28:d9:c5:
8b:11:ae:1a:98:26:69:c8:8d:e8:8d:4a:a8:df:91:
8b:df:a1:2a:e4:45:40:d9:34:81:2b:7a:d6:ac:7b:
71:35:6f:26:67:19:88:b7:48:ae:1d:cc:38:ab:6e:
05:6e:38:45:87:11:25:60:93:19:58:e3:2f:ce:b1:
f2:55:8a:db:70:8c:58:57:41:bc:10:3b:d6:c5:0e:
40:b7:76:46:55:2d:75:73:53:ce:a6:41:fd:0d:34:
29:69:bc:2b:43:e5:4f:f0:e4:d0:eb:d6:5d:15:a8:
51:10:d5:d4:64:fc:ad:69:74:72:41:e2:3a:81:78:
a5:9e:12:9b:ed:52:99:2b:d8:4c:14:c8:12:97:b0:
0e:f2:33:88:44:f6:da:70:dd:e3:ee:bc:de:54:e2:
74:ad:01:d9:1d:68:90:75:d8:d1:a3:3d:49:25:1f:
4f:1b:7f:ff:6f:2e:c3:0d:7c:1c:c5:48:11:88:50:
2c:d6:07:e4:44:7a:0f:b8:b8:40:24:2b:b7:2a:aa:
cb:32:f8:01:18:39:de:c9:d0:a9:36:4d:bf:13:39:
eb:08:f2:cc:89:47:8f:2d:20:e2:a5:a9:a5:0f:1e:
59:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C1:D7:E0:73:91:BF:7E:37:9E:82:11:1C:B8:51:04:37:AA:E2:5D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/u8HX4HORv343noIRHLhRBDeq4l0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
Signature Algorithm: sha256WithRSAEncryption
46:06:94:34:1c:f2:a0:9f:38:d5:8b:40:93:c5:39:1c:7c:a7:
34:d4:fb:cc:a7:14:ca:72:d9:55:8e:c5:1b:63:e0:64:0d:8d:
fb:b1:96:e7:5d:2d:9b:cc:7c:0b:84:6b:d3:c6:87:0b:ec:d3:
1b:60:db:21:3d:6a:6e:22:b5:25:72:6c:50:5b:1c:1a:12:ec:
1d:3d:af:64:16:c4:b7:75:09:60:74:04:fc:fb:03:24:1c:56:
91:0f:b2:1c:4a:f2:7b:c6:92:4c:f3:38:df:3a:2b:0c:1b:3f:
26:31:a4:b8:3b:6c:8c:90:50:24:5a:a8:68:f9:fa:66:db:04:
11:7a:e3:28:39:48:7b:66:43:62:e9:bc:f6:96:4f:e2:98:66:
8c:cb:a8:ec:5b:b9:7d:f3:0e:01:c1:e6:f0:2e:7d:92:86:3a:
34:a9:30:4a:10:cf:3e:c8:8e:97:4a:af:48:f2:1e:26:bb:e4:
e8:76:3b:3b:8a:d5:b4:43:dc:79:ee:2f:38:6e:58:9e:ad:88:
56:7f:13:f7:af:69:e0:38:f2:7d:12:67:b9:24:fe:0c:2e:08:
f2:e3:b6:3c:15:84:ae:f0:96:38:31:a0:e3:d8:e1:e4:5e:41:
1d:55:20:32:56:2c:19:d5:45:06:7c:fc:33:9b:74:5d:c8:20:
5f:b8:f1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org