Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/x19BGE8NHF756dA2kxv0qQmnnnU.roa
File: x19BGE8NHF756dA2kxv0qQmnnnU.roa (raw, json)
Hash identifier: S1JXY+c3AnY1rjifpu6lwZ/XlUQyaQfFGuZ9edhZgVE=
Subject key identifier: C7:5F:41:18:4F:0D:1C:5E:F9:E9:D0:36:93:1B:F4:A9:09:A7:9E:75
Certificate issuer: /CN=a04845af1dc0087b274cee52a4a9e0880335435d
Certificate serial: 018BA4DA675862BA6BD487FBFBEE9844FF60
Authority key identifier: A0:48:45:AF:1D:C0:08:7B:27:4C:EE:52:A4:A9:E0:88:03:35:43:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oEhFrx3ACHsnTO5SpKngiAM1Q10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/x19BGE8NHF756dA2kxv0qQmnnnU.roa
Signing time: Mon 06 Nov 2023 13:37:38 +0000
ROA not before: Mon 06 Nov 2023 13:37:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 46.235.11.0/24 maxlen: 32
46.235.9.0/24 maxlen: 24
46.235.8.0/24 maxlen: 32
46.235.10.0/24 maxlen: 32
46.235.15.0/24 maxlen: 24
178.210.162.0/24 maxlen: 24
178.210.161.0/24 maxlen: 24
178.210.160.0/24 maxlen: 24
178.210.165.0/24 maxlen: 24
178.210.164.0/24 maxlen: 24
178.210.163.0/24 maxlen: 24
178.210.166.0/24 maxlen: 24
178.210.172.0/24 maxlen: 24
178.210.171.0/24 maxlen: 24
178.210.170.0/24 maxlen: 24
178.210.169.0/24 maxlen: 24
178.210.168.0/24 maxlen: 24
178.210.167.0/24 maxlen: 24
178.210.176.0/24 maxlen: 24
178.210.175.0/24 maxlen: 24
178.210.174.0/24 maxlen: 24
178.210.173.0/24 maxlen: 24
178.210.177.0/24 maxlen: 24
178.210.178.0/24 maxlen: 32
178.210.179.0/24 maxlen: 32
178.210.181.0/24 maxlen: 24
178.210.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a4:da:67:58:62:ba:6b:d4:87:fb:fb:ee:98:44:ff:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04845af1dc0087b274cee52a4a9e0880335435d
Validity
Not Before: Nov 6 13:37:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c75f41184f0d1c5ef9e9d036931bf4a909a79e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:45:e1:b6:6e:cd:31:c8:c8:5a:67:5a:ad:d2:
cf:63:ff:06:69:46:b7:9e:b9:a0:6f:c8:94:bd:11:
8a:d1:0f:c9:12:d4:bc:e7:54:a4:9a:f0:e2:ed:f1:
3d:3d:96:5a:6c:3a:fa:74:06:ec:38:de:32:16:b9:
95:37:37:b4:85:57:84:34:8e:0c:be:59:b4:f4:a4:
87:1a:ec:97:2b:ff:d6:bd:6a:76:9d:a0:44:90:b9:
a8:8c:ae:ae:a5:b2:f0:e6:79:fd:ec:db:23:9e:c7:
09:8a:00:05:c4:14:e6:8e:99:fa:e9:b3:57:7a:04:
21:11:e5:94:de:8b:04:0e:50:b7:ba:09:4d:98:d0:
16:3c:81:54:c9:cf:39:e5:69:b9:e0:25:47:16:5b:
eb:3d:8b:44:9a:b4:0b:f0:5f:66:1a:56:76:08:ca:
de:33:c7:3c:a4:c6:1f:eb:f5:b1:07:4b:17:a9:d1:
db:c7:48:7c:09:d5:cb:46:a6:a9:97:18:85:57:2d:
7b:62:9a:39:db:cf:78:78:21:65:e7:23:c7:12:d9:
57:14:a0:10:ff:f9:cb:3d:e6:5a:4a:ab:af:b4:e5:
03:30:60:9b:90:39:bc:d3:b9:f7:69:b9:a7:bb:e8:
cd:08:5f:34:28:05:bc:ad:b7:66:80:0e:2b:08:7f:
30:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5F:41:18:4F:0D:1C:5E:F9:E9:D0:36:93:1B:F4:A9:09:A7:9E:75
X509v3 Authority Key Identifier:
keyid:A0:48:45:AF:1D:C0:08:7B:27:4C:EE:52:A4:A9:E0:88:03:35:43:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oEhFrx3ACHsnTO5SpKngiAM1Q10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/x19BGE8NHF756dA2kxv0qQmnnnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e55e30-97c6-40e6-81b7-507011570ee6/1/oEhFrx3ACHsnTO5SpKngiAM1Q10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.8.0/22
46.235.15.0/24
178.210.160.0-178.210.181.255
Signature Algorithm: sha256WithRSAEncryption
ae:1b:b1:55:89:2d:ee:cf:8e:a0:3f:8d:52:9d:95:95:8c:ed:
fc:6d:d5:68:4e:9a:6e:18:75:af:0b:19:18:54:12:29:60:94:
c4:64:b6:0a:d5:22:5c:f4:41:bb:f9:f0:5d:8e:88:6a:89:54:
38:73:ac:f1:cb:e6:3a:37:eb:ac:47:a5:37:c9:13:53:25:e9:
2e:1d:a1:51:58:ba:4a:42:96:87:6d:ff:63:3e:67:18:37:84:
fe:d9:b8:f9:75:d5:88:47:e7:52:d1:eb:4e:65:63:d0:f7:19:
b0:a4:c0:d0:5b:ab:15:67:da:40:01:f5:04:0b:03:6b:db:ba:
f1:1d:c5:be:41:47:c2:76:99:38:51:a8:c1:1f:57:0c:b7:41:
2a:db:16:90:50:93:d7:73:1f:3d:91:0e:c2:69:24:d0:63:65:
1a:fb:e6:d3:3e:d8:52:37:7a:45:5b:5c:49:d3:c7:a0:3a:10:
2f:cd:ca:22:28:95:0b:8c:47:8f:d3:24:23:a0:5b:21:12:81:
c7:6f:4c:bb:fc:09:96:2f:3a:ee:a9:2f:0c:c2:f0:77:89:0b:
7c:a1:4b:35:c5:bc:fe:c6:3c:e4:47:cb:9d:6f:11:2a:4b:c3:
71:a9:0d:a5:a7:7a:82:0e:5c:db:d6:3e:f1:25:56:82:6e:4e:
d6:a3:43:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:46 2024 by rpki-client on console-fra.rpki-client.org