Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/K7pze058N8ToYZtot2t2RihmUCg.roa
File: K7pze058N8ToYZtot2t2RihmUCg.roa (raw, json)
Hash identifier: XhA5tW8F9PbVGKhDIEv9+2FbjHXllmKGMDkFX2QIiP4=
Subject key identifier: 2B:BA:73:7B:4E:7C:37:C4:E8:61:9B:68:B7:6B:76:46:28:66:50:28
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018CC500D69E3C75B633ADF48C44CB18F4E9
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/K7pze058N8ToYZtot2t2RihmUCg.roa
Signing time: Mon 01 Jan 2024 12:30:15 +0000
ROA not before: Mon 01 Jan 2024 12:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20454
IP address blocks: 46.226.160.0/21 maxlen: 32
Validation: Failed, certificate revoked on Sun 21 Jan 2024 14:38:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:d6:9e:3c:75:b6:33:ad:f4:8c:44:cb:18:f4:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Jan 1 12:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bba737b4e7c37c4e8619b68b76b764628665028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:78:f6:1c:0c:7b:82:3a:da:9c:af:c4:33:22:
08:74:5c:da:89:4b:7a:66:f1:15:db:57:7b:63:cd:
26:1f:5b:62:cc:4f:df:8d:29:2e:97:c5:ef:8c:b3:
10:b5:37:59:46:07:7a:43:63:3c:5a:e3:14:1f:fd:
7c:91:88:f5:46:8f:ff:2a:71:d5:bd:bd:a0:b5:96:
d8:3a:a8:fb:6c:4d:dd:33:1a:57:d9:e8:4a:79:3e:
0f:14:bc:02:97:a7:58:6b:19:2b:d1:2e:98:9d:b1:
b2:51:5c:2b:00:ec:1a:6e:31:e8:8d:ab:b8:af:c4:
77:7d:d5:ea:c6:de:33:ed:e0:96:31:b8:2e:fb:77:
41:23:b1:23:a3:a1:c7:29:e7:6b:2e:a4:f1:f9:28:
91:09:3d:5b:73:32:f9:1b:ff:d1:92:ef:64:98:78:
9d:cf:a6:b3:27:ef:1f:7a:4e:9b:17:d4:fb:22:15:
6b:c1:22:3a:3e:61:54:a9:f3:a5:2c:85:8d:b9:50:
56:00:ac:c0:c4:1a:e9:00:a8:da:1e:b1:91:b5:70:
db:93:8d:45:bd:d1:09:f6:e2:10:31:51:3e:72:ba:
55:5a:06:df:63:f9:6b:20:6f:fc:4f:25:a1:b4:dc:
e4:e7:50:72:b3:3e:f1:2a:73:68:c6:85:32:31:7d:
bd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:BA:73:7B:4E:7C:37:C4:E8:61:9B:68:B7:6B:76:46:28:66:50:28
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/K7pze058N8ToYZtot2t2RihmUCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
Signature Algorithm: sha256WithRSAEncryption
95:6e:f9:8c:17:e3:0e:6e:dc:cb:e0:df:a4:13:bf:78:1c:af:
9b:29:15:a8:66:64:c9:1d:6f:ef:4c:2a:a5:91:b7:55:0c:9a:
88:83:ab:5f:27:63:1e:be:ae:16:26:9f:35:b5:ba:27:a9:be:
58:30:10:93:91:f4:6f:39:86:a7:fe:40:cd:80:02:37:4e:94:
71:93:ef:3c:42:cd:f6:b3:d0:8a:c4:cf:1f:4d:2e:32:98:9e:
37:46:ad:5a:05:18:f7:bc:2c:fd:64:0f:61:f0:ae:01:35:f9:
a8:b2:28:56:e5:36:ce:e1:29:c9:83:19:b9:5f:57:84:d5:f3:
af:da:1d:62:9c:34:23:27:de:8e:ca:eb:d2:9a:9d:5e:72:d4:
77:e9:fd:c2:28:23:68:5b:5f:cd:47:de:93:3b:31:6f:71:18:
25:eb:13:b4:35:a1:70:83:89:6b:3b:39:ea:3d:a5:f6:de:5a:
45:2e:dc:7b:f8:87:17:69:0e:43:3d:31:6e:88:56:2c:94:de:
4c:1a:2d:bd:44:ff:6d:b1:4d:17:12:26:73:ca:8e:5c:39:85:
89:a2:80:3f:d4:67:a3:69:70:12:8a:cd:1f:c8:e9:0a:88:96:
2c:84:49:56:f7:e4:08:3b:eb:89:a4:52:4c:a2:b7:7e:1b:12:
db:59:3a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org