Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/bN_-FNfZXBIhG1vEY68KiUWRqhE.roa
File: bN_-FNfZXBIhG1vEY68KiUWRqhE.roa (raw, json)
Hash identifier: c6+ScYXRufJFHuFgTNr4z2za5g5/ubtyLXEctLCecvE=
Subject key identifier: 6C:DF:FE:14:D7:D9:5C:12:21:1B:5B:C4:63:AF:0A:89:45:91:AA:11
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018C065DD44AD704EC896DD47F072C6B2873
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/bN_-FNfZXBIhG1vEY68KiUWRqhE.roa
Signing time: Sat 25 Nov 2023 12:04:21 +0000
ROA not before: Sat 25 Nov 2023 12:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20454
IP address blocks: 46.226.160.0/21 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:06:5d:d4:4a:d7:04:ec:89:6d:d4:7f:07:2c:6b:28:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Nov 25 12:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cdffe14d7d95c12211b5bc463af0a894591aa11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d0:5f:b1:25:bc:e3:9c:d4:be:92:21:84:56:
e7:62:04:3b:77:d1:c5:e2:ce:05:16:f7:93:29:9d:
91:9c:f8:82:40:f1:bb:50:98:74:d3:db:f9:b8:2a:
a8:1f:2d:9e:12:e3:28:4e:50:b5:01:5d:87:c0:86:
66:39:be:ca:bb:3a:3c:a2:4e:40:39:ee:4c:93:c8:
2c:17:c5:9e:80:09:b7:5c:6e:11:dd:b1:7f:48:f4:
1d:8c:40:42:39:2b:87:b8:fd:4a:bf:08:72:9c:4e:
d6:b9:92:c1:2d:0a:e8:36:95:f8:42:e4:ed:90:49:
1b:6d:2c:7a:68:de:90:69:46:f5:7d:84:56:11:6a:
00:04:01:fb:6d:ed:a6:a2:37:9f:54:1b:d7:66:b6:
59:f0:fa:17:20:56:57:f3:e5:c9:ee:76:60:57:74:
d8:d8:0e:52:b6:a3:d7:e2:6f:1f:94:3c:25:28:2a:
10:17:16:0d:b7:3c:52:d1:eb:9a:43:54:b0:b3:4f:
68:81:10:81:63:d0:76:d9:d8:77:26:58:e6:ca:34:
ac:38:89:4f:53:a8:7d:7e:46:1e:37:13:9b:ec:96:
e7:c5:5a:69:36:b7:43:2c:23:e6:af:16:ae:26:8b:
a0:e1:0c:ad:ed:00:8c:f2:60:45:bd:b7:09:21:cd:
0e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DF:FE:14:D7:D9:5C:12:21:1B:5B:C4:63:AF:0A:89:45:91:AA:11
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/bN_-FNfZXBIhG1vEY68KiUWRqhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
Signature Algorithm: sha256WithRSAEncryption
93:e3:a0:69:8d:d9:51:a3:ea:78:55:a3:12:b9:20:44:c6:92:
cc:d7:61:93:97:78:5e:38:9c:5c:83:58:f6:7d:15:a6:b6:71:
96:cd:2b:7b:64:d9:74:aa:16:37:a7:59:eb:48:d8:bc:08:28:
f0:6b:08:f0:51:ce:3c:0f:cc:b9:a0:04:fa:6c:05:93:09:2e:
70:28:7b:56:bc:59:c6:b1:d9:57:4a:a5:a0:61:2e:c0:8f:c1:
e8:5a:19:e4:06:e6:88:79:10:5d:fa:21:b0:78:49:f5:fd:d7:
e9:fc:be:e1:74:da:f0:f9:0e:2e:4c:c3:f5:60:bc:9f:54:b9:
2d:b8:6c:e1:2f:86:46:6a:a9:23:84:86:b6:1a:b0:73:b7:fc:
cf:d6:2e:2a:7a:3f:dd:1e:db:e5:f8:e6:7d:26:82:5d:3f:d0:
5c:95:74:67:f6:7e:bd:1c:2a:67:fc:c6:c0:90:f7:be:12:69:
ad:41:bc:33:c0:2a:92:0d:df:01:4a:7b:9f:b5:ab:16:f7:68:
f8:ea:1e:dd:bc:f2:4a:6c:b0:bb:18:e9:bc:b9:03:d7:c4:4e:
03:6f:f5:db:51:9d:e5:29:76:4c:4e:80:cb:4d:f5:34:79:61:
f8:71:35:85:08:81:a9:ed:a1:d4:ca:69:84:84:08:ef:f2:20:
64:61:b4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:08 2024 by rpki-client on console-ams.rpki-client.org