Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IWOLkJBFhXf4Ocwi_meXJVUeuFE.roa
File: IWOLkJBFhXf4Ocwi_meXJVUeuFE.roa (raw, json)
Hash identifier: EvCLvNhqfzomdn/mPYm1JuxP59vSx/iR7KDjKX9bJ28=
Subject key identifier: 21:63:8B:90:90:45:85:77:F8:39:CC:22:FE:67:97:25:55:1E:B8:51
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018C38D5588AFD32E9657685455CBD5A08F9
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IWOLkJBFhXf4Ocwi_meXJVUeuFE.roa
Signing time: Tue 05 Dec 2023 07:15:55 +0000
ROA not before: Tue 05 Dec 2023 07:15:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 92.114.40.0/22 maxlen: 24
46.20.212.0/22 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:38:d5:58:8a:fd:32:e9:65:76:85:45:5c:bd:5a:08:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 5 07:15:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21638b9090458577f839cc22fe679725551eb851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:63:01:c1:05:3e:9d:c3:39:7e:33:82:97:00:
17:96:16:70:4c:6c:54:91:1a:18:07:6a:c5:80:c9:
d7:81:89:7a:31:16:e2:91:58:ac:a5:2e:4d:65:78:
44:f7:13:de:38:db:58:74:da:07:44:4e:c5:68:e8:
d2:b8:ae:d8:8f:06:b5:ab:5b:80:15:75:f7:29:ea:
c1:be:d3:c0:f5:f7:64:8d:94:67:51:a7:f9:1b:41:
b0:a4:5a:47:12:c0:cd:7e:16:e2:e4:e4:56:29:85:
a9:b7:ca:0a:6a:4a:fa:f5:a9:55:5d:13:62:d7:42:
20:ef:8c:48:9c:79:70:66:4a:04:3a:72:59:5d:bc:
c0:59:25:eb:17:97:08:31:66:89:dc:1b:4b:36:a7:
ba:16:3d:d9:d4:10:d5:29:a9:9c:33:60:d4:ad:4e:
60:c9:4d:f3:c0:df:b1:b8:cd:ae:4c:20:23:4f:70:
2e:c9:2e:41:3f:06:19:9d:f9:1b:f9:51:76:a6:4b:
8a:e7:21:49:7a:90:c7:ad:63:6b:c4:63:ed:a6:d1:
97:7a:2c:d9:77:44:67:f5:f8:ab:cc:20:d1:03:b6:
5e:db:53:c4:85:4f:38:ea:fa:24:44:db:a4:22:64:
71:31:4e:0c:d3:a0:fe:48:03:cf:13:5c:9a:38:28:
7d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:63:8B:90:90:45:85:77:F8:39:CC:22:FE:67:97:25:55:1E:B8:51
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/IWOLkJBFhXf4Ocwi_meXJVUeuFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.212.0/22
92.114.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:1b:fe:05:73:d6:02:60:4d:a6:98:1b:cb:dd:52:16:3b:c0:
ce:2b:14:ee:db:a7:bd:8e:71:46:ab:2b:c2:29:65:21:89:1b:
d3:cc:c9:29:fe:bd:c3:06:58:3d:23:8e:b2:8d:61:72:a0:df:
b8:56:b8:43:28:d5:0f:7c:b0:a3:30:3f:97:9a:95:21:15:68:
af:bc:30:b7:62:3b:f8:f7:df:05:89:dc:b0:6f:6e:e2:51:73:
c5:65:6f:e1:eb:eb:2a:55:7d:7f:f4:01:48:11:5b:64:89:d3:
ad:a2:af:1e:06:3d:ac:2c:0b:91:cb:08:b0:f3:5f:f0:46:5a:
c8:da:da:13:17:cb:c0:6d:d2:40:d6:ac:1f:86:5d:08:57:8c:
73:53:68:ac:fa:ad:69:4c:92:00:f6:c0:0a:7d:45:e7:32:59:
1a:99:5f:a8:ee:85:17:85:fa:7c:58:e6:b8:e0:25:c6:87:1c:
d3:0e:50:48:42:9b:55:35:ee:eb:31:9c:50:a4:9c:fc:e6:58:
8a:a2:c2:ff:18:f0:2c:e5:df:70:47:70:21:c9:41:d8:81:53:
53:4b:aa:7f:ae:d3:a9:51:a2:c1:29:a8:30:b8:8a:05:b3:e4:
fc:86:c7:cd:e2:1e:d0:50:3a:7a:89:f2:e1:e1:01:0f:c6:82:
5a:15:48:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org