Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/WxZx2Rqk78riPn5HVLJFPC65eis.roa
File: WxZx2Rqk78riPn5HVLJFPC65eis.roa (raw, json)
Hash identifier: e+DO8ZSqczgidRiTxPlc4ouzA7b8Z/Xg94P7+7jUTiM=
Subject key identifier: 5B:16:71:D9:1A:A4:EF:CA:E2:3E:7E:47:54:B2:45:3C:2E:B9:7A:2B
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01866D89908F231E63DF7F25FAA7852396C9
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/WxZx2Rqk78riPn5HVLJFPC65eis.roa
Signing time: Mon 20 Feb 2023 06:36:17 +0000
ROA not before: Mon 20 Feb 2023 06:36:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 46.20.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 07:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6d:89:90:8f:23:1e:63:df:7f:25:fa:a7:85:23:96:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Feb 20 06:36:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b1671d91aa4efcae23e7e4754b2453c2eb97a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d9:ca:74:d5:9e:33:8b:72:4d:cd:10:48:a9:
57:fb:fd:db:ea:6e:c6:09:d7:18:d2:92:ee:80:cd:
51:a3:aa:49:81:57:db:ac:0e:3d:48:15:0b:41:09:
79:7f:1e:a6:dd:ba:4b:0c:88:6c:c0:48:bf:de:0f:
7b:11:bb:49:3e:6c:af:ab:30:5a:9c:0c:d9:2b:db:
58:52:34:e0:b5:3d:bb:d1:91:dc:42:e2:f6:b1:9a:
bb:e0:c5:30:ba:cf:ff:8e:f9:2c:0a:7f:0b:cd:0b:
ab:f9:80:ae:88:38:f8:53:39:f6:b8:72:e1:7d:df:
21:1f:d3:f2:0b:63:c7:08:93:c3:c7:20:54:ee:a2:
21:d2:00:96:e5:8f:e5:90:ae:01:9d:b8:00:bd:58:
75:2b:51:cc:5b:14:8f:bb:c9:06:cd:7b:24:fd:33:
c4:d0:cc:83:6a:d7:b2:c0:46:9b:d6:e3:5d:4d:90:
22:1f:b5:e2:4e:20:33:5b:cc:90:65:e7:94:49:a3:
ed:e3:9a:49:df:d2:b4:73:4e:1d:a4:94:5a:68:c5:
dd:31:f7:e8:a4:e8:35:f4:e9:75:69:3b:16:8a:37:
81:60:f3:cf:aa:75:bc:6d:72:51:b0:71:c5:66:e5:
ff:b6:39:cd:4c:f2:4e:3e:4a:69:b0:28:4f:08:c9:
0a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:16:71:D9:1A:A4:EF:CA:E2:3E:7E:47:54:B2:45:3C:2E:B9:7A:2B
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/WxZx2Rqk78riPn5HVLJFPC65eis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.212.0/22
Signature Algorithm: sha256WithRSAEncryption
58:cd:c8:fd:98:5a:dc:d4:d0:0c:9b:59:b3:bd:96:c4:09:35:
8a:22:25:c6:78:c1:74:57:4e:01:84:b0:06:f8:9f:43:7f:3b:
85:6b:31:e8:fe:b6:00:35:62:bd:d1:87:5e:52:de:83:82:62:
83:f3:e5:99:0c:d7:60:52:c9:76:9a:09:ba:69:0f:1c:34:76:
fb:be:36:95:ae:39:bf:41:59:8a:2c:98:04:23:03:78:55:aa:
ac:02:c0:88:6e:43:22:8e:80:ca:27:1e:09:e8:76:3a:e7:8a:
8b:79:a5:ce:fa:2a:c2:94:24:df:2b:7b:98:c3:82:51:aa:ea:
31:62:f5:f8:53:f5:c4:40:f2:41:89:9e:fe:39:81:83:28:4f:
19:18:55:cb:76:cd:af:1a:8b:4c:b7:a5:d3:94:b2:1d:54:f8:
af:7f:86:4b:39:53:81:cc:4e:2c:06:fc:c8:13:23:8a:d2:54:
62:66:51:a4:79:d9:04:1a:f6:d8:dc:e8:37:d5:82:5c:08:58:
28:93:fa:eb:e2:14:75:9a:7f:a4:ea:4a:a2:ad:5f:fe:be:6c:
9f:07:b6:97:46:38:08:29:25:ac:b3:3b:c9:8d:05:bd:a7:dc:
da:68:e4:a9:10:2b:8b:5a:39:d0:60:a4:4a:46:33:7d:2d:fd:
0b:56:a1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org