Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/b4gl3CoO2pJzKcpVdOD_5Xb6oPE.roa
File: b4gl3CoO2pJzKcpVdOD_5Xb6oPE.roa (raw, json)
Hash identifier: /0XsANGyDGVIgb4wAkpxjhsSo/vByGDZdhy44Co99LE=
Subject key identifier: 6F:88:25:DC:2A:0E:DA:92:73:29:CA:55:74:E0:FF:E5:76:FA:A0:F1
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0185CEF06B7A73BBEFD77C54799AFB77FDBD
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/b4gl3CoO2pJzKcpVdOD_5Xb6oPE.roa
Signing time: Fri 20 Jan 2023 11:29:00 +0000
ROA not before: Fri 20 Jan 2023 11:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 86.104.164.0/22 maxlen: 24
46.20.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 06:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ce:f0:6b:7a:73:bb:ef:d7:7c:54:79:9a:fb:77:fd:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 20 11:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f8825dc2a0eda927329ca5574e0ffe576faa0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9b:cb:95:3c:b2:80:c6:be:a8:c6:85:0e:07:
f8:92:54:98:66:33:ee:a1:ce:b5:bf:7b:3e:24:55:
d5:e1:cf:bf:2b:a9:bf:f1:aa:6b:b1:d3:e9:32:82:
fd:94:cc:cf:e5:a7:17:c0:7b:53:f0:0a:eb:42:4c:
8d:44:ec:7a:ae:11:f6:ac:1c:8b:9b:a9:49:0b:f9:
a2:07:2d:dd:82:65:1f:9e:b5:82:d3:eb:ad:84:52:
c5:bc:e0:51:9d:52:94:28:e1:3b:45:1a:77:88:a2:
05:d4:80:13:9f:d2:ab:86:83:fd:e6:ae:fc:b2:d9:
a8:d5:fb:9c:cd:45:3a:50:f7:8b:c9:d1:7f:4b:58:
bc:fb:a1:06:fa:af:c7:ac:67:21:b7:2e:33:3c:84:
1a:00:d4:ba:a4:81:4b:89:4a:95:b0:9d:7b:f5:8b:
2d:53:6d:8b:fc:52:2e:18:e6:d8:9f:e4:32:0d:09:
2e:17:ee:2f:58:c8:74:ae:88:d7:7f:db:23:41:7b:
9e:d8:89:4b:b7:fd:a5:9c:bd:cb:d4:e1:2b:11:71:
04:7e:a5:e4:06:07:64:2f:67:84:e8:66:cf:5c:65:
2a:df:16:ef:5f:6e:05:46:f5:81:82:37:53:88:60:
4f:a6:8f:ec:7e:78:eb:2f:2c:bb:45:2b:c2:a4:c1:
63:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:88:25:DC:2A:0E:DA:92:73:29:CA:55:74:E0:FF:E5:76:FA:A0:F1
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/b4gl3CoO2pJzKcpVdOD_5Xb6oPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.212.0/22
86.104.164.0/22
Signature Algorithm: sha256WithRSAEncryption
81:8f:15:d7:70:1b:47:40:19:99:a9:08:07:d4:2e:ac:3f:bd:
36:19:ba:6e:c1:bb:e5:88:71:d4:5a:ef:7a:68:17:b6:25:d8:
a6:3c:a6:25:b1:36:db:bf:e2:be:68:26:02:0c:52:1d:b2:bc:
a3:09:be:38:b8:65:9a:55:62:7e:f3:71:b3:da:77:2e:83:3a:
9a:84:d6:32:8f:cf:b8:31:0d:1f:39:c1:41:d9:d9:da:6f:64:
83:7a:66:e9:8d:f6:04:37:28:f1:03:3b:b8:65:20:6e:34:49:
24:f5:0c:af:03:2c:6c:f8:7e:99:34:53:2f:04:68:86:85:f0:
a5:ea:b0:01:1b:f1:ad:65:73:c0:6f:25:9d:ed:f5:72:5c:90:
d1:ff:11:ec:90:11:77:14:e2:d2:f2:f6:bb:1f:cb:6a:b8:d7:
96:41:0f:26:9d:61:da:fa:a0:09:d7:4f:44:55:45:82:e8:4b:
77:1c:a4:3f:aa:8d:f1:84:9e:bf:c0:20:42:fc:29:bb:27:3e:
6c:0f:53:27:2d:42:2c:00:04:1a:45:40:24:ab:03:fc:93:24:
da:70:c9:88:9a:d8:ea:53:7f:15:ca:9c:9b:f1:c6:01:2b:1b:
33:5f:9b:70:2d:a3:9f:46:85:82:0d:b6:9d:fb:d9:73:83:4e:
30:c0:f1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org