Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/d-pSJt4DWiH1WJXjitkhvX5hHcU.roa
File: d-pSJt4DWiH1WJXjitkhvX5hHcU.roa (raw, json)
Hash identifier: zw3GU9Df0Hdg18H5zmcgG19LqFyWwQdA6suCvVDtfO8=
Subject key identifier: 77:EA:52:26:DE:03:5A:21:F5:58:95:E3:8A:D9:21:BD:7E:61:1D:C5
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018571B9F127C7A81629379B3EE7FF624F34
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/d-pSJt4DWiH1WJXjitkhvX5hHcU.roa
Signing time: Mon 02 Jan 2023 09:04:49 +0000
ROA not before: Mon 02 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51737
IP address blocks: 46.20.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f1:27:c7:a8:16:29:37:9b:3e:e7:ff:62:4f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 2 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77ea5226de035a21f55895e38ad921bd7e611dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4c:e2:44:ea:e1:d9:5f:34:72:67:21:5e:35:
c5:37:60:b6:7d:94:5e:6f:7a:06:ba:cb:6b:86:71:
c9:ee:61:73:70:8c:ec:12:fc:85:7c:1d:65:c6:ff:
77:66:59:bb:fc:53:97:c2:5d:73:e8:82:aa:f8:41:
18:84:74:5f:a1:5c:da:66:80:85:af:54:49:f8:b2:
5c:21:7a:f2:d8:e9:28:19:e4:03:4d:61:9c:fc:c6:
7f:09:91:77:0e:53:b3:56:06:21:e4:07:fa:a2:66:
61:12:4c:1c:f7:5e:2a:e3:77:79:b8:55:c9:97:dc:
d0:2f:a2:8d:46:28:f2:b7:06:2a:54:e7:5f:00:54:
f9:e5:1d:55:e5:a9:ff:87:84:b4:e1:89:eb:74:89:
0c:3f:c8:08:ef:65:28:eb:c5:73:99:b7:6e:5c:4e:
19:09:a1:c9:b1:40:d7:77:64:9f:ed:62:1c:9b:29:
3b:4b:8b:bb:88:f2:e9:ab:c8:82:67:80:8e:5e:5a:
3f:f3:d4:77:e7:34:4a:9b:48:c9:0a:10:b9:29:a4:
69:13:90:73:01:dc:97:82:62:bd:6d:3c:8e:4f:e0:
cb:68:78:e9:61:e3:ab:ee:a5:f2:24:d0:42:63:f5:
c2:19:ac:fd:48:2e:9e:2e:a3:d7:ea:19:f1:d0:95:
92:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EA:52:26:DE:03:5A:21:F5:58:95:E3:8A:D9:21:BD:7E:61:1D:C5
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/d-pSJt4DWiH1WJXjitkhvX5hHcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.208.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:fc:77:9b:2a:4f:48:60:e4:15:cd:97:5f:03:9b:26:56:15:
bb:1d:fb:72:04:8f:16:34:cc:30:c7:34:39:21:b7:32:e7:36:
ed:2c:5e:51:06:e7:f7:5b:6a:f2:55:17:75:e4:8b:f9:bb:02:
d1:c9:0a:9d:bc:0e:f7:7b:52:e2:43:0b:89:66:31:da:5a:72:
22:dd:d6:96:3d:69:f7:4f:71:8c:0f:35:41:bf:10:46:7f:bb:
aa:b8:92:5e:35:40:46:b6:cd:eb:8b:2f:1f:2b:8e:f0:8b:46:
11:ea:94:7d:e9:4b:88:6f:d7:6b:2c:03:6a:d8:a2:ef:2d:c6:
d2:2f:d8:30:22:16:82:49:c1:d3:de:52:bd:52:aa:c5:b3:a8:
a4:1d:2d:c0:7d:ff:01:b2:ee:ea:b0:a4:df:5e:3b:39:46:d8:
dc:16:f2:a2:04:f8:e0:85:ba:68:99:25:e8:6b:e2:ad:69:fc:
96:3b:01:ce:1e:d1:d0:7b:1c:b6:b4:e9:7f:55:32:6c:13:42:
fe:7f:df:8a:b1:27:e5:0e:3d:4a:de:b1:b5:b0:74:88:ac:1c:
9e:54:03:73:50:b4:ee:06:63:46:3a:4c:c1:ea:a4:4f:ca:7e:
d8:fa:b5:0e:dc:82:7c:30:36:5f:6a:69:42:d2:6e:06:cf:e0:
df:04:d7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org