Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/dfE1RUIy3hxLN4N7ZrDMr7iOZCI.roa
File: dfE1RUIy3hxLN4N7ZrDMr7iOZCI.roa (raw, json)
Hash identifier: 82RcVmsXHdZfeIxWhcfRDpwNf2fOOsTM8VqTGkVhcQQ=
Subject key identifier: 75:F1:35:45:42:32:DE:1C:4B:37:83:7B:66:B0:CC:AF:B8:8E:64:22
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018571B9F0ACB3E0417068D5F8F3D46FA8EC
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/dfE1RUIy3hxLN4N7ZrDMr7iOZCI.roa
Signing time: Mon 02 Jan 2023 09:04:49 +0000
ROA not before: Mon 02 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 46.20.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Jan 2023 11:29:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f0:ac:b3:e0:41:70:68:d5:f8:f3:d4:6f:a8:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Jan 2 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75f135454232de1c4b37837b66b0ccafb88e6422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fe:8a:4d:51:5e:62:98:f9:dd:a4:21:c9:6f:
c8:a8:d4:67:41:bf:9b:e1:96:a4:a6:65:27:13:92:
03:9c:b3:3d:07:22:42:bd:8d:75:86:d4:bc:0e:fa:
91:df:4d:6e:e1:b0:68:6e:ab:f5:b3:98:91:42:5b:
1c:59:c6:f3:48:61:41:5c:30:56:d6:d1:8f:ac:79:
72:6e:0b:76:45:b3:f8:69:65:87:32:ef:ef:04:dc:
2d:6e:3e:09:15:e4:57:4f:7c:d5:d7:8f:a6:86:b0:
b9:07:fe:b9:40:b0:33:9f:f6:05:a1:ed:b4:de:54:
0a:5e:59:fa:f5:a9:aa:37:98:15:53:ce:ab:9a:fd:
12:0a:17:6e:3b:d3:72:c9:93:7a:fc:52:02:c4:40:
d0:70:ca:4b:13:9e:f1:d7:be:31:42:4a:2f:26:53:
d6:9f:ad:3b:f1:e1:43:50:a6:ab:f6:ac:9e:ca:7e:
35:b0:be:a8:f0:56:e8:d8:2d:cd:86:30:d4:4f:89:
9c:f7:31:14:53:65:3c:f0:90:5a:92:c3:39:60:b3:
4a:9b:46:69:cb:6d:b8:07:a5:99:6b:a5:75:71:ee:
35:a5:a9:99:63:b0:71:7a:ad:e8:d1:3f:ac:4e:bd:
41:54:fe:34:b4:d5:47:3e:1d:9a:35:91:7a:1f:b5:
12:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F1:35:45:42:32:DE:1C:4B:37:83:7B:66:B0:CC:AF:B8:8E:64:22
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/dfE1RUIy3hxLN4N7ZrDMr7iOZCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.212.0/22
Signature Algorithm: sha256WithRSAEncryption
74:85:f3:a6:a0:74:b2:5b:fa:13:d3:80:9e:6c:fe:0d:e5:54:
ad:d3:01:74:10:ce:ef:58:13:0a:4a:c1:dd:16:45:64:19:9c:
1c:e0:74:47:71:a4:f6:9f:c7:36:d1:2e:13:f4:27:7d:8f:25:
6e:0f:ea:82:c9:07:66:e8:67:ce:5f:cb:ed:5f:cc:8e:68:23:
0a:d0:c1:82:6d:be:10:4b:8d:31:cb:88:8c:3b:44:c7:d5:16:
13:cc:07:aa:57:dc:ae:bb:42:c4:9b:cd:6a:7c:91:c4:b9:f5:
ed:6f:6d:54:70:61:52:97:74:aa:80:be:fd:79:e8:37:94:98:
df:d1:07:9f:f6:0f:7c:62:d4:d1:51:b3:6f:23:c5:70:84:70:
60:1e:4e:87:d4:bf:13:a6:c3:9e:11:a5:3a:2f:a7:4b:48:13:
24:30:2d:f3:ee:ab:be:34:8c:8d:a4:9f:5d:69:be:dd:82:ef:
b6:c9:41:b8:c1:35:e9:7a:8a:52:79:b8:36:f5:84:1c:af:a7:
35:b8:d6:65:c9:66:a5:d1:dd:0b:fd:f2:a2:21:fc:dd:29:cd:
a7:90:32:59:8d:f5:73:dc:47:d0:d3:60:66:f5:ac:d8:c3:a9:
28:53:99:52:e0:6e:de:2e:13:64:be:94:2e:42:4a:c4:b2:15:
57:e7:82:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org