Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/CDvwdafknimOF2lDwmmazfNH9wg.roa
File: CDvwdafknimOF2lDwmmazfNH9wg.roa (raw, json)
Hash identifier: 3SKbWF1neUhd3qxh+J+cgYdRuBuy2meFtBA4wDm6uE8=
Subject key identifier: 08:3B:F0:75:A7:E4:9E:29:8E:17:69:43:C2:69:9A:CD:F3:47:F7:08
Certificate issuer: /CN=c4232bd5238dc4010d1c52929ddea4f23c042574
Certificate serial: 01865A6BA656AE0B03921F57ACE6F2300003
Authority key identifier: C4:23:2B:D5:23:8D:C4:01:0D:1C:52:92:9D:DE:A4:F2:3C:04:25:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCMr1SONxAENHFKSnd6k8jwEJXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/CDvwdafknimOF2lDwmmazfNH9wg.roa
Signing time: Thu 16 Feb 2023 13:30:49 +0000
ROA not before: Thu 16 Feb 2023 13:30:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 46.254.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5a:6b:a6:56:ae:0b:03:92:1f:57:ac:e6:f2:30:00:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4232bd5238dc4010d1c52929ddea4f23c042574
Validity
Not Before: Feb 16 13:30:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=083bf075a7e49e298e176943c2699acdf347f708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:af:20:90:8e:cc:d3:9d:69:56:68:4e:eb:88:
05:86:0e:16:6d:de:3a:16:c4:94:dc:74:f4:cb:ba:
4e:05:0f:fb:21:96:cc:fc:58:50:ba:f2:65:1b:23:
fb:08:6e:77:62:59:59:05:1f:a0:0e:51:ba:3c:02:
7d:5d:7d:e2:b9:ab:27:6b:a1:f5:bc:05:df:77:45:
2a:72:d7:8a:39:51:1a:4b:70:b5:c6:47:35:ed:7c:
0a:c8:12:10:76:a8:f5:49:dc:29:4e:46:a8:b6:12:
f5:12:08:06:95:7c:19:28:b6:2e:fa:b3:9a:55:fa:
40:b1:e0:4e:e4:a1:67:d6:2c:00:96:43:e5:a2:cf:
92:c5:eb:8b:7c:ee:de:be:bf:9d:68:8c:89:f8:1a:
92:3a:54:01:8f:af:02:69:1f:b4:b0:98:e1:14:22:
41:4d:12:1c:2e:41:0e:1d:4a:19:0b:eb:08:45:71:
ff:d0:06:12:f5:c8:ce:f8:fc:86:02:ad:e1:ad:06:
d4:81:03:91:d6:01:8b:bd:84:c4:61:4e:db:3a:12:
8a:0a:f5:40:b4:e7:ba:8c:60:6b:33:b0:07:7f:39:
d4:05:d5:fe:f4:73:a1:eb:f1:4f:dc:1f:74:f7:39:
7d:f6:52:16:d0:f0:ac:a9:c7:f6:1a:a5:be:e2:20:
ed:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3B:F0:75:A7:E4:9E:29:8E:17:69:43:C2:69:9A:CD:F3:47:F7:08
X509v3 Authority Key Identifier:
keyid:C4:23:2B:D5:23:8D:C4:01:0D:1C:52:92:9D:DE:A4:F2:3C:04:25:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCMr1SONxAENHFKSnd6k8jwEJXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/CDvwdafknimOF2lDwmmazfNH9wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/xCMr1SONxAENHFKSnd6k8jwEJXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.254.108.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:3f:da:00:47:2d:da:a2:4e:3e:4b:3d:7a:53:a7:5d:d6:35:
68:8d:92:93:6c:b7:ee:91:c2:d4:e8:40:4e:6c:92:4c:22:73:
09:b3:a9:81:85:36:01:70:69:f9:77:7e:1b:9c:e6:99:4a:80:
49:0d:f6:eb:6f:f4:e4:99:3d:82:7b:2f:da:91:8b:b8:37:0b:
ab:59:bd:f3:02:dc:8b:7d:43:4e:6d:d9:7a:52:fd:04:77:50:
8d:d4:7f:d2:b9:eb:b5:62:8f:47:46:c4:3b:25:21:2f:c2:7c:
09:07:0e:9f:61:f3:92:89:5c:72:cb:bd:eb:f8:f7:74:62:d4:
02:8a:2c:11:45:1b:f5:f7:21:fc:25:76:af:ae:6d:14:3c:ea:
35:f8:f0:d4:e0:76:16:36:80:f9:4e:c5:8f:60:40:0e:a9:3f:
f9:64:74:9b:af:5d:47:f5:80:2a:8d:0c:47:85:c8:de:f9:0f:
e6:79:59:89:6f:9a:69:62:f0:2b:bd:4b:74:ce:b4:1d:dc:0a:
8b:9b:b1:cf:60:b0:72:7d:f9:d8:f4:8d:76:28:71:92:3a:08:
26:96:dc:f9:80:b9:8a:63:09:ee:34:24:46:cd:31:5d:20:c5:
dc:dc:84:9d:a0:b2:25:80:24:5f:ee:1a:52:ce:88:8d:60:8b:
c7:f1:35:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:05 2023 by rpki-client on console-ams.rpki-client.org