Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/gg3h1HZO5wlYSQyac5iyaiUDMP8.roa
File: gg3h1HZO5wlYSQyac5iyaiUDMP8.roa (raw, json)
Hash identifier: O/yzTTq1zcxdeh8Tq2zi2wFddkljzJblgrNc6GzvkJ4=
Subject key identifier: 82:0D:E1:D4:76:4E:E7:09:58:49:0C:9A:73:98:B2:6A:25:03:30:FF
Certificate issuer: /CN=8a5d86aab4c0974f0c27f43d968df426f53df5d2
Certificate serial: 0187DBEAAE5CFF351799CB0147587A44AFD0
Authority key identifier: 8A:5D:86:AA:B4:C0:97:4F:0C:27:F4:3D:96:8D:F4:26:F5:3D:F5:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/il2GqrTAl08MJ_Q9lo30JvU99dI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/gg3h1HZO5wlYSQyac5iyaiUDMP8.roa
Signing time: Tue 02 May 2023 10:03:23 +0000
ROA not before: Tue 02 May 2023 10:03:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 46.174.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 06:52:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:ea:ae:5c:ff:35:17:99:cb:01:47:58:7a:44:af:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5d86aab4c0974f0c27f43d968df426f53df5d2
Validity
Not Before: May 2 10:03:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=820de1d4764ee70958490c9a7398b26a250330ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:11:a8:d3:9d:af:e5:7b:75:6a:7e:b1:41:07:
09:51:5a:26:fe:19:e9:de:27:33:22:f2:66:5c:85:
08:f7:23:36:46:07:17:41:6b:6d:d6:5f:d2:f0:fa:
f7:ca:b5:0a:a6:65:36:2c:e5:82:cd:62:ec:61:71:
2a:fb:14:c1:6d:65:6f:8f:68:be:4f:f5:67:7b:24:
13:e7:89:83:e5:c2:d5:5c:82:5e:36:4a:79:60:28:
d0:64:96:92:0e:f6:64:98:d2:71:6e:41:ac:60:f5:
7f:84:52:e3:39:03:8b:3d:ed:ed:b2:39:71:4a:d4:
52:bd:f6:30:5b:a5:14:14:83:d6:97:86:4c:25:fa:
1a:62:8d:77:79:d5:74:f3:a2:d0:3f:7e:2d:f4:f4:
06:2d:33:e9:0f:9c:22:e8:3c:bd:08:50:a7:20:c8:
85:93:4b:1b:8e:21:85:1c:14:63:f7:e9:bf:d8:4f:
4b:d3:28:50:fc:76:b3:9b:42:72:8f:a5:d1:72:8c:
f5:eb:85:d0:84:c1:03:4c:4e:8e:17:3b:89:66:78:
1c:fa:48:89:32:fc:a4:82:f5:82:35:58:5e:68:df:
f4:26:76:83:ff:36:f8:e2:a9:de:7e:3b:a5:1c:31:
13:81:7d:64:35:46:29:80:65:07:62:95:93:51:18:
32:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0D:E1:D4:76:4E:E7:09:58:49:0C:9A:73:98:B2:6A:25:03:30:FF
X509v3 Authority Key Identifier:
keyid:8A:5D:86:AA:B4:C0:97:4F:0C:27:F4:3D:96:8D:F4:26:F5:3D:F5:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/il2GqrTAl08MJ_Q9lo30JvU99dI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/gg3h1HZO5wlYSQyac5iyaiUDMP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4cea79-2a09-4ae7-a50c-f8a836f01b21/1/il2GqrTAl08MJ_Q9lo30JvU99dI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.174.139.0/24
Signature Algorithm: sha256WithRSAEncryption
84:6d:e2:7a:f8:69:c6:4d:9f:20:1c:d9:3b:aa:25:70:ab:db:
90:74:08:6a:1e:c7:30:92:9c:5e:31:3d:f9:11:f1:05:f1:47:
c2:3b:e3:7b:7b:d6:bd:f6:4f:5e:95:f7:05:e9:09:43:1a:53:
8e:5c:43:d6:0c:c4:1e:99:d7:58:eb:58:71:55:73:b3:cf:b6:
a2:a5:20:20:d2:9d:80:4f:28:ae:cf:c3:a0:cd:58:41:ca:97:
43:e4:4b:d1:88:b0:94:f1:0c:b1:57:9d:5e:fd:c4:cd:bd:ab:
dc:6f:a8:e6:41:8c:c0:2a:fb:92:67:74:4e:ef:4f:08:c5:20:
a6:4a:85:dc:d3:e2:45:a5:7f:d3:48:3a:31:5f:5a:7e:34:98:
fe:cc:1d:b6:12:8d:7a:97:a8:9d:6b:eb:2f:b7:a6:2b:e2:31:
db:3f:34:58:74:87:72:71:d6:10:d3:e6:35:04:64:b1:10:c9:
4c:8e:99:cc:c1:c8:2a:6d:94:53:a2:c8:ce:a6:64:35:ff:46:
a3:d9:4c:1a:94:a0:f9:2a:ef:2c:3c:65:4d:17:81:58:ff:65:
9b:0c:65:96:bc:c5:7c:d0:af:10:af:e5:7a:f8:f2:f5:bf:42:
27:82:74:c8:bd:42:3b:56:c4:ff:e1:7c:01:0f:49:df:ea:5d:
0b:a6:23:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:36 2024 by rpki-client on console-fra.rpki-client.org