Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/bIaacEQ1aDP3a78v4Pyac2C5ANk.roa
File: bIaacEQ1aDP3a78v4Pyac2C5ANk.roa (raw, json)
Hash identifier: wvf0n//jH7oasnwZ8iMWlQeoaSuGmeYHwwXMXiJWfns=
Subject key identifier: 6C:86:9A:70:44:35:68:33:F7:6B:BF:2F:E0:FC:9A:73:60:B9:00:D9
Certificate issuer: /CN=a7f00d1bffff3a53e94f867d743d031b922db5b1
Certificate serial: 01856EF8E4ECF154C9C654C24D6798DBD9BF
Authority key identifier: A7:F0:0D:1B:FF:FF:3A:53:E9:4F:86:7D:74:3D:03:1B:92:2D:B5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_ANG___OlPpT4Z9dD0DG5IttbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/bIaacEQ1aDP3a78v4Pyac2C5ANk.roa
Signing time: Sun 01 Jan 2023 20:14:43 +0000
ROA not before: Sun 01 Jan 2023 20:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6663
IP address blocks: 46.29.4.0/22 maxlen: 22
46.29.0.0/22 maxlen: 22
2a03:6e0:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f8:e4:ec:f1:54:c9:c6:54:c2:4d:67:98:db:d9:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7f00d1bffff3a53e94f867d743d031b922db5b1
Validity
Not Before: Jan 1 20:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c869a7044356833f76bbf2fe0fc9a7360b900d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7e:ae:13:a4:bb:7a:42:0c:4d:8d:a7:86:93:
2a:e3:f3:eb:9a:fc:12:9b:82:91:5d:6b:7c:01:22:
52:ad:2f:20:df:97:dd:90:71:0f:74:a8:eb:01:f2:
3c:7d:df:ab:2d:59:b4:e6:ac:ee:09:30:f1:b2:2a:
c8:02:c4:14:5b:34:19:f9:13:e2:1a:0f:89:91:e2:
e0:cc:8c:98:27:e1:e8:03:9e:86:e7:38:02:b4:5e:
80:f7:da:34:10:94:bf:44:4c:8e:0c:ef:d3:b1:ae:
81:14:c0:63:16:45:b6:07:2e:83:44:1c:6c:90:c7:
cf:a3:a5:d6:7e:b9:61:b9:84:ea:f2:b8:9f:3c:32:
c6:07:18:c5:4a:50:b9:b9:d5:09:c3:06:d9:1d:e3:
d3:60:ac:04:e8:c0:26:26:62:60:91:69:26:ce:c2:
75:84:62:cf:00:0b:0c:b0:b1:ce:ad:64:f9:09:f0:
bc:8f:0b:b6:6c:66:d6:c8:93:28:54:59:94:be:c4:
4e:a4:6e:92:a0:95:c8:c0:08:21:f4:d0:55:15:0f:
0e:b0:81:db:66:4d:17:91:55:8a:48:b9:e8:5a:49:
b5:f4:8e:72:61:40:1b:8a:c0:db:e3:32:7c:d3:70:
5c:1d:2f:fb:82:db:c6:90:f5:cc:ff:55:54:2b:e8:
96:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:9A:70:44:35:68:33:F7:6B:BF:2F:E0:FC:9A:73:60:B9:00:D9
X509v3 Authority Key Identifier:
keyid:A7:F0:0D:1B:FF:FF:3A:53:E9:4F:86:7D:74:3D:03:1B:92:2D:B5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_ANG___OlPpT4Z9dD0DG5IttbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/bIaacEQ1aDP3a78v4Pyac2C5ANk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/4ff06f-e97f-4c5a-9da7-7ee090504fba/1/p_ANG___OlPpT4Z9dD0DG5IttbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.0.0/21
IPv6:
2a03:6e0:8000::/33
Signature Algorithm: sha256WithRSAEncryption
82:5a:a1:2c:1f:a6:f3:4f:ee:0b:87:0b:71:00:b1:63:69:53:
27:a0:d0:11:99:0a:52:a9:b7:73:bd:57:60:02:43:12:8b:77:
59:58:60:27:ba:20:50:9a:3f:bc:14:4e:9d:53:fe:6e:5f:64:
89:09:e7:a4:c8:00:3e:28:64:b2:a4:df:83:a5:a4:b6:7b:58:
4e:a2:74:da:ac:8d:7d:ab:01:85:ec:af:a1:dd:ee:b8:d3:c0:
e2:8e:8a:cc:90:fc:c4:1b:e6:32:02:3c:9c:82:0e:e3:11:e1:
83:c4:14:16:26:92:2b:da:d4:17:78:a0:53:2f:11:ce:fe:38:
1c:05:88:da:40:48:79:f3:ce:0e:b9:f4:4a:95:ac:aa:83:cc:
ad:e2:f4:6d:d2:64:97:8c:88:5a:eb:11:cd:59:a6:7d:33:26:
24:36:8d:1e:b6:5f:eb:c6:87:7c:4d:67:93:eb:10:bd:21:9a:
3a:95:8e:94:d6:31:1e:0c:27:d0:29:4f:89:ae:0c:61:fa:2a:
59:33:8f:6c:21:f4:18:15:db:a5:9d:ba:99:6d:0d:63:89:7d:
ea:93:e2:64:05:d9:db:76:35:c8:a8:23:ef:40:e1:b1:04:22:
53:6f:49:77:74:40:48:f3:00:e2:9a:5b:0f:cd:f9:f3:eb:52:
38:86:c5:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:36 2024 by rpki-client on console-fra.rpki-client.org