Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/BRvbieObcQod1kVhqLq-2h5Jhh4.roa
File: BRvbieObcQod1kVhqLq-2h5Jhh4.roa (raw, json)
Hash identifier: oO9G7bmuhd4/gjG5odllzvI1q8xBbQZzVgbcZWGwg/0=
Subject key identifier: 05:1B:DB:89:E3:9B:71:0A:1D:D6:45:61:A8:BA:BE:DA:1E:49:86:1E
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 0190E03CCBF69708968C65E6216BBB5BAD2D
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/BRvbieObcQod1kVhqLq-2h5Jhh4.roa
Signing time: Tue 23 Jul 2024 15:36:39 +0000
ROA not before: Tue 23 Jul 2024 15:36:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215235
IP address blocks: 46.31.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 09:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e0:3c:cb:f6:97:08:96:8c:65:e6:21:6b:bb:5b:ad:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Jul 23 15:36:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=051bdb89e39b710a1dd64561a8babeda1e49861e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e6:66:b1:cf:e8:ae:91:30:9d:f1:15:04:9b:
19:02:7b:e2:25:33:d6:c0:ba:02:13:98:64:6f:b0:
3c:7e:bb:c0:11:51:f6:39:e8:55:32:c0:0b:f9:ee:
2a:77:ef:3c:e6:6a:54:df:f4:c4:99:e7:e8:fe:58:
ad:98:0a:a5:dd:4e:c3:25:2e:61:60:c7:ca:45:9e:
90:cd:54:4b:e0:85:0b:3f:83:3e:10:90:b9:49:8f:
0d:07:7a:e0:e3:09:ed:ca:a1:ee:44:11:d0:e7:ea:
d6:19:b2:65:be:23:6d:b1:c9:2c:80:a5:bc:db:5a:
86:e9:09:3f:c4:47:83:00:a6:2b:b7:01:26:b3:bb:
c1:ff:33:f7:ec:cc:a8:28:29:4b:c7:65:af:8b:86:
ea:15:38:75:7d:2d:30:4b:d6:59:e7:c2:bf:d2:85:
ca:ec:73:ad:a7:0c:4b:f6:08:e3:df:4c:c1:c9:11:
a9:85:a1:2b:3b:44:a5:f9:9f:e1:7c:91:80:2b:10:
b0:fa:56:6f:70:2b:7d:bb:39:8d:fb:c2:44:e8:ea:
40:7b:18:1d:7f:bd:c9:44:39:c9:05:9a:45:42:ad:
a7:a3:b4:9d:d2:6b:03:8c:85:98:64:00:bd:25:c8:
cc:e8:59:c6:6e:35:33:45:d5:8b:80:6c:67:7c:f0:
b5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1B:DB:89:E3:9B:71:0A:1D:D6:45:61:A8:BA:BE:DA:1E:49:86:1E
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/BRvbieObcQod1kVhqLq-2h5Jhh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.68.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:f3:0f:16:e8:48:17:ca:d1:aa:39:95:f4:b4:07:bd:5b:a6:
34:7a:19:43:2d:9e:9e:81:8b:68:55:5b:a3:3a:85:59:8a:6f:
db:47:86:17:65:17:7c:37:00:d9:7a:e8:7d:fb:53:30:91:aa:
35:42:9c:de:e8:e7:38:d5:9b:60:7c:e5:fc:88:b6:a0:94:11:
85:6c:78:4d:c8:ac:0e:b7:c9:ca:b0:74:3c:82:6e:2c:7c:1f:
eb:55:31:df:cc:b2:92:dc:d8:86:15:86:3e:4d:39:c3:2a:a3:
9f:31:a0:8c:1e:ab:4f:0e:de:f2:af:62:ee:e0:d2:1a:70:79:
a3:1e:d9:88:5b:01:59:11:c8:4d:56:dd:26:f5:a9:77:19:ae:
1a:7c:7a:8c:83:b3:c7:47:a8:6a:9e:2a:60:f7:74:78:8c:ca:
54:0c:e0:78:14:8f:84:7a:cf:04:bf:fe:3f:83:06:85:26:76:
18:dc:26:67:42:4f:69:34:ce:9c:c0:c1:71:8c:0f:ed:4b:12:
da:1c:f2:c5:c2:11:dc:e5:3d:be:53:84:0b:46:5c:7e:f4:18:
2c:b8:d8:6b:1b:12:05:27:56:53:95:5b:01:61:e9:37:80:23:
4c:3d:2d:15:8c:8f:d9:ff:fd:54:9f:90:6c:f0:fd:9f:79:3c:
c8:b1:d3:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 12:39:09 2024 by rpki-client on console-fra.rpki-client.org