Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/Cx5rstJx3gy5dkEYpWcpMAa1yS0.roa
File: Cx5rstJx3gy5dkEYpWcpMAa1yS0.roa (raw, json)
Hash identifier: SeZbYqD3KFajHNugD1h4yxfHmPNU8rlVaOzjEzZb4hM=
Subject key identifier: 0B:1E:6B:B2:D2:71:DE:0C:B9:76:41:18:A5:67:29:30:06:B5:C9:2D
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 018C8700CEAA71EA219F6E8F3B2B2FBA44F1
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/Cx5rstJx3gy5dkEYpWcpMAa1yS0.roa
Signing time: Wed 20 Dec 2023 11:33:46 +0000
ROA not before: Wed 20 Dec 2023 11:33:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26141
IP address blocks: 46.31.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:00:ce:aa:71:ea:21:9f:6e:8f:3b:2b:2f:ba:44:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Dec 20 11:33:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b1e6bb2d271de0cb9764118a567293006b5c92d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:02:87:af:64:94:39:57:be:78:c6:5a:45:7a:
ae:8c:71:ce:92:8f:45:89:4b:de:68:30:bd:ef:5c:
99:d8:cc:d5:ae:15:f2:15:0b:8b:06:a5:66:c5:fe:
3e:ee:fd:98:75:45:22:67:29:ad:4b:3c:99:09:8f:
a6:24:ec:b8:c9:9d:0a:cf:7d:04:3d:49:38:56:83:
4e:e7:5d:c7:fe:1e:06:37:46:27:c0:c6:5f:84:42:
95:69:69:d6:11:83:71:96:32:8b:4c:ee:00:43:92:
cb:0c:a3:12:7c:2c:c1:1e:3e:ce:19:c3:35:db:b1:
19:22:94:f0:b9:19:1b:90:94:47:35:3d:e5:69:f7:
6a:6d:3f:b1:19:91:c1:a9:3b:c4:11:78:b5:5e:7d:
03:68:05:b5:9a:5c:78:19:37:cb:90:af:55:4e:64:
56:c2:c9:42:7a:64:1a:e2:26:cd:be:fc:9c:87:03:
15:97:59:ff:b4:4e:2e:15:99:4d:c0:54:f6:28:8b:
37:eb:4a:49:01:c4:0f:2a:80:84:1f:d0:67:5e:e9:
5b:d8:90:ac:eb:7a:fa:ae:67:5c:50:9c:ed:5b:96:
31:e1:70:23:37:4e:6f:2a:48:23:23:d9:3c:8e:7d:
cc:d2:91:b7:b0:e1:e3:31:2c:a2:39:6a:23:71:f6:
75:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1E:6B:B2:D2:71:DE:0C:B9:76:41:18:A5:67:29:30:06:B5:C9:2D
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/Cx5rstJx3gy5dkEYpWcpMAa1yS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.68.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f9:c9:c7:f0:d8:2c:71:da:01:46:bd:a1:ea:f5:9b:79:66:
7a:76:a3:ad:58:b6:9f:e9:cf:2c:7c:34:9d:3e:24:7f:33:06:
47:36:f3:83:f0:22:46:7c:ef:a9:7e:33:85:73:0e:15:65:55:
82:85:7e:2f:59:15:7d:a1:a0:c0:76:1a:ef:53:8c:ee:25:40:
e0:35:03:03:1e:f6:31:06:63:b6:be:52:f7:4c:8c:10:ff:c8:
67:d9:95:84:50:92:1d:5a:d5:11:17:99:5a:94:92:46:88:d9:
d5:5e:d3:7d:c1:e9:df:34:ca:42:54:b5:22:f3:1b:c0:89:31:
fb:b9:2b:e5:69:7c:98:52:05:ec:ce:f4:86:85:0f:3b:34:4d:
62:db:e6:0f:38:37:88:b3:7c:06:a1:58:be:cd:0a:e3:ee:d6:
93:92:1d:64:21:0f:f6:82:da:5d:21:1d:57:2d:0b:50:99:d1:
c4:02:77:12:f2:cf:3b:5a:2e:63:be:da:46:1a:55:41:3d:be:
d4:6d:d2:d0:a9:2e:a8:94:3d:cd:0f:30:79:18:06:a5:5d:d6:
60:bc:e5:6f:13:73:23:1d:28:db:27:a0:04:25:f0:26:a8:e0:
a8:dd:79:91:b3:1a:36:bc:26:b1:08:3d:88:56:c3:6f:32:43:
7c:b0:56:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org