Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/5h2PjFKU9kGl6Wgd_ZYhQGgxigI.roa
File: 5h2PjFKU9kGl6Wgd_ZYhQGgxigI.roa (raw, json)
Hash identifier: uVzmyXm8ylO03Z+tL0otIRVL1iLL6OcWjiBTGl3Z+8c=
Subject key identifier: E6:1D:8F:8C:52:94:F6:41:A5:E9:68:1D:FD:96:21:40:68:31:8A:02
Certificate issuer: /CN=27321078f359d7990276dabb0f8c30070e685963
Certificate serial: 018C24BE50FA56E53C3A1B692BF2DE78648C
Authority key identifier: 27:32:10:78:F3:59:D7:99:02:76:DA:BB:0F:8C:30:07:0E:68:59:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JzIQePNZ15kCdtq7D4wwBw5oWWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/5h2PjFKU9kGl6Wgd_ZYhQGgxigI.roa
Signing time: Fri 01 Dec 2023 09:38:21 +0000
ROA not before: Fri 01 Dec 2023 09:38:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50576
IP address blocks: 46.231.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:24:be:50:fa:56:e5:3c:3a:1b:69:2b:f2:de:78:64:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27321078f359d7990276dabb0f8c30070e685963
Validity
Not Before: Dec 1 09:38:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e61d8f8c5294f641a5e9681dfd96214068318a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7b:78:99:91:77:47:dd:09:60:f4:2f:40:bf:
4b:34:a9:bc:ed:f3:a1:34:34:c1:c5:28:34:62:24:
89:b1:a9:0a:4d:7c:39:14:90:ce:9d:08:ed:d3:c7:
63:88:61:53:58:2b:a2:af:98:1e:be:0b:73:8c:08:
5d:df:7c:98:95:70:c0:84:54:da:ea:f5:34:c8:62:
e5:2f:47:d9:26:7e:bd:32:67:31:13:0b:63:95:a2:
81:3e:66:d7:f5:41:82:16:d5:82:96:b9:f2:4c:d8:
2e:82:14:ad:5c:2b:da:12:d6:e5:43:9c:24:f0:b7:
28:e3:6c:a1:82:7d:53:69:d5:bb:a7:c1:e2:f2:9b:
28:ae:09:ba:e5:1b:77:1c:c7:64:3c:fe:8a:c7:88:
c3:fe:5a:8e:59:bc:0e:d7:86:8b:39:90:82:1f:c9:
ff:df:ea:72:f7:af:6f:d2:36:f1:6e:b4:ea:d4:1d:
9a:05:dd:55:ab:4e:20:bc:12:e7:ce:e4:ed:78:aa:
96:fe:e8:95:2a:c6:62:da:a5:9b:49:9e:35:c2:d2:
f0:16:58:34:ea:b1:79:54:bc:e7:56:24:3c:c6:bd:
f1:5a:75:64:57:d4:e5:0e:9e:7b:a5:59:7a:8f:12:
bb:ef:d9:56:65:17:40:2c:6a:69:9a:c1:60:60:15:
88:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1D:8F:8C:52:94:F6:41:A5:E9:68:1D:FD:96:21:40:68:31:8A:02
X509v3 Authority Key Identifier:
keyid:27:32:10:78:F3:59:D7:99:02:76:DA:BB:0F:8C:30:07:0E:68:59:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JzIQePNZ15kCdtq7D4wwBw5oWWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/5h2PjFKU9kGl6Wgd_ZYhQGgxigI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/JzIQePNZ15kCdtq7D4wwBw5oWWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.228.0/24
Signature Algorithm: sha256WithRSAEncryption
09:fc:5c:1d:9e:8f:f4:6a:93:a2:8a:4d:b5:39:29:a7:cd:00:
58:13:72:e4:e7:c1:78:7c:4a:31:cd:70:43:77:f8:12:09:bc:
4c:f2:bf:3c:6e:f6:33:a5:ce:06:56:ae:26:37:fe:d0:7b:4a:
8c:a4:73:ca:ad:b2:7e:2d:24:76:0d:af:44:5c:6c:ae:d0:80:
f0:1b:d6:d4:ec:94:74:31:07:51:0a:fb:b4:3b:22:bf:dc:a7:
00:49:95:ec:8d:92:9b:69:60:0c:49:14:9f:fb:8b:f1:74:17:
7c:0c:88:21:0e:c5:be:81:5c:09:c0:b7:7d:8c:1b:ac:70:da:
6b:6b:a0:d8:dd:37:d2:6c:1d:64:3a:7d:f6:43:3d:40:c8:fa:
81:d1:08:43:72:05:85:23:62:eb:9f:86:82:0d:7e:8a:50:45:
58:16:0e:5f:c8:ef:4d:cd:0e:85:b8:1f:61:96:e2:5d:a0:dc:
bc:11:3c:25:9b:ed:50:f2:ee:ba:89:a1:96:e5:ce:40:7a:ce:
a2:0d:a6:fa:34:c7:ef:52:0b:c6:7f:13:f9:9b:19:88:74:fe:
25:40:65:3f:8e:bc:d6:5b:86:77:84:92:5e:e7:9a:4a:3b:fb:
e5:be:9d:c8:a4:f9:53:cf:5c:e6:ba:67:1a:ff:47:ef:89:07:
a7:58:a3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:27 2024 by rpki-client on console-fra.rpki-client.org