Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/_1EfuwgSbOOcTaloa9Ta7zHUnRk.roa
File: _1EfuwgSbOOcTaloa9Ta7zHUnRk.roa (raw, json)
Hash identifier: bfbizw77yVl67/qJHr4tzc4ru/bGP9agMTnBCOK/Ywo=
Subject key identifier: FF:51:1F:BB:08:12:6C:E3:9C:4D:A9:68:6B:D4:DA:EF:31:D4:9D:19
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 0187E678899C7B4A6B2053C21D90C9306819
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/_1EfuwgSbOOcTaloa9Ta7zHUnRk.roa
Signing time: Thu 04 May 2023 11:14:31 +0000
ROA not before: Thu 04 May 2023 11:14:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60442
IP address blocks: 46.28.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:78:89:9c:7b:4a:6b:20:53:c2:1d:90:c9:30:68:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: May 4 11:14:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff511fbb08126ce39c4da9686bd4daef31d49d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:d9:3f:36:a5:b5:a6:6e:89:b1:54:26:ad:
62:3c:53:c1:a4:ae:fa:50:d1:ea:28:2f:1f:fe:cd:
a6:12:02:2f:9d:62:6b:25:14:f1:0f:8f:2c:c2:29:
dd:09:77:3f:91:39:4c:73:c9:5b:8b:1c:c6:08:4a:
e0:c0:6c:df:ec:ac:16:4d:28:3c:86:0e:67:02:1a:
5e:85:fb:e1:e3:45:a5:81:72:6b:b8:10:88:d6:34:
c9:61:32:94:b1:b3:06:c0:9e:e4:15:ef:e7:32:c1:
66:76:de:ee:95:56:55:39:df:bc:22:cd:4b:20:d3:
00:e0:dc:97:49:77:ef:e7:6b:9b:d4:9f:c4:3b:1a:
79:11:f8:80:f4:4f:d8:29:25:7c:60:91:f2:f7:e7:
2d:f9:e2:81:b7:f8:d5:4e:eb:4f:46:1c:01:fb:65:
ed:13:a7:a2:cf:c8:e9:4f:ea:52:47:2e:39:16:a5:
24:82:8d:fa:e5:d9:2f:a0:c3:f9:f8:b0:5e:6f:6f:
fd:4e:16:75:95:70:8f:20:4b:10:29:55:f5:05:60:
0c:17:a9:4b:42:f6:db:30:90:c4:29:69:eb:97:23:
ef:24:40:c8:b4:86:50:15:90:a9:13:c3:3f:c9:31:
fe:d0:60:3e:51:22:a2:8d:0f:70:d0:ed:2c:52:43:
5e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:51:1F:BB:08:12:6C:E3:9C:4D:A9:68:6B:D4:DA:EF:31:D4:9D:19
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/_1EfuwgSbOOcTaloa9Ta7zHUnRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.233.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b7:01:92:c3:62:6d:c5:84:0a:52:14:b1:47:6d:89:dc:aa:
36:02:63:f9:3e:66:62:cb:64:0c:97:31:42:cd:47:2a:1e:30:
db:f9:51:f8:50:12:b3:84:64:6d:d9:79:68:85:7e:77:be:ea:
73:51:c4:94:95:9c:e8:7d:63:ff:2d:cc:83:f0:41:37:8c:a0:
38:82:6c:3d:b0:27:62:93:d4:04:19:a6:a0:af:bc:72:7d:20:
0e:e0:25:bc:33:f4:8c:87:e7:f6:dc:af:35:4f:ff:01:6c:6c:
5c:69:cd:65:38:f4:62:88:26:a7:fc:33:85:87:68:b1:5e:d1:
80:83:bd:30:f5:2c:28:da:74:84:57:75:53:53:19:6a:dc:1e:
3a:d9:94:ba:c6:f7:42:64:32:f2:8a:07:37:c2:41:31:f0:ab:
24:32:86:b2:7f:e8:d8:85:b3:fe:95:9e:be:a3:f2:3c:41:32:
c5:42:70:23:a6:2f:c9:a8:65:7c:5a:53:e2:50:13:64:ba:c2:
6a:df:30:5a:57:82:7d:85:92:e8:71:dc:f2:2f:ba:35:e9:a6:
0e:4e:57:51:95:df:58:ac:70:56:32:23:6b:e1:cf:8d:36:1f:
c6:ba:48:0b:59:2b:17:f1:46:59:e3:07:e6:df:73:be:be:13:
5b:ee:19:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:31 2024 by rpki-client on console-ams.rpki-client.org