Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/DGmZ5F7hWX9LxQsvSJDuWlM86KQ.roa
File: DGmZ5F7hWX9LxQsvSJDuWlM86KQ.roa (raw, json)
Hash identifier: cYCrexd163UjM/2N9rpuXapQeABDOB5ECto+yhfGZUw=
Subject key identifier: 0C:69:99:E4:5E:E1:59:7F:4B:C5:0B:2F:48:90:EE:5A:53:3C:E8:A4
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A2C0E2DA5B3056A1CB90BA85DD968
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/DGmZ5F7hWX9LxQsvSJDuWlM86KQ.roa
Signing time: Sun 01 Jan 2023 03:05:01 +0000
ROA not before: Sun 01 Jan 2023 03:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56595
IP address blocks: 46.243.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:2c:0e:2d:a5:b3:05:6a:1c:b9:0b:a8:5d:d9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c6999e45ee1597f4bc50b2f4890ee5a533ce8a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d0:43:09:73:09:30:9f:c8:d7:23:97:80:3a:
7e:36:a9:52:94:18:bb:c3:f9:a0:01:97:07:17:99:
29:aa:1b:b3:c2:c4:f3:f7:71:1f:b7:1c:de:2d:6a:
be:08:07:25:f7:2e:e9:2d:67:2d:47:97:b1:79:99:
3b:c0:9b:ae:71:d9:8f:c7:b7:f9:09:ef:e5:9a:ae:
d9:21:7e:ac:cf:1b:28:be:fd:aa:d4:09:3b:bc:1f:
d5:c7:00:ac:9f:5c:eb:7b:0c:aa:7d:61:87:8c:fe:
5f:70:b4:3e:5d:88:2c:f9:52:77:6c:1a:47:ea:53:
74:f3:6c:fd:87:90:08:4b:99:b2:07:45:4d:da:82:
6a:77:c2:79:36:e3:b0:4f:1a:b8:b8:57:26:2e:f3:
55:34:31:13:eb:ef:7f:19:7d:dd:06:a1:4f:48:ba:
ed:7b:5d:e3:a2:8c:64:f5:50:36:78:ea:08:a6:fb:
7f:f3:d8:26:d6:e5:e3:2c:cf:26:3b:57:04:9e:07:
27:43:09:05:29:f7:7f:0f:36:0f:61:87:8b:06:ce:
11:bd:82:a0:c9:ca:4d:97:7a:75:58:44:6d:69:ee:
7d:19:fb:b1:4e:51:70:0b:1f:c2:83:b0:57:a3:ef:
52:f0:1e:47:88:e4:9c:9b:67:7f:c3:b8:50:b7:6f:
c8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:69:99:E4:5E:E1:59:7F:4B:C5:0B:2F:48:90:EE:5A:53:3C:E8:A4
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/DGmZ5F7hWX9LxQsvSJDuWlM86KQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.200.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5f:02:83:09:21:3d:be:38:cf:dc:13:38:28:a0:c0:ac:6d:
69:4e:5b:27:52:ca:28:b3:8b:38:df:6c:b6:7b:ca:64:99:44:
ab:58:e1:19:3b:c5:30:88:53:56:de:b2:19:b2:82:95:2e:dd:
63:88:d7:5c:bc:73:13:fe:3c:c9:9f:82:a9:8d:7d:8b:a4:3a:
ab:a5:ef:d7:f3:1d:7a:17:32:2a:e8:75:fb:15:0d:ea:e1:b8:
a6:9e:96:ba:c6:d5:3d:38:dc:73:8e:fb:ed:84:2c:ae:97:c9:
dd:07:4f:c1:3f:3b:0c:e9:d5:f4:4c:8a:f4:52:f4:77:df:b2:
ac:11:ab:bb:15:82:fc:1e:9b:28:26:f4:92:a9:12:c4:27:fa:
24:10:8a:c7:46:15:e6:d9:47:3b:85:b9:7f:1b:4a:45:d9:03:
a9:3e:4f:d9:c3:fc:0f:63:a4:dc:59:39:08:5b:11:91:65:4b:
01:c5:30:63:fa:fd:f5:e6:9e:c9:fc:66:b8:c2:f1:1f:3d:8e:
2e:30:de:81:18:5d:98:58:cc:91:9d:c8:5c:cf:12:4d:96:c6:
cf:ef:91:a8:3f:11:8e:d2:c1:18:ee:58:a2:61:ca:69:00:1a:
d8:60:cb:9d:b2:d9:1e:3f:cd:5c:0c:9c:47:e2:a9:db:29:32:
ed:1e:7c:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrSiwOLaWzBWocuQuoXdloMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0
NzA2N2UwHhcNMjMwMTAxMDMwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzY5OTllNDVlZTE1OTdmNGJjNTBiMmY0ODkwZWU1YTUzM2NlOGE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNBDCXMJMJ/I1yOXgDp+NqlSlBi7
w/mgAZcHF5kpqhuzwsTz93EftxzeLWq+CAcl9y7pLWctR5exeZk7wJuucdmPx7f5
Ce/lmq7ZIX6szxsovv2q1Ak7vB/VxwCsn1zrewyqfWGHjP5fcLQ+XYgs+VJ3bBpH
6lN082z9h5AIS5myB0VN2oJqd8J5NuOwTxq4uFcmLvNVNDET6+9/GX3dBqFPSLrt
e13jooxk9VA2eOoIpvt/89gm1uXjLM8mO1cEngcnQwkFKfd/DzYPYYeLBs4RvYKg
ycpNl3p1WERtae59GfuxTlFwCx/Cg7BXo+9S8B5HiOScm2d/w7hQt2/IdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAxpmeRe4Vl/S8ULL0iQ7lpTPOikMB8GA1UdIwQY
MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt
OGM5NTgxZDk2ZDhmLzEvREdtWjVGN2hXWDlMeFFzdlNKRHVXbE04NktRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm
LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvPIMA0G
CSqGSIb3DQEBCwUAA4IBAQAzXwKDCSE9vjjP3BM4KKDArG1pTlsnUsoos4s432y2
e8pkmUSrWOEZO8UwiFNW3rIZsoKVLt1jiNdcvHMT/jzJn4KpjX2LpDqrpe/X8x16
FzIq6HX7FQ3q4bimnpa6xtU9ONxzjvvthCyul8ndB0/BPzsM6dX0TIr0UvR337Ks
Eau7FYL8HpsoJvSSqRLEJ/okEIrHRhXm2Uc7hbl/G0pF2QOpPk/Zw/wPY6TcWTkI
WxGRZUsBxTBj+v315p7J/Ga4wvEfPY4uMN6BGF2YWMyRnchczxJNlsbP75GoPxGO
0sEY7liiYcppABrYYMudstkeP81cDJxH4qnbKTLtHnx6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org