Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/O17hcaocm3HkkTQvfmtg3niYZCc.roa
File: O17hcaocm3HkkTQvfmtg3niYZCc.roa (raw, json)
Hash identifier: h5e4EGuRUheueBk7gI2EIXycTphef2ewi/er0kZbUOM=
Subject key identifier: 3B:5E:E1:71:AA:1C:9B:71:E4:91:34:2F:7E:6B:60:DE:78:98:64:27
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018570306FE8CAC74A2F492436C148632490
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/O17hcaocm3HkkTQvfmtg3niYZCc.roa
Signing time: Mon 02 Jan 2023 01:55:00 +0000
ROA not before: Mon 02 Jan 2023 01:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60097
IP address blocks: 46.107.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:6f:e8:ca:c7:4a:2f:49:24:36:c1:48:63:24:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b5ee171aa1c9b71e491342f7e6b60de78986427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:81:9b:31:b5:4b:47:a7:ae:f5:57:ec:2d:27:
03:10:6a:6b:07:cb:d4:3b:08:dc:4f:db:4c:fe:5c:
6a:76:fe:da:fe:65:91:82:a2:df:f7:ee:35:92:e9:
0e:3b:83:05:38:d8:cb:e8:10:a7:a5:5e:24:4a:7a:
d0:54:b3:06:2d:e5:3d:6a:5e:39:1e:94:59:ff:a9:
57:b5:c2:3a:dd:21:03:ce:cd:65:34:78:d7:b2:53:
d3:05:ee:44:b6:eb:69:14:d4:a9:b2:29:c3:33:85:
0f:50:26:3f:73:cf:80:8d:98:99:f2:1f:c8:95:16:
60:20:c1:12:58:c8:ad:38:53:91:b4:d7:65:5e:83:
05:a8:4b:ae:c3:53:14:73:8e:ff:db:12:62:7d:dd:
c0:61:f4:c5:91:e8:96:b3:9a:1e:b9:cd:39:cf:f7:
74:b7:4c:17:7b:ae:83:51:6c:b2:93:cf:40:fe:32:
a8:4c:30:a5:87:4d:aa:2e:93:77:a0:ca:7f:74:4b:
f6:f5:59:6e:04:72:67:be:7a:67:e8:f3:2b:96:27:
c0:76:21:b0:c0:bd:f5:07:8a:b4:3f:56:06:82:ad:
81:95:1c:e9:9c:96:35:48:96:94:14:4a:12:84:33:
b7:f4:47:d1:66:a0:66:02:72:9a:74:14:54:06:1b:
17:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5E:E1:71:AA:1C:9B:71:E4:91:34:2F:7E:6B:60:DE:78:98:64:27
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/O17hcaocm3HkkTQvfmtg3niYZCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.107.239.0/24
Signature Algorithm: sha256WithRSAEncryption
75:09:27:fb:e0:7e:d0:ca:ab:e9:de:5a:69:d6:d0:29:6e:a1:
e7:d7:d3:f4:c1:c2:ea:80:b2:48:84:4d:9c:3a:60:42:36:5a:
53:40:a4:c5:3b:28:f6:b0:f5:b9:84:24:bb:44:dc:c7:89:2c:
23:f1:85:1b:7f:f7:83:03:6b:6c:c1:e3:18:39:15:b2:d3:f2:
2e:aa:dc:9f:56:cb:a0:71:6f:17:bd:c0:9c:10:f2:8c:1e:a3:
08:a1:69:f6:d0:fd:7e:fa:26:58:d8:c3:bb:b2:5f:db:c7:b6:
18:5a:4c:3f:2d:b6:c8:e9:b0:ca:61:5a:dd:97:60:f4:30:d8:
97:4b:6a:a2:9f:f0:1b:2e:69:5f:8f:35:92:66:92:3e:6f:e6:
f1:c3:2e:e8:b9:78:38:fd:92:28:aa:f6:21:7d:d8:d9:78:ba:
8e:da:63:46:84:51:20:77:cf:63:23:b9:b6:48:49:3d:78:56:
fc:84:69:e9:a0:43:7c:4d:82:3a:c8:da:fa:24:6e:70:bf:7c:
27:37:83:9e:e8:a6:97:af:67:03:5c:58:10:35:ea:e7:b7:3a:
d0:c2:65:8b:63:a6:1f:b7:b6:3e:1e:e4:f8:a6:ec:95:4d:56:
a2:26:46:ce:59:64:c7:d0:00:44:b0:6c:1b:7c:22:d7:99:bc:
4e:7e:84:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:51 2024 by rpki-client on console-ams.rpki-client.org