Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/wcPw5rRrEuSb34TX1uQSRV8Uvhg.roa
File: wcPw5rRrEuSb34TX1uQSRV8Uvhg.roa (raw, json)
Hash identifier: 8GLnr3MslxoJBh/3w9rETWBFHuG3Bzy1OHi2tCaVOYY=
Subject key identifier: C1:C3:F0:E6:B4:6B:12:E4:9B:DF:84:D7:D6:E4:12:45:5F:14:BE:18
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 01930242EFEEA5B263C05ED9274CA5F17E55
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/wcPw5rRrEuSb34TX1uQSRV8Uvhg.roa
Signing time: Wed 06 Nov 2024 16:16:01 +0000
ROA not before: Wed 06 Nov 2024 16:16:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 46.8.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 15:14:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:02:42:ef:ee:a5:b2:63:c0:5e:d9:27:4c:a5:f1:7e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Nov 6 16:16:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1c3f0e6b46b12e49bdf84d7d6e412455f14be18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8c:df:d8:dc:a4:ed:76:18:0b:b6:fb:16:ea:
0d:ec:02:6f:0b:a9:59:02:dc:55:8a:22:da:fc:e0:
10:69:e2:10:7d:73:bc:23:31:d5:c0:d1:81:a7:71:
ea:75:d6:52:ec:b9:d0:96:d1:d9:c3:09:6f:b9:17:
fe:e8:af:53:6f:81:17:2a:fd:af:81:5f:37:48:cb:
0c:ca:59:8d:4f:1c:f5:55:56:c1:88:c7:46:2b:ad:
a0:28:52:3c:a8:96:d4:ab:f8:bf:e7:3b:b0:41:96:
2a:21:37:ad:a1:e1:20:33:dd:01:e5:0a:55:f2:9d:
b7:05:e0:3a:27:cb:cd:72:e1:e7:b3:6d:7f:3f:62:
8e:95:99:9c:81:98:06:68:14:6c:96:b8:8b:93:de:
79:0a:c9:9f:14:ba:1d:86:e1:99:2f:b0:ce:19:20:
3d:fe:47:9c:ad:cc:a4:07:8a:c3:57:d3:ed:9f:ab:
ea:3f:fc:48:66:2b:7c:be:08:5f:56:b7:09:22:2a:
f4:0a:4a:40:0a:c4:38:c8:fc:6d:f8:ca:6f:06:f4:
50:ef:5c:3a:51:03:37:ad:f0:84:c1:3d:64:14:b3:
b2:ea:18:98:1e:d7:59:77:37:16:0c:d2:55:31:71:
1e:d7:e1:d6:8c:3a:83:87:5f:be:4d:29:5f:91:f8:
cf:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C3:F0:E6:B4:6B:12:E4:9B:DF:84:D7:D6:E4:12:45:5F:14:BE:18
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/wcPw5rRrEuSb34TX1uQSRV8Uvhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.200.0/24
Signature Algorithm: sha256WithRSAEncryption
07:9c:0d:ea:14:ac:a9:d7:cf:9a:cc:8f:6b:c3:a3:57:4e:80:
f4:4f:3b:a2:21:66:98:d5:24:91:85:1f:2b:76:56:17:e3:64:
98:ff:87:f6:08:fa:d9:d8:35:09:15:36:42:83:93:17:13:4f:
0d:7f:52:06:ca:ef:00:59:ac:0c:43:c0:f7:6d:62:aa:70:50:
6b:4d:ae:64:64:a4:98:4b:d7:84:9a:dd:f8:bf:34:17:55:54:
fb:05:02:27:6b:c9:6c:84:7a:cf:70:a3:15:01:b5:e9:fa:07:
a5:85:13:e4:31:de:42:a3:db:65:0f:33:13:9d:f3:1d:f8:00:
a1:39:ef:fb:22:82:f6:08:3c:07:81:d3:d0:77:1c:bc:37:ff:
2a:05:4a:1e:21:11:e2:64:9e:df:12:4c:fa:e9:48:f8:ae:d5:
e6:22:bb:13:86:4c:48:00:04:85:43:87:8b:09:2a:9a:e8:7a:
3e:38:be:50:d7:a3:0c:3d:09:51:ac:11:0b:f2:c6:a9:44:90:
42:47:6b:49:ba:03:d8:22:18:ad:4b:af:f9:43:fa:52:71:43:
71:a1:c2:cf:23:5f:ce:b3:f4:f4:fa:97:29:0b:3c:4c:2b:84:
b4:5c:16:e5:c3:46:bc:d4:11:28:b8:49:b8:ef:a2:b5:18:98:
14:cc:f5:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMCQu/upbJjwF7ZJ0yl8X5VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0Mzc1ODE0MzQ0ZGYwYmY2ZDAxNzczM2FjZGM0ODhmMDAy
NjMxYjIwHhcNMjQxMTA2MTYxNjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMWMzZjBlNmI0NmIxMmU0OWJkZjg0ZDdkNmU0MTI0NTVmMTRiZTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4zf2Nyk7XYYC7b7FuoN7AJvC6lZ
AtxViiLa/OAQaeIQfXO8IzHVwNGBp3HqddZS7LnQltHZwwlvuRf+6K9Tb4EXKv2v
gV83SMsMylmNTxz1VVbBiMdGK62gKFI8qJbUq/i/5zuwQZYqITetoeEgM90B5QpV
8p23BeA6J8vNcuHns21/P2KOlZmcgZgGaBRslriLk955CsmfFLodhuGZL7DOGSA9
/kecrcykB4rDV9Ptn6vqP/xIZit8vghfVrcJIir0CkpACsQ4yPxt+MpvBvRQ71w6
UQM3rfCEwT1kFLOy6hiYHtdZdzcWDNJVMXEe1+HWjDqDh1++TSlfkfjP7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMHD8Oa0axLkm9+E19bkEkVfFL4YMB8GA1UdIwQY
MBaAFNQ3WBQ0TfC/bQF3M6zcSI8AJjGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2Yt
MzY3MWQ2N2ViOWY4LzEvd2NQdzVyUnJFdVNiMzRUWDF1UVNSVjhVdmhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9iMjRiMmQtMzUyMy00MjJlLTliY2YtMzY3MWQ2N2ViOWY4
LzEvMURkWUZEUk44TDl0QVhjenJOeElqd0FtTWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALgjIMA0G
CSqGSIb3DQEBCwUAA4IBAQAHnA3qFKyp18+azI9rw6NXToD0TzuiIWaY1SSRhR8r
dlYX42SY/4f2CPrZ2DUJFTZCg5MXE08Nf1IGyu8AWawMQ8D3bWKqcFBrTa5kZKSY
S9eEmt34vzQXVVT7BQIna8lshHrPcKMVAbXp+gelhRPkMd5Co9tlDzMTnfMd+ACh
Oe/7IoL2CDwHgdPQdxy8N/8qBUoeIRHiZJ7fEkz66Uj4rtXmIrsThkxIAASFQ4eL
CSqa6Ho+OL5Q16MMPQlRrBEL8sapRJBCR2tJugPYIhitS6/5Q/pScUNxocLPI1/O
s/T0+pcpCzxMK4S0XBblw0a81BEouEm476K1GJgUzPWy
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:41 2025 by rpki-client