Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/IB6varZKgY1pLVcLCtehcOu1RxA.roa
File: IB6varZKgY1pLVcLCtehcOu1RxA.roa (raw, json)
Hash identifier: jEJk9Cse/oPCw6zoDPYq6UYokK9VizDrsLZ4ipYmIYI=
Subject key identifier: 20:1E:AF:6A:B6:4A:81:8D:69:2D:57:0B:0A:D7:A1:70:EB:B5:47:10
Certificate issuer: /CN=8ca8a4d42a0196df7cc0e14f597cf5660d63c09f
Certificate serial: 01872C7963F7B1D8474949CE1008A54E7B26
Authority key identifier: 8C:A8:A4:D4:2A:01:96:DF:7C:C0:E1:4F:59:7C:F5:66:0D:63:C0:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/IB6varZKgY1pLVcLCtehcOu1RxA.roa
Signing time: Wed 29 Mar 2023 08:26:05 +0000
ROA not before: Wed 29 Mar 2023 08:26:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33915
IP address blocks: 46.29.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:79:63:f7:b1:d8:47:49:49:ce:10:08:a5:4e:7b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ca8a4d42a0196df7cc0e14f597cf5660d63c09f
Validity
Not Before: Mar 29 08:26:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=201eaf6ab64a818d692d570b0ad7a170ebb54710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:64:62:4a:fc:59:4b:e7:56:36:b6:b8:e6:ed:
40:06:af:dc:bb:18:8e:cf:dc:8e:7e:64:c7:ec:da:
0f:d0:be:8d:18:3e:21:26:0b:12:b4:7e:c3:20:07:
63:07:1b:cc:f5:66:fd:d4:35:2d:c4:54:23:36:aa:
de:0b:e9:fb:1d:40:98:05:ff:a3:9a:ba:ef:fd:88:
fb:fa:4a:4f:cc:5b:b3:53:1b:e0:cc:97:86:96:40:
f7:db:3b:a8:c7:37:7b:b2:52:10:83:12:ae:ab:02:
fe:7b:1a:69:8d:d5:b6:c9:5f:87:01:e6:3e:bf:15:
75:1c:75:f9:69:ff:91:ad:84:b8:bd:93:f1:a2:4b:
93:a1:88:3b:dd:79:8f:5b:5a:75:02:43:80:d2:87:
51:d9:45:35:78:0f:87:94:b3:aa:20:9a:64:7a:36:
63:67:60:05:cf:cf:dc:aa:c6:5c:63:10:e3:94:85:
b8:31:4c:a8:11:fd:91:53:e3:8f:d7:6e:06:c9:ba:
48:90:e7:0c:4d:cf:68:a5:8f:9a:fb:c2:4b:ba:43:
37:15:22:99:26:3c:7c:86:86:e5:c3:e9:91:b8:d3:
6d:e3:26:47:91:32:08:80:6d:ee:80:20:42:28:32:
fb:51:95:3b:69:4b:98:f8:67:88:10:dc:d2:6b:dc:
f0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1E:AF:6A:B6:4A:81:8D:69:2D:57:0B:0A:D7:A1:70:EB:B5:47:10
X509v3 Authority Key Identifier:
keyid:8C:A8:A4:D4:2A:01:96:DF:7C:C0:E1:4F:59:7C:F5:66:0D:63:C0:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jKik1CoBlt98wOFPWXz1Zg1jwJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/IB6varZKgY1pLVcLCtehcOu1RxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bb0480-66ad-4288-b8d3-1004c1e50dfe/1/jKik1CoBlt98wOFPWXz1Zg1jwJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.240.0/24
Signature Algorithm: sha256WithRSAEncryption
27:d2:1e:76:96:44:07:31:8c:c0:3c:fa:70:d3:18:51:7e:1a:
17:3e:94:77:7f:df:de:c9:3c:54:83:72:9b:17:8a:72:2d:7a:
bd:84:4e:2f:3d:c3:60:ac:68:51:97:4c:e4:01:c0:71:69:0c:
cf:9d:7c:13:5f:36:84:ef:5e:d8:e1:64:69:3d:22:9b:50:d7:
b3:b4:8e:e3:f9:b7:84:6d:46:9c:87:e0:d4:f5:5c:3e:cc:e3:
de:b1:98:1d:d6:ad:06:43:d9:56:6b:fb:74:15:03:59:82:4a:
90:ec:ab:70:d8:58:4d:23:01:1b:42:f1:fa:3b:a0:24:ea:ae:
ed:11:12:e0:63:68:63:52:10:18:64:27:d6:65:4c:2e:c3:a8:
40:59:f3:ad:8e:1b:6a:1c:49:5d:b6:cb:fa:72:53:d4:f9:9a:
61:ae:b9:d9:c1:11:b1:c7:92:f4:58:e0:94:a2:b3:e9:4f:02:
e3:79:13:0f:ed:af:31:11:48:5a:cf:cc:33:2b:39:67:3a:19:
5f:a0:a3:e9:15:8d:58:68:8c:6e:42:3c:74:75:e5:2c:f8:3e:
e7:32:19:2d:1b:f8:07:ba:a0:d4:8b:9a:b2:79:8c:71:ca:07:
a4:75:e0:c1:82:5c:42:24:d5:29:2a:b8:f7:b1:96:5e:09:8e:
af:3f:ba:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:50 2023 by rpki-client on console-ams.rpki-client.org