Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/3rFOqCfXV9724_HO1t2IlIeiBak.roa
File: 3rFOqCfXV9724_HO1t2IlIeiBak.roa (raw, json)
Hash identifier: FqBTTq02+eChGvvJlNDG83iQ03qCtMYDvuSraiCY6kA=
Subject key identifier: DE:B1:4E:A8:27:D7:57:DE:F6:E3:F1:CE:D6:DD:88:94:87:A2:05:A9
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 0185727A2BEAF2E99E72B77FE3F6152360E6
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/3rFOqCfXV9724_HO1t2IlIeiBak.roa
Signing time: Mon 02 Jan 2023 12:34:47 +0000
ROA not before: Mon 02 Jan 2023 12:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203120
IP address blocks: 46.102.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:2b:ea:f2:e9:9e:72:b7:7f:e3:f6:15:23:60:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 2 12:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=deb14ea827d757def6e3f1ced6dd889487a205a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:94:c2:bc:0f:80:e9:1f:eb:cb:f3:6a:9e:23:
1b:64:5f:44:66:a7:bc:95:29:12:31:cd:3f:ff:c5:
fc:8d:2f:4f:48:b1:ea:73:86:aa:2b:e2:fe:ec:c0:
b8:01:6a:6a:c0:61:ad:86:08:a7:0b:ad:23:ef:25:
ea:53:da:69:35:7c:d1:6f:a6:bb:f3:83:f9:b0:81:
69:1f:86:e7:48:ac:66:08:0f:b6:bf:7c:70:73:67:
c9:68:33:a1:48:12:e7:1b:cc:d5:f6:7d:9b:65:e1:
99:4c:c8:19:35:ec:58:0c:2c:b2:8a:da:23:93:c1:
ee:2e:01:44:43:e2:46:f0:b5:a6:97:3c:07:f4:58:
3e:48:c3:68:74:35:77:0c:49:e8:6f:42:0c:68:40:
40:5f:14:be:95:f2:fc:59:6a:1b:67:d6:55:c6:d0:
07:85:cb:84:41:7b:8e:40:74:59:55:25:ac:b7:c4:
02:1d:0f:a0:58:06:30:e6:7e:8e:80:c2:64:09:82:
f4:f3:be:97:59:21:06:2f:2b:b3:ea:81:87:58:2c:
9d:3e:f8:73:ed:9f:1f:54:83:67:2b:0f:7a:b1:39:
25:06:11:31:cd:26:8b:af:73:e7:c2:c5:cb:63:ee:
9f:ff:61:33:96:b2:5c:18:c6:da:b6:de:39:87:cb:
c4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B1:4E:A8:27:D7:57:DE:F6:E3:F1:CE:D6:DD:88:94:87:A2:05:A9
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/3rFOqCfXV9724_HO1t2IlIeiBak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:a8:af:6b:12:f3:8c:54:dc:dd:72:4f:72:fd:1d:aa:4a:be:
95:67:b2:f4:47:6f:0f:57:74:41:c1:4a:eb:8e:d3:7d:09:fa:
b5:b8:55:58:ad:39:a6:37:18:2d:21:a8:3e:95:4e:bf:fe:08:
e2:d1:3c:62:7a:8c:68:fd:f5:0a:5d:b1:9f:13:91:3e:b3:df:
da:77:84:7c:3a:80:be:b9:7b:62:16:51:85:97:5f:d5:4b:fa:
25:4d:9f:b2:13:f9:70:d1:79:a1:19:bb:bc:65:06:e0:ca:4b:
4c:38:70:31:38:22:c5:be:2f:2d:ff:8b:34:25:e4:ba:c9:d1:
85:80:b2:92:97:eb:07:94:21:9a:c9:1d:a5:c0:0b:14:7e:33:
28:fe:7c:c4:19:57:d3:bd:ae:b0:bf:dd:5e:78:62:19:01:8d:
87:be:3d:9d:bb:8f:83:56:a3:6e:fc:3a:5e:73:15:41:d1:a2:
87:ca:ef:0b:47:4e:14:f8:2f:55:ce:c5:20:b4:f0:30:eb:bc:
55:53:72:9f:64:73:32:e9:de:cb:b7:28:44:37:44:58:6b:df:
bd:e9:0b:d7:83:5d:0e:45:5d:70:8a:c4:3b:4f:b5:74:4a:24:
f6:c8:36:36:cf:90:43:f3:2f:c2:02:e7:7b:38:24:ef:20:18:
65:ec:69:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:33 2024 by rpki-client on console-ams.rpki-client.org