Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/zYk808m7gWT4hPQv8miopaRvdvg.roa
File: zYk808m7gWT4hPQv8miopaRvdvg.roa (raw, json)
Hash identifier: jY6N1AKiYssDVbbiF/tLgyLH3JKtScPId/BrUvdVWys=
Subject key identifier: CD:89:3C:D3:C9:BB:81:64:F8:84:F4:2F:F2:68:A8:A5:A4:6F:76:F8
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 018CC2DAB97BF0902F5687C287C00D9A69E3
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/zYk808m7gWT4hPQv8miopaRvdvg.roa
Signing time: Mon 01 Jan 2024 02:29:23 +0000
ROA not before: Mon 01 Jan 2024 02:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203120
IP address blocks: 46.102.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 14:55:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:b9:7b:f0:90:2f:56:87:c2:87:c0:0d:9a:69:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 1 02:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd893cd3c9bb8164f884f42ff268a8a5a46f76f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:72:4a:80:5d:05:61:99:1f:70:82:c9:af:49:
b9:b5:d5:a6:91:41:22:39:5f:76:c9:89:ce:83:aa:
68:dd:20:85:8b:25:7d:6c:a5:ec:47:c3:fe:7e:d3:
eb:d4:8f:27:b0:42:9e:c4:fe:48:90:0e:15:94:e1:
89:19:64:46:49:8f:02:89:7f:48:d5:57:2d:5c:24:
44:53:47:94:f2:dd:22:89:ea:64:ec:3e:10:9d:b2:
00:da:c9:12:12:cd:11:da:3d:53:64:9c:be:87:56:
d2:93:70:ad:93:3f:bb:26:da:a8:4b:a9:09:11:77:
bf:c6:c2:4d:94:c7:3d:07:12:2a:01:56:82:46:8f:
df:6d:b5:dc:9d:f0:25:4a:40:b2:82:f6:8a:0b:1c:
a3:49:6c:e9:50:e8:0b:5a:7a:7a:ea:07:ed:b5:34:
4f:38:af:d8:ac:14:bb:6e:12:f5:1d:a2:98:4c:1f:
b9:49:bc:36:5c:0a:8d:5a:cb:02:27:f2:c7:c9:ca:
11:de:8a:4d:93:d3:e5:d0:39:ef:88:2f:f7:49:61:
53:6a:20:54:60:43:73:ea:96:cc:a7:4b:ed:f3:1e:
ec:79:ff:a7:03:29:c4:47:9b:81:3f:8b:96:e7:3f:
9c:99:d1:0a:f0:60:55:2d:ac:6d:83:cd:96:8c:84:
dc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:89:3C:D3:C9:BB:81:64:F8:84:F4:2F:F2:68:A8:A5:A4:6F:76:F8
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/zYk808m7gWT4hPQv8miopaRvdvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.180.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:95:5c:dd:9e:5a:42:46:98:c0:b4:d6:03:e0:44:ad:3d:32:
43:18:ca:a6:54:7f:de:1b:97:b4:08:9c:f1:b3:cd:c0:1f:af:
82:39:b5:90:90:4e:dc:75:6e:ee:d1:45:1e:a4:c9:5f:4b:fb:
7d:c2:a6:8c:58:c0:c1:fa:32:2c:6a:97:e2:dd:fd:d4:f9:aa:
3d:3e:d4:ed:d8:2b:03:28:81:aa:36:b7:55:6b:14:13:fd:a5:
34:97:db:41:5c:3a:04:8c:1d:61:6d:e1:5e:a0:f0:2c:5a:5a:
c4:24:e0:89:dc:c2:d1:ab:c1:c0:e7:c7:11:97:c0:c1:91:fc:
8d:6b:ac:77:21:6f:7c:85:59:60:25:5f:6f:3d:5c:91:40:d7:
41:d8:fb:fb:bd:da:d8:d2:ad:87:47:bb:92:0e:7c:77:9c:80:
90:fe:92:01:07:3d:3a:d9:9b:80:ba:b9:75:68:e3:19:12:a0:
94:c7:f2:cf:23:51:52:0d:39:6a:18:ea:ac:93:f9:a2:e1:14:
3a:5e:b7:06:13:f6:25:a6:e8:81:48:72:1d:d4:4f:0a:8e:a1:
f6:69:6d:82:31:a4:bf:42:fe:97:58:98:a7:1d:12:c8:36:cf:
6e:ca:57:0b:1c:58:74:68:b0:0a:61:e5:cc:9c:3c:cc:37:67:
b9:02:a9:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:57 2024 by rpki-client on console-fra.rpki-client.org