Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/ed20e6-4f56-4599-82c0-33a9a6f42f0c/1/pxUtROyEIXZG_itwRswp9Y7Dz4Y.roa
File: pxUtROyEIXZG_itwRswp9Y7Dz4Y.roa (raw, json)
Hash identifier: ZUCaHrikhpMpRa1CgtBpIlFNqJWIO+cGGy/U0SSd4cg=
Subject key identifier: A7:15:2D:44:EC:84:21:76:46:FE:2B:70:46:CC:29:F5:8E:C3:CF:86
Certificate issuer: /CN=04e50240af40eb2ad60fc3078ac33fc5355d4416
Certificate serial: 018571954C621A2DB3900A0E67D66D246510
Authority key identifier: 04:E5:02:40:AF:40:EB:2A:D6:0F:C3:07:8A:C3:3F:C5:35:5D:44:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOUCQK9A6yrWD8MHisM_xTVdRBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/ed20e6-4f56-4599-82c0-33a9a6f42f0c/1/pxUtROyEIXZG_itwRswp9Y7Dz4Y.roa
Signing time: Mon 02 Jan 2023 08:24:47 +0000
ROA not before: Mon 02 Jan 2023 08:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12931
IP address blocks: 46.35.48.0/20 maxlen: 32
213.182.0.0/19 maxlen: 32
2001:14e0::/32 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:4c:62:1a:2d:b3:90:0a:0e:67:d6:6d:24:65:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e50240af40eb2ad60fc3078ac33fc5355d4416
Validity
Not Before: Jan 2 08:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7152d44ec84217646fe2b7046cc29f58ec3cf86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:33:dc:e0:60:a2:56:ad:03:8f:c5:da:8f:
7e:06:4d:1c:b2:c1:9b:ee:49:33:e9:bc:6c:1e:2d:
50:76:0e:41:e8:08:db:d2:58:cc:5e:d6:3c:80:ff:
0e:af:6d:a3:88:5b:e3:7b:e4:9f:5a:87:56:2f:2a:
76:81:e5:17:be:4c:18:ee:aa:8a:c0:e7:65:86:f6:
e1:82:5e:ba:8f:e4:9a:f7:7f:76:e9:ea:0d:98:bc:
85:dc:e6:51:ba:38:8c:2c:53:86:71:4d:65:4a:64:
e0:66:bc:12:15:53:2d:43:2a:3b:c7:b1:89:a1:a8:
d8:c5:a9:81:aa:3b:28:b5:7f:04:72:e2:2b:a9:b2:
3f:48:f4:02:1a:22:9a:e8:68:67:87:52:ce:f5:e3:
98:8b:8b:c6:fe:b9:7b:fc:61:c4:f2:e2:38:9f:14:
d2:d7:ea:f8:cf:85:81:8d:6d:6c:ff:5b:9e:0d:de:
71:3b:e0:d6:35:a6:6a:3d:5a:0d:d8:dc:4e:88:4d:
ff:c2:fa:ef:f4:cc:6b:3f:37:5d:b3:9a:8a:ec:b2:
a9:7a:2b:f5:9b:c7:88:05:38:f5:db:60:74:01:50:
78:de:10:4a:b8:66:b9:aa:a7:37:5c:08:83:eb:66:
64:19:84:92:6a:20:2b:cb:c6:f6:b4:03:53:0c:87:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:15:2D:44:EC:84:21:76:46:FE:2B:70:46:CC:29:F5:8E:C3:CF:86
X509v3 Authority Key Identifier:
keyid:04:E5:02:40:AF:40:EB:2A:D6:0F:C3:07:8A:C3:3F:C5:35:5D:44:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOUCQK9A6yrWD8MHisM_xTVdRBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/ed20e6-4f56-4599-82c0-33a9a6f42f0c/1/pxUtROyEIXZG_itwRswp9Y7Dz4Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/ed20e6-4f56-4599-82c0-33a9a6f42f0c/1/BOUCQK9A6yrWD8MHisM_xTVdRBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.35.48.0/20
213.182.0.0/19
IPv6:
2001:14e0::/32
Signature Algorithm: sha256WithRSAEncryption
44:37:16:3f:dc:19:54:b2:bc:9c:86:2e:f1:35:95:96:c1:2f:
41:14:8f:95:24:52:80:62:23:5b:78:86:05:0a:7a:65:94:60:
0c:d4:14:05:38:54:9c:4b:7d:ea:8a:e0:ce:e0:11:39:96:c4:
2b:c7:48:2d:39:24:54:9c:4d:fd:b2:9a:72:a7:53:a6:cf:c5:
61:b4:6e:76:39:e6:80:22:0c:92:c4:10:ae:ce:91:99:ef:1c:
16:f5:8d:14:70:6d:87:ea:65:b0:a6:4f:e2:a0:06:58:e6:45:
6d:4d:2c:b0:bc:f9:e3:bf:3e:ff:a4:dd:19:34:aa:25:75:a5:
d0:1c:4c:6d:d6:99:33:2e:5a:27:51:93:a6:89:4c:5e:4e:43:
99:75:13:df:29:0b:79:f8:be:19:ab:00:6c:35:11:f7:6c:25:
86:36:c4:4d:f2:32:9c:d9:70:e6:a0:e9:eb:cb:1e:96:6a:11:
0f:54:d8:1a:38:7d:19:99:fd:16:71:97:e0:44:ce:f0:36:d3:
07:2b:9a:ef:84:ed:d6:1b:94:e5:0c:8a:83:f0:8d:31:04:3b:
55:50:34:73:7f:3c:fa:70:ee:95:a8:78:45:68:d8:f9:58:ba:
a3:df:b8:c1:a0:01:59:06:dd:71:b7:65:85:62:d5:67:7b:0d:
74:22:e5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:08 2024 by rpki-client on console-fra.rpki-client.org