Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/IDLPDCgo_jnVlv3sLRxNMrdl5dI.roa
File: IDLPDCgo_jnVlv3sLRxNMrdl5dI.roa (raw, json)
Hash identifier: iml+kge3QxU2dWuKua58P93Pf/X2455ZKp3QXgzPgmg=
Subject key identifier: 20:32:CF:0C:28:28:FE:39:D5:96:FD:EC:2D:1C:4D:32:B7:65:E5:D2
Certificate issuer: /CN=8bfca7c96e804505a48b99603d9b2124f1dd3702
Certificate serial: 01857182FB69D9E4953F6C338C8B9C818FCD
Authority key identifier: 8B:FC:A7:C9:6E:80:45:05:A4:8B:99:60:3D:9B:21:24:F1:DD:37:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/IDLPDCgo_jnVlv3sLRxNMrdl5dI.roa
Signing time: Mon 02 Jan 2023 08:04:47 +0000
ROA not before: Mon 02 Jan 2023 08:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36040
IP address blocks: 46.28.246.0/24 maxlen: 24
46.28.247.0/24 maxlen: 24
193.33.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:82:fb:69:d9:e4:95:3f:6c:33:8c:8b:9c:81:8f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bfca7c96e804505a48b99603d9b2124f1dd3702
Validity
Not Before: Jan 2 08:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2032cf0c2828fe39d596fdec2d1c4d32b765e5d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:33:20:dd:52:54:71:ae:bf:83:7e:e3:32:4f:
fe:0d:0b:44:2e:ea:27:37:32:88:48:47:24:75:7a:
a2:38:1d:e4:1c:c7:fb:af:5d:a0:d4:69:14:07:0d:
4e:55:26:ff:65:da:10:66:e2:1b:2b:a6:c2:41:1b:
02:d9:6a:87:bf:5d:4d:20:17:5e:5f:3a:74:dd:64:
17:15:8c:fc:c5:30:18:84:21:6a:b0:bd:52:d2:44:
d0:71:ab:98:e7:a6:cf:84:04:c0:87:56:b8:fa:61:
3f:d9:e9:8e:27:99:ce:e4:d8:cb:66:8b:30:1e:03:
63:9c:34:14:5f:4d:a0:58:81:27:05:fd:2a:b4:3d:
f2:78:ce:c6:a0:8d:01:ed:9e:60:8f:0f:18:f5:04:
27:68:6c:d8:93:d9:85:c4:5e:3c:d5:1c:35:55:a4:
97:c6:7c:98:ea:26:46:57:d2:d9:b0:73:bf:82:ef:
8c:ac:13:04:f5:ff:c9:c5:c6:a4:dd:2e:5d:d8:40:
58:f0:a8:8e:e6:b1:02:1f:5b:e6:85:fc:a1:80:28:
fc:4a:36:ef:24:3c:21:8b:4b:1a:c5:5a:8a:ba:7d:
fe:1c:d4:bc:17:27:4d:8c:02:9c:1b:87:c3:c0:19:
46:eb:85:0f:55:36:89:53:7e:9f:90:fb:6d:e0:e1:
4e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:32:CF:0C:28:28:FE:39:D5:96:FD:EC:2D:1C:4D:32:B7:65:E5:D2
X509v3 Authority Key Identifier:
keyid:8B:FC:A7:C9:6E:80:45:05:A4:8B:99:60:3D:9B:21:24:F1:DD:37:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i_ynyW6ARQWki5lgPZshJPHdNwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/IDLPDCgo_jnVlv3sLRxNMrdl5dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/8f3b6f-e86f-467d-aa90-18b1a937a567/1/i_ynyW6ARQWki5lgPZshJPHdNwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.246.0/23
193.33.5.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:cb:c1:c5:13:f4:af:3d:64:cc:e7:83:d4:09:57:a0:88:74:
f2:f4:4d:21:67:d7:50:20:11:de:9c:fc:a1:b3:aa:94:db:2e:
51:0d:a6:dd:bb:f9:d9:9d:2a:c6:ad:77:b6:64:41:0e:e0:20:
c3:d9:1e:10:0b:03:80:78:dc:45:0d:b9:8c:32:55:a5:75:85:
7e:b5:45:87:40:9a:37:6e:cb:2f:cc:1f:c9:e7:bd:8e:a9:da:
fe:b5:42:3b:d8:78:7f:fe:c1:f1:de:68:8f:7b:f7:3b:05:4e:
a0:6b:2b:07:59:67:56:9c:c5:61:af:91:33:e2:6c:b4:73:14:
f9:13:79:89:b7:c9:f9:c2:09:8d:49:8d:51:b2:7b:ff:bf:79:
bf:f0:d0:ab:fc:eb:89:b8:f3:ad:32:93:dc:08:53:d1:ca:b0:
9c:b2:69:9a:9e:ba:02:95:cf:ed:20:2a:ed:58:0c:69:53:e3:
87:40:43:53:9e:6d:3a:15:70:b1:f0:77:ed:64:0a:78:52:ca:
8f:a9:f3:7d:b6:ff:9b:d9:36:b9:86:41:8d:f6:89:c8:a7:3a:
f9:9c:b3:8d:c7:a6:ee:d4:e2:09:b5:c2:98:0f:8f:f5:32:00:
f7:2c:d6:c5:7c:8b:a3:96:10:60:e0:f0:be:aa:93:56:35:8f:
4d:65:ad:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:19 2024 by rpki-client on console-ams.rpki-client.org