Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c5dd3e-937b-434f-bbb8-80cc86e51822/1/oTt1QerxYjYNjd_46xiSmyoAw4o.roa
File: oTt1QerxYjYNjd_46xiSmyoAw4o.roa (raw, json)
Hash identifier: 0Io5jda73zVCtkHXLFpmHwu9Cvtp503gXldBkSfHP0k=
Subject key identifier: A1:3B:75:41:EA:F1:62:36:0D:8D:DF:F8:EB:18:92:9B:2A:00:C3:8A
Certificate issuer: /CN=cfc0f99d79793a6f01e9ad627d1f968b0c2d0f3b
Certificate serial: 0188530658168787DD7F5D7813C1C409B66E
Authority key identifier: CF:C0:F9:9D:79:79:3A:6F:01:E9:AD:62:7D:1F:96:8B:0C:2D:0F:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z8D5nXl5Om8B6a1ifR-WiwwtDzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c5dd3e-937b-434f-bbb8-80cc86e51822/1/oTt1QerxYjYNjd_46xiSmyoAw4o.roa
Signing time: Thu 25 May 2023 13:08:24 +0000
ROA not before: Thu 25 May 2023 13:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199402
IP address blocks: 46.28.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:53:06:58:16:87:87:dd:7f:5d:78:13:c1:c4:09:b6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfc0f99d79793a6f01e9ad627d1f968b0c2d0f3b
Validity
Not Before: May 25 13:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a13b7541eaf162360d8ddff8eb18929b2a00c38a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8e:35:3c:77:a1:f6:48:78:13:1b:e7:ae:fb:
98:4b:e2:0f:7d:ba:4f:8f:00:06:eb:1b:16:cf:47:
40:01:41:d8:21:2e:0e:0f:55:79:e1:4b:71:38:fa:
0c:48:54:7a:36:1f:8e:ba:ea:cb:92:b9:45:92:2b:
d4:94:0e:44:07:cd:75:99:fd:59:78:bd:4f:06:96:
cd:95:9e:9b:b2:4c:ef:e8:12:cb:72:1d:87:69:a4:
89:68:ae:ef:8d:b1:43:9f:0d:6d:1a:ae:69:01:d0:
d6:a0:49:ff:a5:3e:c2:e0:c9:d5:a8:63:b0:ca:34:
24:1d:29:5e:37:bc:7b:76:7a:5e:76:43:bb:f0:3c:
6b:df:38:4a:d1:95:20:76:b4:df:97:f0:b5:e4:c6:
a2:8b:d5:21:56:d7:08:5b:f5:d2:22:41:6b:83:b1:
1b:54:d1:35:e7:b1:17:a5:48:29:7d:c0:1b:2c:4c:
b7:2e:bd:ee:d7:5c:9a:73:76:3c:c7:40:41:46:59:
7d:db:72:f9:0a:0a:70:34:bb:a5:49:56:03:5e:db:
0f:e0:1a:af:08:6d:38:81:b0:5e:4f:2c:80:66:f5:
c5:8e:e0:52:b8:a2:10:5e:c2:06:d5:d9:a4:b9:90:
4b:a0:af:a6:4d:ec:47:1e:4f:87:bb:7c:fb:e8:08:
56:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3B:75:41:EA:F1:62:36:0D:8D:DF:F8:EB:18:92:9B:2A:00:C3:8A
X509v3 Authority Key Identifier:
keyid:CF:C0:F9:9D:79:79:3A:6F:01:E9:AD:62:7D:1F:96:8B:0C:2D:0F:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z8D5nXl5Om8B6a1ifR-WiwwtDzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c5dd3e-937b-434f-bbb8-80cc86e51822/1/oTt1QerxYjYNjd_46xiSmyoAw4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c5dd3e-937b-434f-bbb8-80cc86e51822/1/z8D5nXl5Om8B6a1ifR-WiwwtDzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.235.0/24
Signature Algorithm: sha256WithRSAEncryption
91:78:24:42:c7:b8:0d:2e:ea:bd:5e:84:b8:88:00:3f:a4:69:
1b:91:ff:0c:ab:1f:5b:3f:1f:55:20:ff:2d:f9:ea:15:ab:3a:
df:31:20:3f:f1:04:65:2a:cb:f4:62:11:01:49:83:28:84:24:
15:51:f5:9f:a8:fb:a8:e6:81:7a:61:00:8b:ad:34:f0:09:11:
70:d5:c1:a1:18:22:ad:c8:70:be:76:25:8c:d3:ff:48:d7:0d:
8a:f3:a4:d7:96:e1:33:76:43:f5:93:23:18:0f:59:01:9c:0e:
b1:bd:71:b8:2e:1a:d3:f7:b9:27:3c:08:fe:5d:11:95:24:04:
84:eb:61:f2:82:da:0f:bd:48:43:d7:8f:a3:e2:d5:95:dd:39:
47:43:b6:c3:17:e0:97:eb:4e:07:af:4b:21:e0:c4:2d:aa:e0:
0c:4e:3f:b1:71:27:17:ae:a2:34:d9:9a:4f:63:e4:c4:72:1b:
a4:f9:45:65:99:7b:c0:90:6e:71:d4:53:1c:7b:7f:f3:94:46:
0f:56:82:09:33:71:dd:26:b9:38:79:00:16:b2:90:e1:8f:5b:
0f:19:d5:f1:45:63:c8:e8:5a:cd:13:2b:cb:d2:a8:a6:ed:5c:
3c:7c:7f:b0:63:2a:08:ce:b0:64:4c:12:b5:37:e1:e8:c8:32:
b1:ba:e7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 09:36:40 2023 by rpki-client on console-ams.rpki-client.org