Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/dAYSYAAqkeYh5w2kAQ5G-mB6Y5c.roa
File: dAYSYAAqkeYh5w2kAQ5G-mB6Y5c.roa (raw, json)
Hash identifier: zQGCsC3+R/29Bv4JzlrFSxHwRR5lI4rqDpdXHhs3FMM=
Subject key identifier: 74:06:12:60:00:2A:91:E6:21:E7:0D:A4:01:0E:46:FA:60:7A:63:97
Certificate issuer: /CN=27f0b737715114ded20f68ef0347d9f752a0e0b7
Certificate serial: 018570150EEF4CC1CAF1225E1818F82A88C8
Authority key identifier: 27:F0:B7:37:71:51:14:DE:D2:0F:68:EF:03:47:D9:F7:52:A0:E0:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_C3N3FRFN7SD2jvA0fZ91Kg4Lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/dAYSYAAqkeYh5w2kAQ5G-mB6Y5c.roa
Signing time: Mon 02 Jan 2023 01:25:06 +0000
ROA not before: Mon 02 Jan 2023 01:25:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34841
IP address blocks: 46.252.48.0/20 maxlen: 20
185.77.124.0/23 maxlen: 23
185.77.126.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:0e:ef:4c:c1:ca:f1:22:5e:18:18:f8:2a:88:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f0b737715114ded20f68ef0347d9f752a0e0b7
Validity
Not Before: Jan 2 01:25:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74061260002a91e621e70da4010e46fa607a6397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:15:c7:51:39:9e:a7:62:b3:ed:94:25:f5:ce:
31:a8:9d:81:7a:eb:0c:2f:97:6a:e9:cb:a6:eb:01:
cc:c0:31:9c:d5:3d:a4:94:ed:fb:33:7c:55:5e:82:
28:f2:36:ba:75:91:d8:75:fb:8c:6f:11:bd:95:64:
e8:b8:63:34:f9:f8:66:cc:9b:d4:83:86:d9:82:26:
4a:b9:75:e7:fe:da:57:71:01:6b:c1:e6:42:9a:b4:
99:44:b4:76:78:7c:3e:a0:04:e6:42:af:dd:a4:c8:
5f:95:eb:b9:6b:60:0d:77:36:6a:55:6f:18:4b:45:
3d:8a:9d:90:59:d9:67:55:02:27:a6:db:c6:ed:ae:
4e:e3:89:94:8f:03:86:74:9b:d2:76:cf:40:29:75:
cf:ad:6d:40:bd:4c:f4:4b:a7:29:07:c8:70:55:8c:
e1:fc:d4:02:e5:f1:2b:c2:f8:02:63:3e:a5:94:f8:
e2:f5:73:27:69:04:10:60:e0:b1:dc:8f:f1:d1:0b:
1a:e4:3f:3a:3e:1a:f4:48:5e:c8:44:f6:2c:a0:d3:
75:e0:7d:22:92:d1:23:2a:08:24:50:42:c1:1f:e0:
e2:da:1e:a8:8a:f1:6b:94:ac:90:e9:5f:59:be:4e:
f6:b4:07:2c:f2:33:c1:22:4c:7c:a4:7d:8d:27:8a:
65:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:06:12:60:00:2A:91:E6:21:E7:0D:A4:01:0E:46:FA:60:7A:63:97
X509v3 Authority Key Identifier:
keyid:27:F0:B7:37:71:51:14:DE:D2:0F:68:EF:03:47:D9:F7:52:A0:E0:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_C3N3FRFN7SD2jvA0fZ91Kg4Lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/dAYSYAAqkeYh5w2kAQ5G-mB6Y5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b67953-3ce3-4afe-9d7e-1ed620452509/1/J_C3N3FRFN7SD2jvA0fZ91Kg4Lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.48.0/20
185.77.124.0/22
Signature Algorithm: sha256WithRSAEncryption
89:7d:9a:69:93:47:10:fc:2f:ce:e3:fe:60:16:dc:52:83:56:
8a:25:61:cc:6e:e2:b3:71:04:a3:25:c6:cf:36:4b:5e:b2:78:
d0:ee:17:63:6c:22:df:97:b8:6d:db:f1:9b:d2:98:74:5f:2d:
de:80:78:c8:92:cf:b3:4c:68:0c:ff:64:8a:7e:8a:0e:4f:02:
d1:3b:31:d6:97:d1:3c:10:3e:61:35:17:b8:82:68:bb:83:78:
40:bd:b6:44:08:c2:bc:83:59:e8:54:80:4a:f1:d6:bb:ad:7b:
b6:8b:76:05:37:16:b8:23:a2:a0:55:bb:47:92:b4:cd:3d:90:
f7:e9:bc:b5:a5:82:b7:b3:f0:8a:b2:f8:89:92:14:8b:05:cb:
96:ba:a6:b3:11:29:ad:d7:ff:2f:c1:91:69:38:ed:5c:e8:63:
16:89:0d:47:10:5b:0e:5f:74:c3:4c:5e:e1:5e:9f:b2:8c:21:
55:87:c7:49:e6:2e:84:1e:71:24:de:81:c9:8f:63:24:b3:64:
91:dd:fe:f6:72:08:b7:f6:2f:e2:df:45:33:2c:30:9b:23:b3:
99:9c:ff:0d:86:84:5d:a0:b9:7a:6a:10:83:24:8b:67:10:e0:
fe:87:92:a6:03:fb:33:4f:39:47:b2:07:ce:72:6d:b5:7f:a0:
8b:58:23:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:01 2024 by rpki-client on console-fra.rpki-client.org