Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/0KAuM6VEd9LsrPUhgKDg6UbpEZ0.roa
File: 0KAuM6VEd9LsrPUhgKDg6UbpEZ0.roa (raw, json)
Hash identifier: YxYs3bGR2g8tuPcHjuzDrguyXnEUr97Ead3cB8hdu7o=
Subject key identifier: D0:A0:2E:33:A5:44:77:D2:EC:AC:F5:21:80:A0:E0:E9:46:E9:11:9D
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01875039BED64C3EAFE2BE10FB9DBC12C8DE
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/0KAuM6VEd9LsrPUhgKDg6UbpEZ0.roa
Signing time: Wed 05 Apr 2023 07:02:54 +0000
ROA not before: Wed 05 Apr 2023 07:02:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 46.34.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:39:be:d6:4c:3e:af:e2:be:10:fb:9d:bc:12:c8:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Apr 5 07:02:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0a02e33a54477d2ecacf52180a0e0e946e9119d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:85:fe:ae:28:89:44:6e:f9:37:18:c9:26:2d:
54:85:ff:c9:fe:4e:d4:e8:c3:b3:18:1c:76:b7:f8:
1d:e6:3c:69:c9:f0:e1:62:de:c7:dd:11:58:87:a4:
84:f1:78:ff:1b:9d:57:3e:4f:02:8d:0c:25:39:88:
a0:8f:84:54:15:41:2a:a0:c1:05:e2:1f:af:4d:28:
a4:45:ff:ae:bf:cf:b8:49:15:79:64:d3:c7:2f:9a:
fa:fb:85:54:f4:57:de:74:1d:e0:d2:19:35:ef:df:
a9:ce:2a:66:e4:d5:46:c6:0c:58:a0:6a:b2:b0:02:
e5:e2:a4:19:87:4f:60:65:5a:2a:af:65:04:01:1b:
d3:0b:75:69:23:a7:d3:52:93:53:9f:db:a5:07:f6:
2c:f3:98:39:1e:98:5c:f1:db:eb:97:30:ee:c5:63:
6a:35:7a:70:03:e6:b2:63:75:77:d3:12:a1:7a:a9:
cb:a0:5f:f9:73:5e:6f:5f:d3:06:a3:1d:2f:06:28:
dd:e2:62:e2:8f:0d:34:3b:a8:c1:3e:f8:e9:7f:46:
cc:8c:54:7f:d1:2c:a7:d1:79:f3:7c:95:82:52:34:
0c:52:48:9c:86:d9:f8:4f:a8:cb:5c:05:1d:95:94:
22:3d:14:ae:26:3f:22:41:3a:d6:6b:c8:c7:85:15:
15:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A0:2E:33:A5:44:77:D2:EC:AC:F5:21:80:A0:E0:E9:46:E9:11:9D
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/0KAuM6VEd9LsrPUhgKDg6UbpEZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.41.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e7:84:b1:9e:89:40:ac:cb:da:02:86:a2:82:6d:d2:34:cf:
1f:2c:b0:b2:98:15:9f:79:6e:a6:86:b3:c5:3e:ac:78:fa:ab:
99:e0:51:26:40:65:82:21:73:39:6e:3e:d6:d9:fb:d0:f7:96:
63:9d:3c:8a:69:6e:bd:9c:33:72:ab:c5:b2:c7:7f:54:9f:1d:
a8:76:e9:dc:10:9e:80:b4:de:a7:fe:6b:8d:57:35:57:82:7d:
2c:b0:d1:95:a6:7e:f3:29:c3:94:f3:56:44:4e:0a:0e:ac:f7:
39:3a:13:1a:50:9a:b8:41:37:57:fe:69:32:1e:af:c1:e9:42:
1b:d9:bb:b5:f8:f8:0d:61:66:3e:e9:01:4e:33:67:53:1a:e0:
d6:83:1d:75:4b:c5:59:9d:98:a7:c0:ee:0a:af:03:6d:99:62:
cb:f6:ea:d4:09:d4:c4:ab:5d:95:66:66:87:e6:82:82:03:cd:
fa:3a:36:10:4b:ca:3c:c5:1a:68:c8:cd:bc:d9:3e:af:39:84:
dd:dd:c9:72:aa:b6:c4:5e:fa:6f:4c:77:8c:5b:a7:02:f5:f4:
97:fb:58:43:8d:35:2a:49:59:b9:00:16:ed:1b:de:31:3f:b6:
59:fa:bf:cb:d2:61:59:6e:7a:d5:d5:42:88:f0:ca:74:7a:dd:
94:9f:c3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:50 2023 by rpki-client on console-ams.rpki-client.org