Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/2cPkq_0Mbts_uNk7NP-iKekxziI.roa
File: 2cPkq_0Mbts_uNk7NP-iKekxziI.roa (raw, json)
Hash identifier: XqBFxsDIP8IVQ6RcFY8yWUQYaDJkpLjclJlOxfbp/PQ=
Subject key identifier: D9:C3:E4:AB:FD:0C:6E:DB:3F:B8:D9:3B:34:FF:A2:29:E9:31:CE:22
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0187041044B78ECB9A0A535514B4C1157D0B
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/2cPkq_0Mbts_uNk7NP-iKekxziI.roa
Signing time: Tue 21 Mar 2023 12:06:27 +0000
ROA not before: Tue 21 Mar 2023 12:06:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22822
IP address blocks: 46.34.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Apr 2023 23:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:04:10:44:b7:8e:cb:9a:0a:53:55:14:b4:c1:15:7d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 21 12:06:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9c3e4abfd0c6edb3fb8d93b34ffa229e931ce22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:da:d6:df:9d:3f:b3:15:59:14:12:27:e2:db:
97:a0:e1:dd:a9:f1:73:87:fe:6d:69:82:1d:11:78:
90:ac:9b:36:6e:e6:6a:f8:be:ab:8b:22:d7:c1:fc:
e9:80:b0:ae:43:bd:72:f7:71:a1:cd:d6:c1:be:18:
13:9a:18:e7:60:b2:ca:45:f5:7d:5e:bd:da:fd:2b:
5f:cd:17:0e:6c:b9:9d:b0:10:69:ba:f0:14:82:41:
56:13:7c:3f:f2:b3:af:07:52:3c:14:1d:44:3a:ed:
87:06:9c:84:66:b6:5e:3a:c2:70:15:14:1e:1b:f0:
39:8b:55:a5:f4:ed:fc:17:b5:f0:9c:11:35:3c:58:
e4:44:37:0f:be:16:a7:97:4d:c1:7b:29:45:f4:35:
c3:50:31:54:98:1a:4f:7e:1c:57:78:97:0e:38:ef:
43:f0:11:22:5e:be:71:6f:80:db:b8:d0:d9:28:20:
9e:e6:76:6a:0e:de:c4:ec:fc:29:f8:ae:89:57:44:
6c:8d:89:8f:4d:c6:00:a4:6d:de:7d:29:e9:ea:81:
16:75:c9:b1:cd:20:44:df:d0:3e:c0:0a:32:ce:66:
b0:bf:4d:8f:dd:8a:28:12:15:7e:e1:fe:a3:7c:2a:
7b:ca:47:e3:6d:25:bd:a7:6e:34:9b:ca:41:59:cd:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C3:E4:AB:FD:0C:6E:DB:3F:B8:D9:3B:34:FF:A2:29:E9:31:CE:22
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/2cPkq_0Mbts_uNk7NP-iKekxziI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.52.0/24
Signature Algorithm: sha256WithRSAEncryption
75:f0:fa:07:c4:f6:46:de:39:c4:cd:f9:36:9c:87:36:d2:e4:
30:17:a5:d9:71:27:9c:41:b2:bb:67:1c:0e:f7:fe:74:33:45:
3e:ef:20:3f:b8:90:4e:73:82:24:17:21:82:a3:9f:2f:a4:06:
ad:44:d7:ff:19:00:7d:5c:cd:7f:dd:3f:6d:57:f3:76:62:5d:
2e:fd:63:2b:63:ab:16:5c:af:8f:7b:87:be:49:79:c6:c9:d4:
f5:e6:8b:75:32:da:54:bd:66:ee:c4:64:d3:55:87:e8:1e:d4:
88:2b:e8:92:00:61:dd:1c:8a:5c:8a:a2:98:ce:d0:6d:f2:a6:
94:ca:23:c6:a8:88:75:d9:5f:e3:30:eb:b6:5c:69:60:ce:2a:
58:46:86:af:12:f5:ef:27:8b:68:19:a4:6d:4c:e9:96:3e:18:
9c:c7:1d:eb:f7:95:d8:54:46:cb:05:0b:50:ba:d0:8c:1d:5b:
e2:a4:83:41:99:8b:fa:3f:03:9f:f1:1e:56:55:98:bc:0f:e2:
67:a4:b6:81:54:8d:7b:b1:13:a6:74:2e:71:bc:b0:17:e7:fa:
80:a0:9f:a6:9c:67:e5:5f:63:b5:9d:c5:8e:a8:af:75:28:43:
3a:45:7d:3f:87:8a:a0:24:2c:e3:3c:30:f9:1b:4c:75:f1:e8:
23:97:25:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org