Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/CnSBQuSfhi3YZFgyg0w26CJZVyo.roa
File: CnSBQuSfhi3YZFgyg0w26CJZVyo.roa (raw, json)
Hash identifier: Yi8h4gVpIhIOTRMCJUoZBAQTzAFAdnv4WbIiyS5KnEE=
Subject key identifier: 0A:74:81:42:E4:9F:86:2D:D8:64:58:32:83:4C:36:E8:22:59:57:2A
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0187276FE4B08B50DD6CDF6D3BE9E82E2353
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/CnSBQuSfhi3YZFgyg0w26CJZVyo.roa
Signing time: Tue 28 Mar 2023 08:57:37 +0000
ROA not before: Tue 28 Mar 2023 08:57:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.32.0/22 maxlen: 22
46.34.36.0/23 maxlen: 23
46.34.40.0/23 maxlen: 23
46.34.51.0/24 maxlen: 24
46.34.47.0/24 maxlen: 24
46.34.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 30 Mar 2023 09:43:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:27:6f:e4:b0:8b:50:dd:6c:df:6d:3b:e9:e8:2e:23:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 28 08:57:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a748142e49f862dd8645832834c36e82259572a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d6:f6:c1:f4:e0:29:95:8e:4b:5a:f5:62:d5:
a6:4e:78:fc:3b:78:10:e3:bb:82:91:0f:02:0b:4d:
b8:3f:f3:2f:21:52:96:95:59:83:8d:69:57:ef:e3:
52:52:73:1a:49:f2:98:e0:90:d3:1d:79:d9:5f:8a:
df:09:5a:e7:02:1c:79:f3:46:95:4d:b8:f9:44:fe:
5d:87:1a:db:7a:dc:04:8b:53:de:86:ce:34:67:22:
05:40:b3:d1:34:b4:3b:c8:ce:2d:64:12:d0:f8:26:
0e:d6:75:1c:72:ce:21:ae:aa:dc:59:e0:4f:f9:bf:
b2:37:1e:38:22:c5:5b:11:cb:f6:63:3b:e0:a1:72:
25:ca:06:dc:5a:b7:e7:15:ea:b2:29:5e:5a:12:1c:
fc:c8:8b:b9:18:77:a6:a3:1a:01:48:dc:18:0d:06:
d3:a8:0c:f5:42:d5:5c:73:58:c0:e1:ed:b7:07:91:
d8:15:aa:94:c0:d3:b8:7e:cb:c9:65:b7:ab:4e:9d:
d8:00:c1:de:75:b4:33:cd:fd:54:2b:5f:9d:81:aa:
2e:7e:8f:57:4e:bf:88:7e:75:2f:94:c6:cc:48:1d:
57:17:07:67:77:d8:6d:22:20:20:0e:df:65:23:88:
35:d3:4f:bb:fc:fb:1a:e8:99:1b:a1:2e:2f:60:02:
46:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:74:81:42:E4:9F:86:2D:D8:64:58:32:83:4C:36:E8:22:59:57:2A
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/CnSBQuSfhi3YZFgyg0w26CJZVyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.37.255
46.34.40.0/23
46.34.47.0/24
46.34.51.0/24
46.34.60.0/22
Signature Algorithm: sha256WithRSAEncryption
31:98:31:b2:27:f9:84:5a:9b:28:a7:2d:ef:d4:d0:aa:02:29:
6d:18:aa:d6:56:8c:8c:06:d1:a1:48:87:31:2f:3c:f8:49:fa:
3c:a7:0a:49:6b:25:f8:41:db:c8:fb:df:c0:2b:35:56:76:0a:
f6:df:28:96:f6:df:28:fd:86:b4:a2:60:bd:ea:d1:7d:e5:8c:
e1:24:0d:b1:43:22:d3:50:da:4d:eb:84:8f:47:7d:81:e8:78:
8d:a3:bc:60:e7:39:a3:73:f0:c0:96:2c:7d:62:1e:1d:22:1e:
0a:f4:de:b1:fa:07:b9:1d:8b:f0:e5:19:61:d6:f9:89:fc:88:
8b:8b:e2:fe:46:72:94:78:86:c5:9a:ff:1d:45:7d:8d:fb:b1:
7a:e3:0e:59:a9:95:b4:b1:e1:dd:1a:ba:33:e4:53:f4:80:3f:
3a:2c:8b:d0:68:16:67:dd:14:e8:3f:79:70:b5:d6:21:61:86:
f7:8c:e0:82:62:c0:ee:21:40:e7:da:3f:a5:f0:f6:e2:be:dd:
9a:82:fa:51:e7:63:0a:5d:e5:33:df:cf:62:a2:ad:0d:d6:d6:
b1:18:20:92:cd:31:c6:d2:1e:87:7b:f4:fe:00:cb:8a:45:fc:
bb:0e:0c:f2:f6:39:97:e6:76:88:56:7f:9f:f4:d0:db:fa:b6:
30:71:ec:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org