Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/FXKcWI322YZoo8p_mDvTIhYZHPc.roa
File: FXKcWI322YZoo8p_mDvTIhYZHPc.roa (raw, json)
Hash identifier: KVT+RXED/VJ0ZQNtqlbEBFp3u5DR4a0EL4G1Fzkzt1Q=
Subject key identifier: 15:72:9C:58:8D:F6:D9:86:68:A3:CA:7F:98:3B:D3:22:16:19:1C:F7
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018BF681769C541EC8EA6434FEC122034397
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/FXKcWI322YZoo8p_mDvTIhYZHPc.roa
Signing time: Wed 22 Nov 2023 10:09:21 +0000
ROA not before: Wed 22 Nov 2023 10:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 46.34.44.0/24 maxlen: 24
46.34.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:81:76:9c:54:1e:c8:ea:64:34:fe:c1:22:03:43:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Nov 22 10:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15729c588df6d98668a3ca7f983bd32216191cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:02:00:2f:79:3b:7c:d8:b2:67:a5:70:9b:aa:
52:a9:a9:55:54:61:43:88:16:9c:db:a2:66:c4:13:
40:f2:b4:ad:ab:f0:4d:a9:7a:61:6f:a7:8f:37:fb:
9c:f7:c6:4d:dc:2c:e8:da:32:f2:b5:4f:f7:ec:4a:
66:fd:c0:3f:13:e4:57:e0:9e:58:18:5a:e9:75:2e:
51:ec:6c:ff:d2:18:0a:a1:af:7e:76:45:3a:ac:d7:
91:bf:3b:d9:a0:f6:8e:27:3b:b5:8b:3c:4e:ce:c2:
4b:57:f6:81:95:a4:c7:3f:95:38:21:bc:5f:e4:7c:
fa:b9:f6:bc:da:31:ff:24:7c:75:1d:f2:f3:39:f8:
8e:03:e7:f0:80:4d:82:9f:67:2b:d6:24:cb:7f:f9:
96:72:e8:26:58:5b:6b:a4:29:95:6c:f8:3e:67:45:
aa:41:d7:13:82:e1:9d:8e:c1:09:19:2e:9e:5d:3c:
7e:60:d3:e6:dd:ef:a3:e1:f7:48:de:86:e8:82:62:
4a:90:76:c3:42:86:2b:d4:c7:13:15:e1:99:80:40:
2e:70:eb:85:2e:46:93:d9:46:58:07:5b:f4:70:b8:
f5:be:d8:1e:73:80:47:ac:3a:f4:20:b3:b7:dc:f3:
ef:75:8a:10:e7:99:f4:d7:df:a2:f6:28:03:f8:78:
9e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:72:9C:58:8D:F6:D9:86:68:A3:CA:7F:98:3B:D3:22:16:19:1C:F7
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/FXKcWI322YZoo8p_mDvTIhYZHPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.44.0/23
Signature Algorithm: sha256WithRSAEncryption
12:a9:a5:88:60:e8:a2:63:01:e6:3f:83:8c:5c:1b:ab:14:3c:
65:3d:e1:00:19:2d:d5:22:e4:03:10:7d:eb:b0:81:f9:ea:e7:
f3:2d:47:3a:46:97:50:5b:a6:34:17:e3:ee:a6:73:aa:d7:30:
0c:32:87:d6:d3:14:03:ee:cb:0d:a8:ee:22:85:c2:6b:9e:b7:
b9:35:fa:e6:c5:a9:c5:1c:77:2f:d2:46:6e:a0:6a:ba:a9:59:
40:f3:21:e1:bf:86:7a:4a:3a:b1:12:49:54:e9:76:f8:f7:0e:
2a:49:5d:7a:dc:49:ca:46:d2:cd:90:30:cd:72:1e:a2:66:de:
15:28:17:51:32:78:cf:ba:96:95:3c:44:30:c2:cd:9f:a8:38:
ed:15:93:9f:60:6a:e9:8e:95:39:2b:29:ac:b0:1d:6a:bf:14:
bf:f6:e8:85:7a:48:bb:ed:c0:a2:32:f3:d8:b0:74:12:8d:c6:
a3:f8:89:e2:07:62:c0:1a:31:b4:50:ab:2b:25:ae:73:fb:c8:
54:7b:75:8a:a2:34:eb:9c:2f:93:53:16:4a:67:fe:0a:a8:7f:
8b:b7:eb:60:03:c7:e0:94:09:b3:cb:04:5e:90:82:7c:95:a2:
5f:1c:63:42:fe:fb:c4:85:44:5b:90:5d:5c:5d:02:d9:f3:5c:
43:23:b2:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYv2gXacVB7I6mQ0/sEiA0OXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjMxMTIyMTAwOTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNTcyOWM1ODhkZjZkOTg2NjhhM2NhN2Y5ODNiZDMyMjE2MTkxY2Y3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgIAL3k7fNiyZ6Vwm6pSqalVVGFD
iBac26JmxBNA8rStq/BNqXphb6ePN/uc98ZN3Czo2jLytU/37Epm/cA/E+RX4J5Y
GFrpdS5R7Gz/0hgKoa9+dkU6rNeRvzvZoPaOJzu1izxOzsJLV/aBlaTHP5U4Ibxf
5Hz6ufa82jH/JHx1HfLzOfiOA+fwgE2Cn2cr1iTLf/mWcugmWFtrpCmVbPg+Z0Wq
QdcTguGdjsEJGS6eXTx+YNPm3e+j4fdI3obogmJKkHbDQoYr1McTFeGZgEAucOuF
LkaT2UZYB1v0cLj1vtgec4BHrDr0ILO33PPvdYoQ55n019+i9igD+HieywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBVynFiN9tmGaKPKf5g70yIWGRz3MB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvRlhLY1dJMzIyWVpvbzhwX21EdlRJaFlaSFBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLiIsMA0G
CSqGSIb3DQEBCwUAA4IBAQASqaWIYOiiYwHmP4OMXBurFDxlPeEAGS3VIuQDEH3r
sIH56ufzLUc6RpdQW6Y0F+PupnOq1zAMMofW0xQD7ssNqO4ihcJrnre5NfrmxanF
HHcv0kZuoGq6qVlA8yHhv4Z6SjqxEklU6Xb49w4qSV163EnKRtLNkDDNch6iZt4V
KBdRMnjPupaVPEQwws2fqDjtFZOfYGrpjpU5KymssB1qvxS/9uiFeki77cCiMvPY
sHQSjcaj+IniB2LAGjG0UKsrJa5z+8hUe3WKojTrnC+TUxZKZ/4KqH+Lt+tgA8fg
lAmzywRekIJ8laJfHGNC/vvEhURbkF1cXQLZ81xDI7LH
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:23 2024 by rpki-client on console-ams.rpki-client.org