Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/KcAgq_RMCW4zNN_QOG3KbvtD7c4.roa
File: KcAgq_RMCW4zNN_QOG3KbvtD7c4.roa (raw, json)
Hash identifier: Vy3/RdK2qDjI4N8Gc43sRgYis+gnOEOkka5EB0phBG4=
Subject key identifier: 29:C0:20:AB:F4:4C:09:6E:33:34:DF:D0:38:6D:CA:6E:FB:43:ED:CE
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018A6BC12393DF98FC92FAF71CE5A73BB681
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/KcAgq_RMCW4zNN_QOG3KbvtD7c4.roa
Signing time: Wed 06 Sep 2023 18:28:54 +0000
ROA not before: Wed 06 Sep 2023 18:28:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47757
IP address blocks: 46.34.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Oct 2023 08:09:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6b:c1:23:93:df:98:fc:92:fa:f7:1c:e5:a7:3b:b6:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Sep 6 18:28:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29c020abf44c096e3334dfd0386dca6efb43edce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b0:ee:d1:2d:b0:b1:8c:8b:a0:e8:88:9a:9d:
18:95:bb:67:3a:54:5c:61:a9:44:fa:b3:a2:27:9f:
35:4c:b8:14:bb:7f:96:51:5b:d2:b9:88:b6:1e:3a:
ab:ab:6c:60:33:81:0d:fa:9d:1b:3c:c4:3c:d9:3f:
af:45:2c:a2:20:2f:47:e3:d5:35:aa:1f:79:82:29:
2c:b0:eb:62:53:98:1d:4e:44:9a:b6:e1:7c:59:56:
31:6e:7b:5b:8a:93:06:b9:5b:3d:cb:2d:9a:93:fe:
c3:2e:43:d9:e3:ca:49:e1:31:09:b9:56:d6:28:4c:
f3:24:5c:02:65:bd:41:de:ef:23:68:b7:ad:2a:9c:
ef:ad:e5:a7:84:6f:d6:ff:0d:71:08:52:9b:ed:1c:
dd:15:32:52:3d:71:1e:f4:ac:3d:3c:34:26:b8:73:
00:88:18:ec:ba:db:0b:7a:52:9f:c2:03:dd:99:50:
62:59:48:f5:7f:6d:43:b1:e6:ab:e5:ee:3f:d3:cb:
e2:93:2b:06:60:7a:84:8a:b7:56:7c:46:3c:27:9a:
a1:42:7c:f2:ca:81:be:c9:69:cb:5e:5b:e4:34:dd:
ec:ac:00:90:37:ff:24:aa:dd:d6:94:c2:92:c9:8f:
b5:03:34:1b:80:cc:7f:e3:39:ae:c4:6d:b8:27:cc:
41:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C0:20:AB:F4:4C:09:6E:33:34:DF:D0:38:6D:CA:6E:FB:43:ED:CE
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/KcAgq_RMCW4zNN_QOG3KbvtD7c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.54.0/24
Signature Algorithm: sha256WithRSAEncryption
01:fe:b5:8b:bd:14:ba:ee:c2:bc:b7:89:68:37:df:3c:09:a8:
f9:03:32:bb:f6:49:e4:f8:71:10:de:f8:a6:69:57:99:fb:41:
0e:cb:7c:53:6c:92:b3:7c:10:c9:3d:d9:eb:e9:58:0e:bd:7f:
1f:54:ae:5b:f1:14:4f:14:24:92:84:db:99:af:52:92:dc:32:
fa:bf:95:46:60:bc:a4:eb:89:0c:fa:86:87:93:63:f1:e8:70:
59:d1:57:b3:7d:84:e9:9f:49:d1:7e:f1:97:02:38:c1:19:95:
e9:a8:84:b7:53:f5:d2:3c:15:86:cb:4a:bf:b4:80:fd:4a:55:
e6:2a:e9:a2:6f:77:5e:68:bf:f9:a8:ee:d3:42:b2:4c:ae:df:
cb:fd:16:7e:2e:58:f5:ad:b0:60:96:56:a9:e2:24:7b:f7:b9:
bf:a0:fb:8e:9e:97:a5:1a:7d:d3:69:84:50:a8:be:17:26:89:
3e:a8:bd:45:4a:b0:eb:c9:4c:38:a8:9b:a8:1c:f3:ee:03:05:
2e:32:61:35:92:d7:ba:dc:47:ea:7a:02:44:0a:5b:f2:79:a9:
01:54:87:56:56:c5:76:bb:4a:70:92:f1:64:4b:59:10:07:9b:
fe:b4:98:36:0e:bb:f3:07:4c:c9:93:83:2e:d3:f4:98:9b:a3:
2b:2d:89:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org