Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/dKHYBxJA_8VHrly20i2F9dbwgTU.roa
File: dKHYBxJA_8VHrly20i2F9dbwgTU.roa (raw, json)
Hash identifier: GEkDe6HFepEQ8yV31A8/MUF2MA9b15SCD/WGmGG3PYo=
Subject key identifier: 74:A1:D8:07:12:40:FF:C5:47:AE:5C:B6:D2:2D:85:F5:D6:F0:81:35
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 0188B8D19791582F732C128C41D238539CCD
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/dKHYBxJA_8VHrly20i2F9dbwgTU.roa
Signing time: Wed 14 Jun 2023 07:32:03 +0000
ROA not before: Wed 14 Jun 2023 07:32:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 46.34.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 15:56:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b8:d1:97:91:58:2f:73:2c:12:8c:41:d2:38:53:9c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Jun 14 07:32:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74a1d8071240ffc547ae5cb6d22d85f5d6f08135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6a:8c:b2:3a:1b:51:43:86:23:b0:3d:6a:ba:
fc:9a:f2:bc:5c:0b:1d:2d:39:c2:3b:87:f1:e6:56:
a1:da:ad:ee:09:e3:d7:56:79:46:74:4c:b1:2a:5b:
16:13:4c:4a:e6:1e:8b:29:48:f1:bd:c6:9d:8e:95:
c8:d3:7e:9c:7e:c8:77:a3:88:24:cb:2b:d4:1c:90:
58:29:b8:f9:2b:21:98:f1:60:02:50:0d:5e:4a:2b:
ec:cf:dc:55:ea:99:88:2e:e0:ae:a3:c5:3e:18:b7:
0b:0a:18:b6:b1:4b:04:9c:54:7c:43:86:f1:7f:fc:
d4:3d:ea:ea:f1:93:1d:7d:14:08:68:e0:f2:e5:1f:
a6:e9:c4:58:ed:67:8c:af:8e:03:7c:5e:b9:ab:55:
e1:d1:96:0d:e0:9c:69:1c:40:d4:40:66:78:29:58:
5f:6d:12:13:0e:61:51:52:21:0d:42:ce:54:bf:c8:
db:55:ea:3c:d1:11:6d:f2:bc:87:21:3e:21:3b:ee:
c6:e5:cd:8f:6b:c4:08:88:f5:6d:0d:83:27:8d:c2:
bf:73:f8:41:a8:ca:23:b4:4c:24:64:fc:84:c8:8e:
02:c1:3e:6c:5b:0a:0d:50:d4:0c:d5:6f:c0:44:ef:
85:e2:ef:b2:03:08:68:5f:0e:46:69:c2:15:29:02:
62:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A1:D8:07:12:40:FF:C5:47:AE:5C:B6:D2:2D:85:F5:D6:F0:81:35
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/dKHYBxJA_8VHrly20i2F9dbwgTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.44.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:00:5f:30:5c:bf:c1:b8:2c:45:82:99:b0:32:83:f7:54:44:
17:b4:77:c5:38:f2:b0:01:36:7d:90:b6:1c:53:2e:bb:85:c3:
2a:85:ce:4d:cd:83:2b:04:49:9e:4e:c1:06:8d:07:cd:40:54:
5b:fa:04:06:c7:dd:a1:9b:68:eb:5e:c9:ac:37:c0:57:ec:c6:
69:60:e8:81:44:29:7a:b0:cb:3e:33:c2:3c:ab:fd:66:1c:c3:
6e:bb:f3:ce:0d:6a:8e:1b:dc:ea:1a:bb:99:6d:e3:9a:4c:21:
44:a1:bf:68:a4:90:64:19:42:45:4f:f7:b3:d0:b4:04:ea:ea:
e7:a1:93:df:b4:32:3d:b8:a2:e9:f4:d4:e9:0a:95:73:00:66:
b1:f3:d5:ce:8d:b7:11:5f:2e:cc:83:ab:92:c3:4c:cf:17:a2:
fa:15:52:0b:0e:dd:c6:7b:7f:06:16:08:55:e3:31:ea:bc:89:
18:de:ff:42:c8:bf:37:93:83:a4:cc:16:87:84:11:5e:9b:f2:
0f:e4:aa:59:5b:65:c4:69:b6:b5:8b:8f:f6:9d:c1:91:91:fe:
e5:87:fb:8d:79:29:83:ea:81:fd:b8:ea:67:c9:f3:5b:56:bc:
46:10:57:61:81:2a:2f:d3:29:92:a9:fb:49:e7:21:6f:c3:7c:
83:f3:bc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org