Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/kW2FMmngcwO8CnLnCvDoj5qyjzM.roa
File: kW2FMmngcwO8CnLnCvDoj5qyjzM.roa (raw, json)
Hash identifier: ap9GLr+pXTK7m4A5LnrYPl/R/gR1+PhT/Xr5hWEsQSg=
Subject key identifier: 91:6D:85:32:69:E0:73:03:BC:0A:72:E7:0A:F0:E8:8F:9A:B2:8F:33
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 01876BA4B23CE6FDA79A8920000736E89F27
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/kW2FMmngcwO8CnLnCvDoj5qyjzM.roa
Signing time: Mon 10 Apr 2023 14:49:28 +0000
ROA not before: Mon 10 Apr 2023 14:49:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 46.34.60.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 10 Aug 2023 08:18:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6b:a4:b2:3c:e6:fd:a7:9a:89:20:00:07:36:e8:9f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Apr 10 14:49:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=916d853269e07303bc0a72e70af0e88f9ab28f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5d:0c:a7:49:b6:a5:7d:a3:2a:1a:5a:7c:a4:
fb:b3:74:6e:c7:7d:19:1b:92:46:37:12:a4:e3:3d:
2b:5d:b4:de:22:17:c5:99:07:36:39:5b:0f:2f:64:
7c:76:7d:14:6d:e5:86:f0:09:7d:d7:ca:a6:6f:60:
b7:ed:f1:53:ca:c8:20:13:eb:a8:61:fe:c4:6a:2b:
08:cc:c7:9f:9e:43:13:ca:cb:aa:b1:3d:e9:22:92:
10:ba:d3:c5:7e:f7:f0:1c:71:72:50:24:58:00:69:
91:ff:bc:8b:fe:e4:07:33:d0:db:d0:e8:8f:cb:30:
db:0e:1c:1d:b4:be:c1:d2:ab:a1:46:74:ac:59:5e:
d2:99:83:97:6f:8f:13:fd:ef:f0:25:81:19:66:a4:
7e:42:eb:ce:cf:a5:ed:c2:a8:85:65:40:ee:86:ae:
c6:36:45:ce:25:57:e9:82:ca:5a:bc:14:51:b5:ad:
3b:7d:62:0b:43:6c:84:47:b0:4e:e8:0f:46:3c:fa:
aa:3a:f6:1b:b5:86:6e:af:65:17:3b:49:eb:96:82:
c8:27:9a:53:bd:32:b9:60:9c:93:b9:e3:08:1c:2a:
f7:2d:00:31:60:92:17:62:16:e8:94:36:1f:98:90:
5e:a7:35:7c:25:71:d5:35:e2:d3:a9:17:b6:a5:31:
6c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6D:85:32:69:E0:73:03:BC:0A:72:E7:0A:F0:E8:8F:9A:B2:8F:33
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/kW2FMmngcwO8CnLnCvDoj5qyjzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.60.0/23
Signature Algorithm: sha256WithRSAEncryption
73:b3:69:80:ba:37:10:ee:22:f1:f2:2f:c4:f5:cb:e6:83:27:
91:45:eb:a6:6c:27:c1:0b:a3:39:01:42:43:88:45:2c:e1:7b:
5a:8a:94:64:05:b7:76:06:ab:9e:61:dc:ed:2e:36:37:1b:49:
f6:a8:d1:1a:6c:37:32:be:e3:63:fd:75:f3:1a:a5:29:46:9a:
0d:9f:97:9f:f0:84:6b:22:b4:06:6c:e1:bd:aa:44:86:65:7a:
15:07:94:55:14:d8:36:dd:b0:56:b3:69:b4:8f:ea:8c:24:d9:
a3:2b:9c:31:fb:ee:1b:6f:d2:26:a3:06:b6:23:73:f2:a0:69:
e1:25:eb:1f:ef:8a:74:25:5d:c4:e6:ae:b4:9e:c0:5a:f6:9c:
bb:be:43:f9:7e:d1:50:95:55:bd:c5:06:07:d6:cf:72:80:5b:
3c:d5:74:f2:8e:b9:f0:fc:0c:68:b8:79:f1:cf:dc:4e:11:53:
c2:10:d6:61:b8:13:50:de:06:6b:16:c8:eb:01:2a:1e:bb:04:
9e:80:7f:43:8e:b5:55:a7:bb:ad:d0:b5:bf:aa:3b:65:5a:de:
35:1c:28:a4:98:ac:09:32:ac:a9:f4:15:6e:49:d0:23:16:d4:
62:26:04:0a:24:f3:1b:ae:f3:36:63:78:5e:b9:d1:ba:d4:cb:
3a:54:99:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:26 2024 by rpki-client on console-ams.rpki-client.org