Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/572ec8-7456-4e55-b776-d8ece26afec0/1/AOwBZ7Pvw-rQwqGC3UEBsiOvD6g.roa
File: AOwBZ7Pvw-rQwqGC3UEBsiOvD6g.roa (raw, json)
Hash identifier: 5RnwHszOwDAFPmpq8dgMYZ+FszO75cqlL34jV4c0Mac=
Subject key identifier: 00:EC:01:67:B3:EF:C3:EA:D0:C2:A1:82:DD:41:01:B2:23:AF:0F:A8
Certificate issuer: /CN=e3e46e2c4016a8d7392c8574134fd4793b9415a4
Certificate serial: 01857271331DD85F88B2D0FCA893D0CD730C
Authority key identifier: E3:E4:6E:2C:40:16:A8:D7:39:2C:85:74:13:4F:D4:79:3B:94:15:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4-RuLEAWqNc5LIV0E0_UeTuUFaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/572ec8-7456-4e55-b776-d8ece26afec0/1/AOwBZ7Pvw-rQwqGC3UEBsiOvD6g.roa
Signing time: Mon 02 Jan 2023 12:24:58 +0000
ROA not before: Mon 02 Jan 2023 12:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31726
IP address blocks: 46.228.48.0/20 maxlen: 20
185.229.228.0/22 maxlen: 22
77.95.72.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:33:1d:d8:5f:88:b2:d0:fc:a8:93:d0:cd:73:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3e46e2c4016a8d7392c8574134fd4793b9415a4
Validity
Not Before: Jan 2 12:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00ec0167b3efc3ead0c2a182dd4101b223af0fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:88:d1:d7:08:04:d6:b0:19:7a:55:da:9c:cc:
22:a7:b7:49:d9:18:50:a0:87:1c:93:ba:75:d0:07:
c9:9a:b4:47:f0:fb:21:eb:e4:0d:6d:bd:3e:ce:ab:
4d:a9:28:7c:91:c0:bf:ba:fe:45:79:c2:ea:06:e1:
b9:2e:71:ec:20:bc:af:cc:eb:26:b5:22:d4:08:1c:
c6:20:d5:0d:59:99:fd:8d:74:5c:1c:0c:40:d4:61:
9c:4b:2e:ec:32:26:d9:ff:5b:6d:8c:54:eb:e3:d8:
a3:69:34:e3:5c:8b:2c:06:c1:1c:9b:08:0e:be:c4:
07:92:f0:66:80:a5:5f:2c:97:bc:e6:c7:88:80:dd:
70:e4:e7:7d:8f:6d:b0:9b:01:54:ba:6a:46:8e:74:
d8:b6:1c:89:61:a9:b7:42:ad:c5:94:77:60:42:c2:
bb:b3:40:43:42:12:e8:02:88:2d:56:85:c7:d7:cc:
ad:ce:43:53:75:8e:1b:7c:ae:4e:d1:28:a6:fe:78:
a8:85:ed:5b:18:e7:45:fa:ab:9a:be:60:d6:32:36:
36:03:89:d0:43:a6:ed:e3:3f:19:e1:ff:c0:27:52:
c3:2e:11:fd:01:83:91:bc:91:2e:bf:b6:2c:74:e0:
3f:e7:3b:26:41:03:1e:eb:a7:54:2e:da:85:07:44:
f4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:EC:01:67:B3:EF:C3:EA:D0:C2:A1:82:DD:41:01:B2:23:AF:0F:A8
X509v3 Authority Key Identifier:
keyid:E3:E4:6E:2C:40:16:A8:D7:39:2C:85:74:13:4F:D4:79:3B:94:15:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4-RuLEAWqNc5LIV0E0_UeTuUFaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/572ec8-7456-4e55-b776-d8ece26afec0/1/AOwBZ7Pvw-rQwqGC3UEBsiOvD6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/572ec8-7456-4e55-b776-d8ece26afec0/1/4-RuLEAWqNc5LIV0E0_UeTuUFaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.228.48.0/20
77.95.72.0/21
185.229.228.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:ab:cd:14:7b:cd:76:c7:50:0b:e0:e2:95:0a:0e:a8:e5:a5:
b2:7e:81:27:d4:d7:e3:82:4a:83:10:29:4c:94:39:b0:f1:6c:
df:bc:8a:b7:1b:8a:99:e1:a9:f4:d2:c9:f7:62:7d:db:20:38:
10:c3:dd:b6:b2:80:a6:50:24:ad:b7:42:38:6b:84:77:1e:99:
5f:af:14:3e:06:fd:c0:e2:40:b9:d4:a9:4b:93:6f:fe:76:a4:
b8:cc:1e:1d:0e:ac:88:42:b8:e2:c6:15:83:5c:2b:f5:e3:01:
47:a9:85:f3:ab:9c:fd:c2:5f:12:27:35:56:70:5d:02:10:b1:
f3:6e:c7:48:d7:7b:1b:0a:d7:3e:c6:8a:f3:25:e4:7b:27:ff:
02:5e:3a:91:e1:7b:82:bc:6f:ed:d9:9b:96:60:72:e1:d5:41:
b4:b8:c2:6e:a5:9d:46:da:1e:d4:c3:33:80:09:32:ed:a6:11:
75:d0:34:68:71:b3:ac:e9:7b:fd:e4:49:24:95:41:e8:03:b1:
9b:f5:06:40:4a:7b:08:7b:d4:57:31:1c:ab:91:d2:46:34:12:
69:35:d6:02:f2:c2:ce:b6:9e:3b:c9:88:46:7f:70:43:d8:a5:
bf:92:d1:69:dc:42:e3:5f:d4:cd:4b:f2:f6:01:81:94:2b:6c:
b5:96:35:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:09 2024 by rpki-client on console-fra.rpki-client.org