Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/9Xi0t7MJDnmynBlfUlH5XydWed8.roa
File: 9Xi0t7MJDnmynBlfUlH5XydWed8.roa (raw, json)
Hash identifier: 59Curx2zEn5crkWVI36D6hVg+XYSODgJW2/zn0nw+70=
Subject key identifier: F5:78:B4:B7:B3:09:0E:79:B2:9C:19:5F:52:51:F9:5F:27:56:79:DF
Certificate issuer: /CN=70cbeb388f5902c16160bbed0962cb622b2bb832
Certificate serial: 018990F118CBF0974C41AF93E2F935F767C6
Authority key identifier: 70:CB:EB:38:8F:59:02:C1:61:60:BB:ED:09:62:CB:62:2B:2B:B8:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMvrOI9ZAsFhYLvtCWLLYisruDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/9Xi0t7MJDnmynBlfUlH5XydWed8.roa
Signing time: Wed 26 Jul 2023 06:44:26 +0000
ROA not before: Wed 26 Jul 2023 06:44:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 185.46.20.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:90:f1:18:cb:f0:97:4c:41:af:93:e2:f9:35:f7:67:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cbeb388f5902c16160bbed0962cb622b2bb832
Validity
Not Before: Jul 26 06:44:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f578b4b7b3090e79b29c195f5251f95f275679df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d2:23:c2:d3:29:a1:47:d7:32:33:84:44:08:
c0:94:79:a8:23:7d:cb:b2:c3:96:1b:63:a5:3b:2a:
99:ce:e2:d5:2e:ba:1d:2f:8f:af:60:be:2c:14:a9:
b7:d6:8f:ac:81:c5:11:b0:cf:41:fa:31:ee:49:66:
f9:1d:4d:01:da:1d:46:a1:13:5d:31:7c:e6:fd:d4:
99:29:a5:f1:22:bf:0d:23:cb:06:17:bb:56:fb:ff:
8c:91:46:5d:d2:eb:96:3e:f2:b2:2f:01:7f:52:13:
63:91:0a:52:4c:c2:67:42:05:bb:b4:f3:bd:1c:d6:
d3:bf:0f:86:64:d5:9d:e0:e6:b1:14:dc:74:e0:61:
28:3f:f7:f7:c9:45:3f:87:03:d2:86:89:47:0c:d5:
ae:78:cf:84:0c:14:01:a2:62:07:27:89:a1:92:7c:
00:fb:11:cb:91:7d:0f:98:f4:8c:ba:93:13:fa:54:
eb:61:18:3f:05:51:3a:50:d2:c8:6b:d1:e2:76:41:
24:8e:2a:f8:6b:e2:46:65:35:e3:14:88:7d:eb:c5:
a5:b7:6e:31:93:f5:34:24:0f:ed:cb:5a:91:28:44:
36:b1:2b:1c:0b:b3:9d:14:55:77:a2:55:0c:b0:44:
b2:1c:1f:ee:e9:fb:f7:dc:fb:6c:65:a3:5a:6d:ff:
4d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:78:B4:B7:B3:09:0E:79:B2:9C:19:5F:52:51:F9:5F:27:56:79:DF
X509v3 Authority Key Identifier:
keyid:70:CB:EB:38:8F:59:02:C1:61:60:BB:ED:09:62:CB:62:2B:2B:B8:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMvrOI9ZAsFhYLvtCWLLYisruDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/9Xi0t7MJDnmynBlfUlH5XydWed8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/149cf6-611d-4e03-a660-dce1127ab223/1/cMvrOI9ZAsFhYLvtCWLLYisruDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.20.0/22
Signature Algorithm: sha256WithRSAEncryption
63:60:db:8b:97:b7:ae:84:e3:9e:28:99:b6:36:51:bb:07:d7:
89:13:c8:ef:a9:08:d7:05:0e:01:fc:90:67:46:78:e5:1b:3c:
41:2b:51:22:45:89:80:c6:b1:e2:88:3d:1c:ad:14:28:db:de:
47:3c:59:71:f7:90:ec:bc:f5:49:f6:f8:a2:0f:c8:29:cf:49:
7c:72:d6:b2:9c:47:8e:24:9b:1a:f7:d6:75:41:39:af:45:26:
f8:44:84:1c:79:70:d6:35:14:b3:19:1b:7c:68:f6:6b:a0:ae:
08:e6:fa:0d:d8:6d:ea:32:90:58:74:8b:58:74:3f:13:b8:ad:
5b:0e:3e:22:e4:e6:b0:4b:75:a7:6e:7c:a8:98:53:87:c4:f0:
ac:41:f1:3d:2b:76:7b:33:9f:ca:e0:48:0c:c5:0f:01:b2:eb:
bc:73:0a:29:58:4d:f3:7a:50:9a:9d:3b:44:ba:f1:53:41:4c:
52:1c:45:ae:45:2b:0f:c3:06:6f:bd:e2:42:db:bf:ae:f3:b9:
2d:bb:bc:6b:ea:6a:0e:2f:6d:c9:aa:67:98:ef:df:a9:6f:ad:
13:67:4d:58:c5:38:9e:79:bc:5f:6b:76:b1:bc:38:a1:9a:a6:
44:f6:b3:e8:fd:46:31:3a:30:9e:a6:f6:a6:7d:2b:d1:5d:ca:
cb:26:de:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:39 2024 by rpki-client on console-fra.rpki-client.org