Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cflc03PQtLLSBKnP1uREXpGlTfg.roa
File: cflc03PQtLLSBKnP1uREXpGlTfg.roa (raw, json)
Hash identifier: Cr96XCJh4rlx0TfRmDdnwtsJscyM6tdXUi/Xhuone8w=
Subject key identifier: 71:F9:5C:D3:73:D0:B4:B2:D2:04:A9:CF:D6:E4:44:5E:91:A5:4D:F8
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE66ACC37212B254A3EDEF1CCC7C86F
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cflc03PQtLLSBKnP1uREXpGlTfg.roa
Signing time: Sun 01 Jan 2023 10:35:17 +0000
ROA not before: Sun 01 Jan 2023 10:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202132
IP address blocks: 46.10.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 16:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:6a:cc:37:21:2b:25:4a:3e:de:f1:cc:c7:c8:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71f95cd373d0b4b2d204a9cfd6e4445e91a54df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2b:f6:8a:90:e7:df:f0:ba:a2:b9:cd:3a:a8:
95:ee:f6:54:2b:bd:e9:38:7c:b2:9e:9d:7c:79:f0:
e8:53:94:d8:7f:c3:6b:50:76:cd:3e:c6:4b:fb:c1:
dc:52:b6:eb:eb:f6:17:65:fa:30:b8:82:71:14:73:
5a:e0:ea:8c:fe:8a:d3:9e:4b:17:03:c8:83:20:42:
02:cd:99:cd:e9:c9:d8:1e:8f:bc:c8:4a:19:53:0f:
ba:28:3d:de:8f:70:75:e5:94:fa:6f:f2:af:b5:6b:
65:13:dd:2a:f0:8c:a4:15:b9:4a:85:6c:3c:5c:b5:
53:0f:74:ad:12:1c:f0:52:f3:5b:23:dc:0a:8e:40:
f3:d1:5a:31:cb:85:82:6f:b4:2d:a4:48:65:2f:5b:
2c:36:cb:5b:a7:28:c9:0c:72:4b:88:03:0c:48:cc:
67:8e:6c:eb:31:34:71:23:04:da:ec:49:0b:f1:06:
6b:3b:b8:82:83:d6:0c:ba:34:2b:4b:85:99:7d:39:
f7:f8:43:e3:2a:83:f5:ed:30:e6:b5:0d:1f:e7:b9:
7d:74:41:08:e0:47:1c:ca:28:b0:46:b3:5f:e8:1d:
aa:9c:62:25:14:9f:0e:7b:58:7f:d2:b7:f2:02:f4:
ff:e0:30:d5:1f:b2:38:05:5e:22:aa:cc:c1:69:f9:
98:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F9:5C:D3:73:D0:B4:B2:D2:04:A9:CF:D6:E4:44:5E:91:A5:4D:F8
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/cflc03PQtLLSBKnP1uREXpGlTfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.193.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b0:76:9e:90:46:3d:fd:be:ab:2d:e3:1b:92:11:6e:bf:94:
74:61:f2:6e:41:8b:21:51:cc:cc:54:1f:f0:e1:d2:43:4d:f9:
6e:d5:cd:5b:05:b4:0d:4e:74:3f:35:dd:5a:3b:a3:8f:90:5a:
d6:cd:18:75:3b:c1:2c:78:6b:61:db:7a:04:57:54:ea:f7:7c:
52:cb:e4:2f:50:8c:21:b1:4a:b7:25:74:ec:5a:d1:4e:86:a2:
28:25:f8:7e:b3:ff:72:91:92:c4:94:ac:21:d3:81:2c:16:fc:
63:2a:f1:14:42:75:f7:21:f6:60:45:f5:4b:c1:7d:29:ef:77:
c5:0e:6e:15:41:0c:4f:0b:62:bc:8b:c2:d1:1c:6c:4b:5f:12:
fe:d6:d9:30:4c:93:8e:66:ee:58:5e:ea:e1:ba:91:4e:06:9f:
d0:a2:4e:36:9a:23:cc:b3:40:4f:ca:99:3f:73:58:ea:c5:b8:
ea:dd:09:b8:43:23:3b:db:05:21:cd:e5:bd:57:57:54:f3:50:
a3:1e:bb:f1:92:5a:ac:52:ec:ed:1f:d6:72:ad:e3:ee:ae:5b:
eb:08:ea:cc:e3:cd:f9:34:0d:78:60:7c:53:2f:e1:dc:6e:38:
ca:94:49:06:f0:5f:db:00:ea:83:0b:99:d0:5d:94:0c:a7:a7:
2d:b9:df:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org