Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/Gy-AScWrrkW4ezf_gY8yRWyhteo.roa
File: Gy-AScWrrkW4ezf_gY8yRWyhteo.roa (raw, json)
Hash identifier: YeE5U1odrvnsoG0Bd8uBjuHGvsCI41Hz5cVXOfGx2ME=
Subject key identifier: 1B:2F:80:49:C5:AB:AE:45:B8:7B:37:FF:81:8F:32:45:6C:A1:B5:EA
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 018CC64B1D1B492CD3551A47D63631E400BA
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/Gy-AScWrrkW4ezf_gY8yRWyhteo.roa
Signing time: Mon 01 Jan 2024 18:31:00 +0000
ROA not before: Mon 01 Jan 2024 18:31:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200154
IP address blocks: 46.32.163.0/24 maxlen: 24
46.32.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 15:07:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:1d:1b:49:2c:d3:55:1a:47:d6:36:31:e4:00:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Jan 1 18:31:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b2f8049c5abae45b87b37ff818f32456ca1b5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:99:51:b9:de:91:31:75:6f:a4:62:ac:c5:5e:
ee:bb:fc:74:6c:59:86:fb:f4:3b:15:14:64:35:2a:
a4:d0:bf:9e:b7:f0:95:76:ae:a2:04:8a:79:ba:93:
34:a7:22:de:69:0e:eb:fb:27:19:b2:8d:2a:fb:2f:
8f:3f:8f:62:4e:7e:2f:68:2e:3f:1c:83:a4:53:bb:
6e:28:03:99:a3:42:5a:c9:d5:e9:d9:92:8d:af:43:
1a:f0:9a:6a:df:5d:74:49:df:ef:9d:7b:3a:fa:72:
34:b0:56:78:c0:00:26:b4:31:3d:8c:3a:9b:2f:c3:
7d:b7:4f:4b:65:02:7d:f2:c4:cb:fb:06:63:7d:06:
1a:03:4b:80:bb:33:3b:6b:68:9f:87:20:ab:28:39:
c3:44:64:72:69:00:94:00:b7:39:78:14:d7:34:95:
94:bc:af:9d:76:9f:41:3e:e6:3e:df:26:6e:b7:f6:
ca:8e:f0:07:01:7d:35:d1:4a:fa:19:cc:d6:ec:be:
14:bd:fb:c8:67:03:e2:03:af:b2:55:6c:2a:30:8f:
6c:d3:5e:b0:d4:89:64:1e:59:4e:6c:2e:5f:f9:0f:
33:37:16:1d:dc:0b:b7:d1:4c:42:3a:be:c6:cd:02:
9f:3d:17:bc:04:da:a4:2e:c3:99:58:1d:2b:0c:98:
c2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2F:80:49:C5:AB:AE:45:B8:7B:37:FF:81:8F:32:45:6C:A1:B5:EA
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/Gy-AScWrrkW4ezf_gY8yRWyhteo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.163.0/24
46.32.179.0/24
Signature Algorithm: sha256WithRSAEncryption
51:1f:5e:af:ea:96:d2:9c:b0:cf:fa:c6:55:3b:d2:b0:b0:9f:
95:b0:31:54:57:8e:f7:b7:e3:8e:1f:16:00:d8:18:0f:ae:a2:
e0:b2:eb:c6:69:db:08:be:9c:70:55:7c:44:bd:6e:8b:4f:b1:
22:2c:2b:49:de:d4:7d:74:f0:99:df:a7:7e:59:ad:0a:16:c6:
1b:15:39:4e:b7:16:f6:c8:00:87:09:c4:c7:b3:bc:b0:65:04:
9b:48:98:dc:71:d7:6e:a3:f1:0f:9b:fe:d4:20:64:ac:a8:fa:
2a:59:a4:2d:7d:30:51:f6:82:33:a6:6c:82:b9:5e:ec:31:d7:
ed:10:e1:2c:87:9b:77:19:e4:28:c5:88:93:ca:2c:4d:23:7a:
5b:bc:c7:9f:c8:10:cb:b6:b9:99:8d:2c:47:ae:eb:d6:9b:87:
d7:0b:e9:15:46:4d:5b:20:09:b1:c1:85:5b:3b:52:45:be:9a:
f6:a8:2d:ae:df:dd:22:9d:be:1a:4a:26:af:71:2f:4b:9f:84:
22:40:a6:f3:d1:8e:cc:44:23:06:56:3c:79:7e:8e:6a:87:66:
ed:20:63:78:12:b2:0a:09:18:d6:e6:a5:17:a1:c0:fe:c7:34:
9f:cc:33:9b:a0:a0:82:b0:32:80:6b:36:a3:7b:2a:2e:ac:6e:
25:fc:e4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org