Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/d3teisJZTWd5AnqRZ_LhfafHiyE.roa
File: d3teisJZTWd5AnqRZ_LhfafHiyE.roa (raw, json)
Hash identifier: GJw+TRJKVDdc79XfBnZ0HbPRtOfFqkgzDHI4iI61xiI=
Subject key identifier: 77:7B:5E:8A:C2:59:4D:67:79:02:7A:91:67:F2:E1:7D:A7:C7:8B:21
Certificate issuer: /CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Certificate serial: 01856F94BA57AF40DA85391A7C4E34FE26BF
Authority key identifier: E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/d3teisJZTWd5AnqRZ_LhfafHiyE.roa
Signing time: Sun 01 Jan 2023 23:04:56 +0000
ROA not before: Sun 01 Jan 2023 23:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210654
IP address blocks: 46.32.183.0/24 maxlen: 24
46.32.182.0/24 maxlen: 24
46.32.181.0/24 maxlen: 24
46.32.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Jan 2023 08:38:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:ba:57:af:40:da:85:39:1a:7c:4e:34:fe:26:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37ee1eced19f8a0a3a635bfaa264293e3437795
Validity
Not Before: Jan 1 23:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=777b5e8ac2594d6779027a9167f2e17da7c78b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8e:24:7a:bc:21:14:fc:b0:0f:49:13:ba:fa:
a0:63:68:ef:b3:d4:f4:c1:60:72:22:af:3a:60:3a:
c9:5b:17:36:b5:89:98:99:3f:9d:1a:63:9b:c5:e0:
6f:94:93:f0:c9:a8:67:3f:a1:5f:a6:40:4c:b3:42:
a3:c5:e4:af:5a:46:cb:e0:80:4d:1d:b5:76:bd:a6:
a8:f1:a0:91:e8:4b:f6:00:c4:25:dd:1c:ec:a7:11:
1c:4f:2a:74:91:9b:63:75:8f:10:44:c6:71:f3:a1:
13:7e:2b:a2:a4:0b:69:52:32:c7:ef:54:2e:78:f5:
a4:d1:97:9f:80:ba:e2:1c:b1:43:fa:33:49:51:c6:
2e:40:21:45:9b:00:ca:f6:0d:46:b4:e4:73:28:07:
8b:b4:4f:c6:70:16:3a:6b:ee:ff:22:39:04:60:80:
9d:0a:96:a3:6d:5a:8d:28:3d:76:67:f7:43:36:b9:
59:34:11:07:54:68:4f:f4:93:43:11:1c:5f:82:33:
98:e8:a6:ce:8a:ae:16:96:ee:3c:3a:55:82:6d:c8:
ef:b6:cd:e9:63:10:b4:ae:df:b3:59:e1:45:71:dd:
fd:c8:c1:f3:bd:8b:53:5a:dd:f6:47:66:56:6a:ff:
25:43:7c:8c:c7:30:c3:83:63:2d:59:37:5f:b2:ad:
b8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7B:5E:8A:C2:59:4D:67:79:02:7A:91:67:F2:E1:7D:A7:C7:8B:21
X509v3 Authority Key Identifier:
keyid:E3:7E:E1:EC:ED:19:F8:A0:A3:A6:35:BF:AA:26:42:93:E3:43:77:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/437h7O0Z-KCjpjW_qiZCk-NDd5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/d3teisJZTWd5AnqRZ_LhfafHiyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6d5d75-4d1e-4697-b1d3-36e344abc9d3/1/437h7O0Z-KCjpjW_qiZCk-NDd5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.180.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:86:72:2c:60:5e:90:f5:3b:29:97:d3:4a:c8:58:a7:de:02:
de:78:f5:fb:43:a6:7b:92:23:df:71:7d:51:37:e7:7b:d8:da:
84:45:c5:8e:98:d2:ed:50:dd:4b:02:07:36:66:90:2f:14:eb:
6c:5f:b2:fe:06:d6:9c:93:33:0b:ea:d6:6a:b3:27:14:f7:0e:
a6:91:ea:52:6d:b6:5a:b3:20:2b:72:c3:2b:cd:0d:7a:73:65:
86:e8:69:76:ea:f0:30:ab:8b:cd:09:fd:7a:f9:1a:87:22:86:
8e:71:8d:a1:7b:ec:8d:a0:0c:6d:12:0b:16:3c:d0:6c:25:34:
da:30:ff:df:d5:35:28:50:25:68:b3:0c:fe:dd:aa:d0:63:3d:
74:52:a6:76:11:a3:2d:ae:4c:74:46:10:d3:51:59:30:20:d1:
b3:0c:61:00:9d:ec:45:62:68:3a:2b:71:55:d3:19:5f:70:e2:
be:85:05:1c:39:2e:e3:e8:0f:0e:bd:59:80:e3:8d:de:b9:8b:
59:34:d2:be:ae:29:7f:4e:e4:43:aa:70:f4:ea:43:85:2a:64:
b7:cd:e9:72:9a:ba:9f:d3:33:4e:80:9d:cf:06:bf:30:88:58:
ee:93:31:d1:7d:04:b8:09:99:6e:60:60:94:38:6c:a7:43:b0:
4b:e4:54:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:11 2024 by rpki-client on console-fra.rpki-client.org