Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/AXGxNdW2lq22qQtKAoOa6EcqF_I.roa
File: AXGxNdW2lq22qQtKAoOa6EcqF_I.roa (raw, json)
Hash identifier: 4zjhehn+L7JylZe5hXcrR8Epp7ZLVJzEvwJfSDaqp+c=
Subject key identifier: 01:71:B1:35:D5:B6:96:AD:B6:A9:0B:4A:02:83:9A:E8:47:2A:17:F2
Certificate issuer: /CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Certificate serial: 018B9A19123361FF4787E071A8B1D647A8C8
Authority key identifier: 76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/AXGxNdW2lq22qQtKAoOa6EcqF_I.roa
Signing time: Sat 04 Nov 2023 11:30:16 +0000
ROA not before: Sat 04 Nov 2023 11:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24881
IP address blocks: 46.162.0.0/18 maxlen: 24
193.111.156.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9a:19:12:33:61:ff:47:87:e0:71:a8:b1:d6:47:a8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Validity
Not Before: Nov 4 11:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0171b135d5b696adb6a90b4a02839ae8472a17f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:29:5e:e5:1b:fd:7b:fe:bf:12:1d:b8:73:
a8:bb:64:98:6f:b0:6b:5a:df:b5:80:38:68:0a:eb:
8c:63:2a:a9:6f:94:a3:76:75:5d:d4:1f:14:e6:c7:
72:9b:15:bc:a5:ca:c7:d2:81:26:ab:43:b6:48:07:
d1:22:19:10:a9:9d:66:5c:03:87:cb:80:65:4d:37:
8b:77:d8:1b:da:4c:ae:1e:e9:20:e2:e5:7e:62:e7:
fc:3e:31:62:bd:c3:f6:d6:91:fe:27:20:09:0f:f1:
0e:1c:61:db:b1:c8:8b:ff:37:c4:6e:38:9b:22:83:
78:e2:9d:48:9b:40:55:7e:ff:af:1a:d5:2e:0f:ac:
35:c1:71:53:2b:12:82:dd:45:90:14:a3:1f:6a:73:
18:1d:95:5d:67:ea:ea:46:fb:88:5c:8d:71:e9:cb:
a6:ea:a0:0c:2a:53:5c:59:69:21:d9:0a:95:a4:9c:
88:71:42:19:9e:36:75:4d:de:25:ed:12:a3:44:a1:
1e:3e:6b:c9:3b:5f:d8:5e:2a:4d:61:29:c3:ec:fd:
e0:a4:57:cf:e5:61:af:05:97:c5:3f:ad:be:c2:db:
1b:2c:0d:78:77:2a:3b:f4:9a:b8:8c:ff:13:53:ce:
1f:3b:df:42:70:55:79:df:10:48:cd:42:b2:00:bc:
69:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:71:B1:35:D5:B6:96:AD:B6:A9:0B:4A:02:83:9A:E8:47:2A:17:F2
X509v3 Authority Key Identifier:
keyid:76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/AXGxNdW2lq22qQtKAoOa6EcqF_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/dkL9PzNs5u6Z5h-pdwSabGqSPko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.162.0.0/18
193.111.156.0/22
Signature Algorithm: sha256WithRSAEncryption
91:d8:40:ea:c3:ed:ec:90:fc:ec:5d:9a:32:4b:a4:5f:f5:db:
f4:fa:9f:2b:eb:c8:51:f2:de:26:a6:8d:7a:25:8f:35:fe:6f:
8a:d5:92:da:ad:e3:a4:44:22:a1:8f:91:0d:6b:a7:6a:35:9d:
2f:3d:be:45:1a:f1:8b:eb:bc:10:39:9a:d0:c3:16:13:e6:41:
7a:c3:12:a3:4c:3a:e7:d0:c1:6f:df:cd:85:07:37:8c:fe:0b:
e6:b9:8a:9a:f7:79:f2:53:fc:bb:de:16:6f:f1:5d:a0:fe:74:
37:78:5a:6e:db:59:1e:3e:42:8a:43:d6:a4:56:52:ea:71:ee:
7d:a9:c3:f9:7a:23:2a:e5:5c:ca:24:92:4b:88:90:2d:e0:4a:
e5:af:ab:3a:fa:97:36:cd:10:b8:38:87:93:4c:7e:c9:17:33:
4e:93:f3:64:e7:7c:60:49:52:9b:4e:73:63:f7:79:cd:ed:b5:
f8:2f:dd:0c:e1:d6:15:37:59:63:a9:a2:32:cf:58:bc:91:1f:
10:9c:c2:cf:a1:7b:9c:30:28:c4:9f:9e:ef:76:18:8b:72:42:
04:ba:95:0a:52:4e:00:a8:da:5b:d6:72:1d:e8:a1:3b:55:86:
1c:7d:fd:8c:6a:2c:91:3c:b0:74:8c:f4:cd:bc:33:d4:d4:f6:
0c:25:3b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:52 2024 by rpki-client on console-fra.rpki-client.org