Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/U8IGvG6lm5WnV4kBCA_TU0-XsFI.roa
File: U8IGvG6lm5WnV4kBCA_TU0-XsFI.roa (raw, json)
Hash identifier: 6u0c9eOt20lrVDaJWI6Jhr05QU3Ew3GLIpD0QS9IGYo=
Subject key identifier: 53:C2:06:BC:6E:A5:9B:95:A7:57:89:01:08:0F:D3:53:4F:97:B0:52
Certificate issuer: /CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Certificate serial: 018A8F2E4A15E58898B7BF51F89754BBDD96
Authority key identifier: 76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/U8IGvG6lm5WnV4kBCA_TU0-XsFI.roa
Signing time: Wed 13 Sep 2023 15:34:50 +0000
ROA not before: Wed 13 Sep 2023 15:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 46.162.3.0/24 maxlen: 24
46.162.0.0/24 maxlen: 24
46.162.8.0/24 maxlen: 24
46.162.9.0/24 maxlen: 24
46.162.10.0/24 maxlen: 24
46.162.10.0/23 maxlen: 24
46.162.11.0/24 maxlen: 24
46.162.15.0/24 maxlen: 24
46.162.12.0/24 maxlen: 24
46.162.13.0/24 maxlen: 24
46.162.14.0/24 maxlen: 24
46.162.18.0/24 maxlen: 24
46.162.22.0/24 maxlen: 24
46.162.23.0/24 maxlen: 24
46.162.20.0/24 maxlen: 24
46.162.21.0/24 maxlen: 24
46.162.26.0/24 maxlen: 24
46.162.32.0/24 maxlen: 24
46.162.50.0/24 maxlen: 24
46.162.51.0/24 maxlen: 24
46.162.48.0/24 maxlen: 24
46.162.49.0/24 maxlen: 24
46.162.52.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8f:2e:4a:15:e5:88:98:b7:bf:51:f8:97:54:bb:dd:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7642fd3f336ce6ee99e61fa977049a6c6a923e4a
Validity
Not Before: Sep 13 15:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53c206bc6ea59b95a7578901080fd3534f97b052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e6:94:60:b7:58:c0:79:d8:17:eb:28:4d:e9:
72:82:53:17:11:0a:1a:5c:1d:65:a3:b4:b0:a9:24:
b3:eb:ea:12:9e:d9:1e:0d:c0:0e:7a:d1:85:0f:c3:
29:25:53:8c:c9:11:c2:91:6d:9a:a0:14:eb:6f:8d:
be:73:9a:41:20:ad:49:0d:96:94:ac:76:7e:6b:23:
9f:18:9f:23:64:e9:62:76:3f:90:f2:bb:2f:b8:bd:
23:61:4f:b7:42:18:03:5f:c4:2a:80:d6:49:83:f8:
47:e9:65:d3:05:88:40:28:f9:81:1d:fb:49:9d:16:
63:cc:a1:1f:23:f2:44:79:2f:b7:f1:3f:e2:7d:1a:
91:c7:0d:a3:e1:a5:d6:f2:5f:f6:b6:b4:d6:1f:e5:
10:1a:c5:89:45:be:4c:85:96:e1:61:7d:6c:45:39:
57:2b:1b:42:d4:7e:c0:a0:e8:e2:75:3b:6a:41:b9:
55:de:9c:83:42:f2:96:24:53:24:27:62:7c:d4:80:
15:1a:4b:07:1e:d4:e6:79:52:9b:1e:9e:a9:cd:1b:
23:f7:e1:af:e7:62:7f:ad:7e:72:f4:63:ae:13:db:
97:28:74:bf:db:ce:6f:16:85:62:54:34:13:d8:f7:
70:f2:10:91:21:34:c1:94:2d:bf:b4:b5:b5:dc:99:
5c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C2:06:BC:6E:A5:9B:95:A7:57:89:01:08:0F:D3:53:4F:97:B0:52
X509v3 Authority Key Identifier:
keyid:76:42:FD:3F:33:6C:E6:EE:99:E6:1F:A9:77:04:9A:6C:6A:92:3E:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkL9PzNs5u6Z5h-pdwSabGqSPko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/U8IGvG6lm5WnV4kBCA_TU0-XsFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/924546-d9c7-4a0d-ae00-62c43ac7c02f/1/dkL9PzNs5u6Z5h-pdwSabGqSPko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.162.0.0/24
46.162.3.0/24
46.162.8.0/21
46.162.18.0/24
46.162.20.0/22
46.162.26.0/24
46.162.32.0/24
46.162.48.0-46.162.53.255
Signature Algorithm: sha256WithRSAEncryption
4b:d4:5f:ba:f2:c4:2a:05:9e:4b:a7:e5:98:5b:6b:34:79:e2:
06:e8:a2:2e:06:ac:1f:ea:7c:6f:b8:39:19:bf:1b:13:89:d5:
2a:52:63:cf:52:43:b5:33:b7:8a:39:af:ee:da:78:06:fe:31:
c4:ca:b7:cb:da:27:5e:f7:57:ee:4d:f0:e9:e3:28:90:3f:66:
9f:df:85:4b:e8:9f:bb:9e:4a:20:f4:e1:35:da:67:fb:93:67:
59:14:96:9a:59:d2:ff:45:0f:18:9f:e0:b7:b4:f8:56:a6:c8:
64:92:bc:09:4b:7b:1a:7f:ee:c9:84:0f:70:06:5f:6d:bc:7c:
25:c0:47:04:6e:a5:85:7b:da:d4:e9:9e:6b:db:8a:55:d8:8f:
9b:19:b3:2d:a9:3e:65:d5:28:e4:58:48:59:94:5f:3d:2d:93:
7a:57:79:d5:10:e8:29:a3:c0:85:d4:76:64:f7:6e:42:2d:10:
67:7e:aa:ab:ff:1f:3b:08:c3:d5:1e:9e:7e:60:e9:6d:27:78:
a4:75:6e:f5:55:70:a1:39:db:e9:f3:87:6a:0e:fb:60:33:7f:
c7:02:d5:24:77:bc:c6:77:6c:89:58:5b:65:cf:b4:76:58:75:
98:7a:b2:04:44:39:54:22:4d:62:b3:a6:b0:61:e9:2a:95:96:
f8:70:69:0a
-----BEGIN CERTIFICATE-----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Generated at Tue Oct 10 10:22:29 2023 by rpki-client on console-fra.rpki-client.org