Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/0g0UQTy6F7WJxVqkxYWFDETLgv0.roa
File: 0g0UQTy6F7WJxVqkxYWFDETLgv0.roa (raw, json)
Hash identifier: EkcEYBFp8rvOa8MpcZQHbctFrxb0hNxaU83mV6YpcRw=
Subject key identifier: D2:0D:14:41:3C:BA:17:B5:89:C5:5A:A4:C5:85:85:0C:44:CB:82:FD
Certificate issuer: /CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Certificate serial: 018CC8DEE1B3251FB0DA1D32E4C0A4C93CC8
Authority key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/0g0UQTy6F7WJxVqkxYWFDETLgv0.roa
Signing time: Tue 02 Jan 2024 06:31:39 +0000
ROA not before: Tue 02 Jan 2024 06:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200443
IP address blocks: 46.28.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 11:45:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:e1:b3:25:1f:b0:da:1d:32:e4:c0:a4:c9:3c:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Validity
Not Before: Jan 2 06:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d20d14413cba17b589c55aa4c585850c44cb82fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:bb:12:b5:a7:66:e2:8f:05:49:44:5a:51:
7d:aa:e0:35:44:0c:ac:6b:9c:95:bd:83:0a:09:16:
03:97:68:f8:58:43:5d:5e:89:c1:47:25:3a:f2:a3:
35:63:e8:56:90:eb:fe:6c:a2:c6:75:a9:8a:0c:8e:
ad:78:ae:f3:1f:3b:be:97:2d:7a:d2:81:8e:64:e2:
79:3a:c0:2c:50:46:84:79:0e:e9:97:87:2d:cd:53:
46:65:61:2e:2c:c1:41:2a:d7:7d:bc:77:39:92:a0:
d4:74:2e:21:38:90:cb:22:34:2d:f8:aa:e4:c3:ac:
e2:cd:04:e5:73:ca:64:4a:ca:0b:65:ce:2a:83:5e:
74:32:af:05:43:70:8c:61:59:1b:44:ba:80:85:8f:
d2:e8:ef:57:0d:bb:60:c7:79:f0:9e:c7:13:90:3a:
01:00:49:41:f3:f2:73:49:1e:a2:b7:2f:60:d3:90:
ea:c9:f1:4c:2c:81:3a:94:a4:00:1e:b6:b5:23:f8:
56:28:a5:34:f7:14:5a:88:df:38:c4:50:c4:6c:7b:
f0:27:ab:5d:30:d8:6e:76:ad:eb:3f:5d:c4:d5:cb:
27:ad:37:a8:7e:9b:66:70:cf:bf:49:b0:43:8a:04:
c7:54:d7:0a:7f:77:3c:86:0b:f9:1a:d0:ce:1e:ab:
5c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0D:14:41:3C:BA:17:B5:89:C5:5A:A4:C5:85:85:0C:44:CB:82:FD
X509v3 Authority Key Identifier:
keyid:AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/0g0UQTy6F7WJxVqkxYWFDETLgv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.236.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:71:b3:fb:fd:bd:d2:3c:85:a5:94:5d:ed:11:c0:43:1e:58:
68:07:72:2b:06:57:2a:ad:f1:3f:3b:fa:0f:58:51:b2:7b:67:
d9:b0:11:8f:c2:9f:8f:63:f2:f4:62:c7:d3:a8:71:0b:94:6e:
16:dc:30:8d:95:0c:d3:a5:98:ec:b8:90:6d:71:7b:eb:55:be:
b2:89:1f:bf:79:50:99:ed:65:d8:d9:79:b5:dd:38:45:01:f5:
09:99:97:10:c9:be:5d:a4:3d:0d:a2:89:c3:4a:9d:43:00:de:
85:5d:94:8c:ee:fc:79:4f:c4:ad:01:da:fb:38:7b:67:00:db:
79:dc:54:2b:c3:68:53:ca:90:1e:e8:90:1d:1a:08:3b:d3:51:
8b:f5:23:56:f7:4f:bd:6e:48:f9:e7:f8:cc:67:96:91:32:07:
a4:d4:a4:db:4b:7a:09:57:5a:aa:4c:1b:4e:a8:42:a3:e6:4b:
1a:35:a3:1f:65:65:ae:5a:f5:53:b4:da:31:84:1d:fc:23:e5:
b7:58:fb:df:4e:b7:7c:84:7b:2a:d2:9b:d4:3a:b2:68:8d:7e:
b5:cb:46:03:c1:fa:95:49:7c:97:9c:1f:f4:6b:bd:8d:d4:e0:
16:aa:fe:ea:f3:af:05:e9:08:6f:3c:dc:61:32:4b:4e:6c:70:
8c:2d:e0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org