Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/nhuqB327Ebw-Rr_LyvLHvksnW1U.roa
File: nhuqB327Ebw-Rr_LyvLHvksnW1U.roa (raw, json)
Hash identifier: yDQe3cdJ3yRH8r/utTIiVJFEytEL6mP+NFjM2n0Qllw=
Subject key identifier: 9E:1B:AA:07:7D:BB:11:BC:3E:46:BF:CB:CA:F2:C7:BE:4B:27:5B:55
Certificate issuer: /CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Certificate serial: 0186E53D541CDB6FC0F9691882DE90D63FA3
Authority key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/nhuqB327Ebw-Rr_LyvLHvksnW1U.roa
Signing time: Wed 15 Mar 2023 12:27:27 +0000
ROA not before: Wed 15 Mar 2023 12:27:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 46.28.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Mar 2023 13:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:3d:54:1c:db:6f:c0:f9:69:18:82:de:90:d6:3f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Validity
Not Before: Mar 15 12:27:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e1baa077dbb11bc3e46bfcbcaf2c7be4b275b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a8:78:35:ff:40:2f:de:11:bf:d7:b9:b3:d7:
75:ad:58:54:d2:c7:fe:ae:61:a2:37:69:c7:d4:75:
5c:db:6b:62:b5:13:e4:88:39:b0:bb:99:44:e0:09:
7b:4c:dd:f6:40:20:ae:f0:08:91:25:dd:7f:80:05:
77:b9:3e:ac:7d:32:40:3c:7d:6f:24:fd:cf:28:34:
5d:6b:77:b5:28:05:52:63:e7:93:d3:44:f2:e3:20:
8f:8b:51:3a:4c:44:0d:cc:e7:07:7d:f6:58:d8:72:
a9:65:92:5e:b6:e8:2a:d5:d0:87:c3:14:f1:e0:f0:
44:99:8d:ce:ad:3a:5b:12:68:f5:f9:94:b5:57:74:
7c:63:cf:03:63:c1:3b:f5:68:4b:84:0b:a5:b5:21:
54:99:a3:b4:50:ac:44:9a:87:d5:88:42:e1:3d:de:
30:1e:dd:d9:73:7b:1a:d4:f9:08:f6:14:7b:47:a6:
e9:27:15:0d:67:d8:1e:04:22:d5:1d:20:ad:52:62:
5d:88:33:1d:22:69:70:47:9e:b4:25:db:b8:12:08:
fa:92:68:64:d8:a2:96:b1:91:e5:7b:89:b7:d0:b0:
d6:bd:f4:13:66:f3:57:7c:29:dc:10:a8:33:a7:c1:
ff:27:46:28:29:40:d6:31:45:a0:27:7b:af:90:42:
83:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1B:AA:07:7D:BB:11:BC:3E:46:BF:CB:CA:F2:C7:BE:4B:27:5B:55
X509v3 Authority Key Identifier:
keyid:AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/nhuqB327Ebw-Rr_LyvLHvksnW1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.236.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:0a:6e:b3:be:d2:4b:a0:75:95:8d:f2:44:a6:ad:be:25:39:
b2:a5:5b:21:31:e3:b7:62:2d:f1:f0:0d:0c:cb:40:9d:f3:5a:
18:53:24:ef:ab:c4:d1:22:89:3a:49:63:e8:2b:75:f4:a6:0b:
58:0d:3f:03:72:1d:23:a3:c6:73:71:7b:d1:4c:f4:62:36:ab:
bf:4d:b8:b2:f0:3b:c2:45:f3:c3:7b:ad:5e:0f:98:a5:d5:c0:
2f:af:b7:e0:2e:9e:4f:47:2d:1a:6f:f0:85:ee:fb:82:11:c7:
5f:1b:a0:de:85:da:a8:12:3e:8b:c2:8b:df:fa:43:96:a9:9e:
92:49:fc:8c:c0:25:2b:18:43:41:cc:f0:43:cb:e8:bc:a8:31:
49:97:20:17:19:6c:8a:b8:bd:11:1f:66:45:cf:9f:2b:9f:0f:
df:99:e4:57:15:c4:78:1b:85:31:fa:ac:42:66:0e:3f:8d:bc:
39:fb:e4:4b:1a:c4:92:45:d3:94:56:63:e9:e7:0d:c1:48:80:
16:58:04:a8:6b:44:e5:38:d9:32:5a:9f:c4:cb:bf:e5:96:74:
c9:a3:75:61:59:78:43:95:c4:ef:0c:9b:50:c7:57:1c:76:c4:
3d:7a:e3:34:d4:f2:19:12:3a:17:f2:22:5e:b4:e9:95:96:0b:
32:7d:25:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org