Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/4xB9BdzHC_js68Nj3ruBaRB73fM.roa
File: 4xB9BdzHC_js68Nj3ruBaRB73fM.roa (raw, json)
Hash identifier: EjrnQD4KK0/OVU88exIykcRgsErokPvwEsSk3jy5Afo=
Subject key identifier: E3:10:7D:05:DC:C7:0B:F8:EC:EB:C3:63:DE:BB:81:69:10:7B:DD:F3
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 018CC7956BD178F657B61A104EB20FEB1E34
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/4xB9BdzHC_js68Nj3ruBaRB73fM.roa
Signing time: Tue 02 Jan 2024 00:31:47 +0000
ROA not before: Tue 02 Jan 2024 00:31:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51200
IP address blocks: 46.29.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 05:18:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:6b:d1:78:f6:57:b6:1a:10:4e:b2:0f:eb:1e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Jan 2 00:31:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3107d05dcc70bf8ecebc363debb8169107bddf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e4:16:9c:3c:45:02:e6:14:5c:ac:95:8d:a0:
5f:35:e1:be:41:39:ce:6c:32:0f:7e:cd:46:5a:de:
1d:d0:ee:4e:7b:c2:40:f6:be:09:db:58:9b:42:a6:
49:51:ba:8a:37:6a:8f:7b:4c:00:23:5a:88:50:f7:
3b:25:a6:f1:a7:1a:a4:22:98:e4:27:c5:98:d5:38:
55:0e:8e:79:f8:cd:a8:d2:d7:c8:93:61:35:63:fe:
28:97:04:71:18:d2:96:df:de:9c:95:e9:98:ce:0d:
16:78:8d:ee:9f:c9:15:0a:8d:2c:1b:6a:53:75:ff:
fa:08:50:e2:c7:08:5b:7f:40:72:f4:90:e9:03:65:
8f:79:60:44:b3:12:a3:07:ab:7e:4a:4c:76:51:30:
a6:4c:21:15:09:82:9d:24:cd:cf:b6:72:73:6c:16:
b1:e6:e4:71:87:5e:0e:c4:42:ef:5f:f1:83:19:0c:
f5:26:89:78:93:fe:59:6d:b6:4c:9e:db:dc:d8:68:
3e:9e:c2:7a:05:9b:ed:12:99:50:27:ca:33:d3:c1:
1b:d5:64:d7:55:a8:cc:40:f1:88:87:2e:d3:bd:8f:
b0:2d:d3:59:ae:12:82:09:6a:e7:2f:a6:1c:43:f5:
7f:fa:a7:7f:13:e0:77:7f:4b:9b:5c:d6:eb:b7:0e:
78:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:10:7D:05:DC:C7:0B:F8:EC:EB:C3:63:DE:BB:81:69:10:7B:DD:F3
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/4xB9BdzHC_js68Nj3ruBaRB73fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.232.0/24
Signature Algorithm: sha256WithRSAEncryption
05:a0:d6:aa:00:26:4a:fa:5c:a4:f0:c4:6a:b8:2a:36:69:e4:
c5:cd:26:59:61:6b:24:e6:43:3b:53:a5:f2:08:a5:1d:b7:03:
bb:23:0a:45:ae:d8:eb:a4:55:8a:ba:95:2c:d3:3d:9b:8a:aa:
a2:76:39:3c:60:31:78:ab:dc:2e:b7:dc:c0:28:42:c1:25:4b:
e1:15:d1:80:46:52:c1:36:cd:0b:f4:be:97:cf:7f:0f:d2:9c:
2d:06:27:e4:cb:16:45:f2:5b:95:31:03:65:c3:66:02:a9:82:
c3:e9:61:94:e5:9b:72:7b:4b:ef:fb:10:02:dd:bf:a7:84:8d:
6e:47:bb:0f:69:ee:be:98:6c:a9:9b:68:5f:99:99:71:02:81:
1e:d7:fd:a1:10:fb:fa:7d:03:83:ca:e2:70:d9:79:12:6c:e9:
cc:cc:77:0a:d2:9d:57:f9:c5:a3:a8:84:c9:a2:06:45:1e:f1:
97:a8:47:e4:7f:5a:f9:b8:6e:52:70:22:d9:f0:77:d6:47:ef:
2e:cc:b5:6c:f9:1c:11:c8:17:35:04:cc:03:14:2b:8a:01:a8:
f7:92:20:3a:71:35:a7:9a:af:8e:19:2f:f3:f3:d0:44:f6:d1:
d2:59:07:1c:a6:85:30:d8:1d:89:4c:ca:cf:29:a4:b2:5c:ec:
1e:3b:49:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 31 06:17:53 2024 by rpki-client on console-fra.rpki-client.org