Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/S4t3_SncD_W_dyRIErGoVRUL8CU.roa
File: S4t3_SncD_W_dyRIErGoVRUL8CU.roa (raw, json)
Hash identifier: 3i/Fu0I+JRoQruWA0Sc4Ko+i/rczNIIi4TEdpEyrdXg=
Subject key identifier: 4B:8B:77:FD:29:DC:0F:F5:BF:77:24:48:12:B1:A8:55:15:0B:F0:25
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01872378EDF05FAAD189533E0C52442DB0E9
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/S4t3_SncD_W_dyRIErGoVRUL8CU.roa
Signing time: Mon 27 Mar 2023 14:29:00 +0000
ROA not before: Mon 27 Mar 2023 14:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43733
IP address blocks: 217.76.0.0/24 maxlen: 24
217.76.0.0/21 maxlen: 21
217.76.0.0/20 maxlen: 20
217.76.2.0/24 maxlen: 24
217.76.1.0/24 maxlen: 24
217.76.8.0/21 maxlen: 21
46.130.0.0/17 maxlen: 17
46.130.0.0/16 maxlen: 16
83.139.24.0/22 maxlen: 22
83.139.24.0/21 maxlen: 21
83.139.28.0/22 maxlen: 22
185.36.36.0/22 maxlen: 22
185.36.36.0/24 maxlen: 24
46.130.128.0/17 maxlen: 17
46.130.255.0/24 maxlen: 24
2a00:1f28::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:ed:f0:5f:aa:d1:89:53:3e:0c:52:44:2d:b0:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 27 14:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b8b77fd29dc0ff5bf77244812b1a855150bf025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c8:a3:71:c0:87:de:f2:e7:fb:a5:d5:22:b1:
b2:53:2f:f6:68:85:60:aa:90:89:4e:03:3c:d7:09:
14:32:a9:53:21:f3:a6:52:3b:86:85:a5:9a:eb:32:
68:ee:37:a9:f3:77:1b:78:cb:40:96:36:bc:1a:45:
73:b2:4c:e2:c2:14:01:7b:a5:96:7f:52:55:59:1a:
c8:0c:42:30:b0:6b:c8:0b:34:64:98:57:d1:f8:aa:
00:32:d9:1e:17:13:03:23:63:41:da:8a:8f:bf:8b:
3b:4e:25:0c:71:f6:17:77:c8:92:56:e0:a9:c3:f3:
8b:d2:d5:76:34:96:65:f9:66:84:59:c6:b9:c7:ff:
63:1f:bd:3e:e5:03:9a:21:c9:68:81:ac:d7:15:48:
54:19:3c:4e:9e:54:a4:6d:7f:79:44:e4:06:1a:50:
90:96:a3:63:f1:7d:89:43:69:e8:9e:3c:c2:0f:2d:
12:46:79:4d:e2:40:a4:55:c0:9a:67:55:97:7f:63:
bb:91:9b:62:3d:95:16:9d:b9:83:04:97:0f:08:05:
3f:b4:c4:e0:fa:c3:94:c5:db:14:b5:51:38:f0:fe:
61:43:38:fa:65:cf:2b:57:8e:6a:2b:0f:dd:79:94:
93:f4:b3:3c:43:77:26:f3:46:90:da:96:83:1e:f6:
75:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:8B:77:FD:29:DC:0F:F5:BF:77:24:48:12:B1:A8:55:15:0B:F0:25
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/S4t3_SncD_W_dyRIErGoVRUL8CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.130.0.0/16
83.139.24.0/21
185.36.36.0/22
217.76.0.0/20
IPv6:
2a00:1f28::/32
Signature Algorithm: sha256WithRSAEncryption
4e:20:7d:22:2a:47:5b:8d:e2:b2:1b:2a:51:c7:93:8c:8f:51:
65:2d:86:f9:ac:0c:72:4b:39:fd:f0:30:4f:f5:7e:25:9a:62:
ff:fd:ae:e2:c7:64:a6:53:95:40:af:2f:6b:79:69:58:1f:a2:
da:85:84:e1:3a:ad:51:56:e6:be:a1:7a:ab:51:46:9d:e3:d0:
64:1f:4f:93:80:da:7e:4f:f2:65:13:16:09:54:11:c6:a4:67:
6a:05:74:ec:05:fd:76:dd:95:36:eb:ac:8b:2a:c9:03:cf:de:
75:d2:a1:f4:8f:d5:a4:3f:59:45:1f:a2:22:89:85:e4:e9:b6:
11:26:a0:b9:6e:46:66:91:f0:e6:37:bc:85:a0:14:f3:37:de:
e4:56:0c:77:73:eb:48:b1:54:a1:a9:c5:5e:38:06:7b:8f:97:
8c:3a:91:82:c3:d3:93:af:19:0d:e6:d1:69:41:9e:92:d6:7f:
16:79:42:32:6b:d2:8a:bd:f7:70:82:21:0b:e0:8d:76:50:32:
17:93:88:6c:36:e7:b0:2b:ba:cc:6d:5c:5f:d6:da:fd:58:34:
6a:b6:06:86:37:b7:5e:68:a8:53:76:b7:63:ca:c2:f7:a2:aa:
80:7f:c7:2e:3a:05:d0:a9:f0:3f:be:28:f1:47:05:ca:ab:2d:
b4:14:67:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:45 2024 by rpki-client on console-ams.rpki-client.org