Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/a12b0a-d48d-4d3b-bc47-0557bd7217f1/1/nXL8iBvTcHVIi7bXHi8UPiU2aSg.roa
File: nXL8iBvTcHVIi7bXHi8UPiU2aSg.roa (raw, json)
Hash identifier: HL0ln11JIZ8pKl/g9yaWwm1xh3iSbB94uH+GmlrVyYc=
Subject key identifier: 9D:72:FC:88:1B:D3:70:75:48:8B:B6:D7:1E:2F:14:3E:25:36:69:28
Certificate issuer: /CN=91aafcadb6c52984e35589eb7758f050aacefc76
Certificate serial: 01856FE6F4ADD3F9C0DDB8974D0223AA9831
Authority key identifier: 91:AA:FC:AD:B6:C5:29:84:E3:55:89:EB:77:58:F0:50:AA:CE:FC:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kar8rbbFKYTjVYnrd1jwUKrO_HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/a12b0a-d48d-4d3b-bc47-0557bd7217f1/1/nXL8iBvTcHVIi7bXHi8UPiU2aSg.roa
Signing time: Mon 02 Jan 2023 00:34:44 +0000
ROA not before: Mon 02 Jan 2023 00:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51561
IP address blocks: 46.226.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e6:f4:ad:d3:f9:c0:dd:b8:97:4d:02:23:aa:98:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91aafcadb6c52984e35589eb7758f050aacefc76
Validity
Not Before: Jan 2 00:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d72fc881bd37075488bb6d71e2f143e25366928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:17:79:36:84:2b:9a:f9:4d:d8:4f:c7:21:00:
71:1d:a6:21:55:8d:ea:67:a0:26:6f:5b:4c:4b:e3:
d0:9f:65:71:fe:8c:6e:96:04:4e:a9:2b:c7:7d:97:
e1:14:ff:37:aa:01:0a:e4:c7:fa:2f:ad:22:89:f6:
d2:de:c5:af:ae:26:72:63:32:78:8e:95:37:f6:c9:
9d:90:c4:51:4e:e3:7e:89:9d:6f:ec:74:ea:24:f5:
57:f2:d6:e4:18:90:15:33:80:6b:08:41:47:90:e9:
86:7a:df:74:ed:1d:90:a3:92:32:f7:e7:9e:9f:db:
99:db:a8:40:28:f0:66:2f:a2:35:c8:21:c1:fa:13:
dc:ad:85:85:8a:44:7c:b1:9f:ec:5f:fd:b0:62:f0:
49:a8:2d:a6:32:71:1d:c5:38:5b:19:28:4c:fe:b3:
3b:aa:87:ca:b9:37:a4:26:16:d2:0f:38:6f:ad:07:
cc:51:20:c9:8c:ab:01:2c:52:df:73:fb:58:37:5d:
61:be:c2:2e:24:3a:9d:b3:0c:f2:53:ad:f9:7e:31:
16:6d:18:b7:07:1c:cf:6c:9d:31:eb:51:b3:13:85:
08:b1:41:0e:9e:2c:10:0a:13:e2:45:d5:ab:fc:4d:
80:a7:41:e8:7c:5d:3c:f1:35:21:b6:81:9d:29:65:
44:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:72:FC:88:1B:D3:70:75:48:8B:B6:D7:1E:2F:14:3E:25:36:69:28
X509v3 Authority Key Identifier:
keyid:91:AA:FC:AD:B6:C5:29:84:E3:55:89:EB:77:58:F0:50:AA:CE:FC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kar8rbbFKYTjVYnrd1jwUKrO_HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/a12b0a-d48d-4d3b-bc47-0557bd7217f1/1/nXL8iBvTcHVIi7bXHi8UPiU2aSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/a12b0a-d48d-4d3b-bc47-0557bd7217f1/1/kar8rbbFKYTjVYnrd1jwUKrO_HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.120.0/24
Signature Algorithm: sha256WithRSAEncryption
86:6d:fe:8a:14:52:50:0b:2a:8d:a8:8d:65:45:f9:94:75:6e:
3b:15:f2:68:2a:0f:40:51:90:6f:d3:d0:ff:f8:27:4c:b2:44:
8b:5a:48:e0:92:29:3a:a4:a8:fe:65:e7:68:1e:20:f6:b6:fb:
9a:49:49:75:c1:05:c0:1a:54:20:47:db:50:67:69:26:d4:8b:
94:aa:a4:aa:79:43:37:b9:eb:ab:b6:ee:3f:03:93:b7:b7:09:
31:6e:00:c1:d6:5c:aa:b1:40:4a:3d:05:75:77:7c:e1:5c:9d:
70:2b:46:6b:12:ee:30:b5:95:5a:1b:17:1f:ba:39:f4:4c:eb:
c1:26:ae:cc:dd:b2:d1:12:31:9c:a6:1c:88:40:c0:14:6e:b8:
ea:5c:53:e1:d7:c6:a1:cb:af:c1:4a:9a:ab:e5:c1:0d:d3:98:
11:cd:15:3c:e8:68:05:39:3e:2d:61:35:b5:30:17:00:ae:54:
fb:e5:c2:ef:fc:5d:9f:69:c7:91:8c:19:22:93:74:9e:5d:0c:
3d:c5:2a:1c:0c:8e:65:d2:8f:9b:67:8d:e1:78:e5:d4:25:d0:
c5:c9:27:ad:e7:75:df:82:09:da:98:88:7d:28:fa:10:1e:65:
0a:b7:b5:fd:b1:5b:ff:0b:de:da:d9:f1:9b:75:99:b8:57:db:
0e:41:df:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:55 2024 by rpki-client on console-ams.rpki-client.org