Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/RWAp233dbbezWlj6-zHIIfL7jKo.roa
File: RWAp233dbbezWlj6-zHIIfL7jKo.roa (raw, json)
Hash identifier: wJ4ht3shs9GWnSvxpQW9buiY/jnzT7H1J4QylbrJ5bk=
Subject key identifier: 45:60:29:DB:7D:DD:6D:B7:B3:5A:58:FA:FB:31:C8:21:F2:FB:8C:AA
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 018BA5300EFCAFF18A29C9000A5C7672821D
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/RWAp233dbbezWlj6-zHIIfL7jKo.roa
Signing time: Mon 06 Nov 2023 15:11:12 +0000
ROA not before: Mon 06 Nov 2023 15:11:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47583
IP address blocks: 46.28.44.0/22 maxlen: 24
46.28.40.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a5:30:0e:fc:af:f1:8a:29:c9:00:0a:5c:76:72:82:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Nov 6 15:11:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=456029db7ddd6db7b35a58fafb31c821f2fb8caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2b:4e:46:ad:a7:fb:54:f0:15:e9:e6:70:ad:
ed:7c:01:b6:9d:a0:6f:67:32:8f:d1:75:88:82:12:
6c:f4:c0:f9:19:31:cc:d0:27:c0:93:51:be:f0:45:
c0:bd:0f:f3:fe:90:d5:e5:ca:b3:08:c2:13:19:0e:
9f:65:6a:a4:00:db:1f:c4:00:59:4b:a6:b0:a9:d1:
3a:9b:c2:1d:58:6c:35:7e:ac:2e:c9:1c:f7:e8:53:
3c:6c:20:22:22:5c:66:ed:45:f2:c8:77:b0:90:74:
ea:72:a5:e0:51:6d:9e:ba:2a:3f:78:dc:1e:1e:61:
45:58:c4:00:e0:33:5e:0b:09:a8:4b:2e:05:f7:ac:
cc:7e:db:93:67:76:31:d6:52:8e:67:54:40:7f:93:
a4:55:32:fe:eb:d9:81:8b:70:4e:1e:49:18:e0:53:
f4:de:89:54:de:ff:56:d1:7a:22:53:f4:f9:e8:ec:
ad:1e:6c:f8:ca:a7:6c:c2:9a:a3:9f:ad:89:03:52:
db:05:b1:14:ce:d3:7e:de:33:78:13:17:f8:2d:fe:
b9:80:02:58:f1:ab:61:b0:28:da:27:17:3c:2e:a8:
3c:77:1b:5c:64:09:cd:17:a5:c1:92:63:ae:7e:b6:
eb:98:35:8d:a2:99:1b:e7:67:d0:09:92:6a:20:9b:
3c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:60:29:DB:7D:DD:6D:B7:B3:5A:58:FA:FB:31:C8:21:F2:FB:8C:AA
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/RWAp233dbbezWlj6-zHIIfL7jKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.40.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:be:1b:30:41:90:d5:6b:8f:ba:4f:a8:69:ff:8b:5e:ba:93:
3d:3a:12:9e:03:e8:7e:4b:26:b4:1f:06:75:1c:15:d4:dd:1a:
cf:9c:9c:e7:2b:fc:c9:d1:fc:69:68:f4:a8:1f:32:4e:05:f9:
62:a0:77:06:ba:a4:77:5d:57:0d:8a:38:ae:3d:ef:10:d7:ac:
b6:cd:0a:32:1c:bc:64:09:94:d4:40:33:b2:9d:af:d0:3f:10:
c7:de:a0:b4:30:e1:50:e6:bc:be:38:2c:1f:de:38:d0:0d:11:
b1:ef:8b:08:76:96:c8:3f:06:db:20:5b:ee:b3:8a:a4:33:af:
e1:7c:e7:f3:74:21:aa:bd:cd:c0:da:2b:28:8b:72:58:fe:1c:
ea:7f:e9:e7:0a:ac:c3:e9:8e:e9:34:ed:9b:37:c4:da:24:04:
1d:88:be:3a:ed:3b:6c:79:3a:3b:b4:34:e2:2f:39:6c:7a:b6:
33:e9:13:66:1a:50:b6:e1:bc:c5:b5:62:6f:66:ca:ef:fb:79:
58:b5:88:17:48:e0:8d:d4:04:e4:6d:42:a4:46:68:50:d7:b9:
c1:cf:83:82:9b:3d:08:fd:bd:c3:09:22:a2:4a:fd:61:70:82:
f2:ca:13:a1:3e:6b:84:44:3f:d7:4a:28:79:81:5e:9d:25:ce:
8d:51:46:74
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYulMA78r/GKKckAClx2coIdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh
M2Q0YjUwHhcNMjMxMTA2MTUxMTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTYwMjlkYjdkZGQ2ZGI3YjM1YTU4ZmFmYjMxYzgyMWYyZmI4Y2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CtORq2n+1TwFenmcK3tfAG2naBv
ZzKP0XWIghJs9MD5GTHM0CfAk1G+8EXAvQ/z/pDV5cqzCMITGQ6fZWqkANsfxABZ
S6awqdE6m8IdWGw1fqwuyRz36FM8bCAiIlxm7UXyyHewkHTqcqXgUW2euio/eNwe
HmFFWMQA4DNeCwmoSy4F96zMftuTZ3Yx1lKOZ1RAf5OkVTL+69mBi3BOHkkY4FP0
3olU3v9W0XoiU/T56OytHmz4yqdswpqjn62JA1LbBbEUztN+3jN4Exf4Lf65gAJY
8athsCjaJxc8Lqg8dxtcZAnNF6XBkmOufrbrmDWNopkb52fQCZJqIJs8MQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEVgKdt93W23s1pY+vsxyCHy+4yqMB8GA1UdIwQY
MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt
MmUxYzBhZjRmYWE0LzEvUldBcDIzM2RiYmV6V2xqNi16SElJZkw3aktvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0
LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLhwoMA0G
CSqGSIb3DQEBCwUAA4IBAQBuvhswQZDVa4+6T6hp/4teupM9OhKeA+h+Sya0HwZ1
HBXU3RrPnJznK/zJ0fxpaPSoHzJOBflioHcGuqR3XVcNijiuPe8Q16y2zQoyHLxk
CZTUQDOyna/QPxDH3qC0MOFQ5ry+OCwf3jjQDRGx74sIdpbIPwbbIFvus4qkM6/h
fOfzdCGqvc3A2isoi3JY/hzqf+nnCqzD6Y7pNO2bN8TaJAQdiL467TtseTo7tDTi
LzlserYz6RNmGlC24bzFtWJvZsrv+3lYtYgXSOCN1ATkbUKkRmhQ17nBz4OCmz0I
/b3DCSKiSv1hcILyyhOhPmuERD/XSih5gV6dJc6NUUZ0
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:34 2024 by rpki-client on console-fra.rpki-client.org