Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/t7RbnKNVc2c0Jwf1Nbwi5zbH0p8.roa
File: t7RbnKNVc2c0Jwf1Nbwi5zbH0p8.roa (raw, json)
Hash identifier: ZzUPQvwfshkbsBrzELQ8QNMWkUwjgmyupR2UdOL3U7Y=
Subject key identifier: B7:B4:5B:9C:A3:55:73:67:34:27:07:F5:35:BC:22:E7:36:C7:D2:9F
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 01856CB8385789CAF063D3CC2AE525135BBA
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/t7RbnKNVc2c0Jwf1Nbwi5zbH0p8.roa
Signing time: Sun 01 Jan 2023 09:44:50 +0000
ROA not before: Sun 01 Jan 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 46.28.44.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:38:57:89:ca:f0:63:d3:cc:2a:e5:25:13:5b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Jan 1 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7b45b9ca3557367342707f535bc22e736c7d29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:23:f7:8c:fd:df:53:1b:05:ff:e5:bd:e7:9b:
c4:62:0d:00:0d:c5:35:17:ea:64:b0:83:ee:8c:a9:
ae:9e:ab:fb:7f:6a:75:8f:be:71:13:b3:64:8b:ca:
f1:e0:ed:c1:a0:6c:56:cc:4b:e8:2a:17:4b:0f:03:
9e:b7:f6:7a:41:78:42:5a:5c:d3:be:48:55:f1:6c:
6f:b2:5c:69:c4:98:e3:7e:a1:18:21:ef:2e:1a:ce:
2d:38:92:ad:a1:2f:10:55:8e:ab:cb:f2:01:7c:2b:
85:54:47:d3:12:14:85:61:9f:e5:69:87:9e:c8:4e:
9e:81:26:48:19:77:fb:86:3c:b0:4f:5e:d6:82:bc:
54:af:83:ab:71:e8:8a:37:b2:1c:7b:90:e6:13:fe:
cf:b7:60:1f:85:2f:d7:15:41:93:3b:ce:57:c2:96:
88:3e:0f:e3:aa:c1:19:f5:93:b8:67:d0:a4:2b:fe:
85:e0:cd:de:4f:02:87:86:f4:0e:f9:18:c5:cc:bd:
f5:f7:eb:f3:90:3a:09:aa:49:17:81:57:d5:d1:5b:
67:71:7b:85:e0:c9:81:50:a7:48:88:bd:88:c1:cf:
e0:2f:90:e8:b0:f3:41:1b:82:e7:a4:ea:37:34:12:
df:49:b6:5b:2a:4a:9b:43:02:91:02:55:96:02:fc:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B4:5B:9C:A3:55:73:67:34:27:07:F5:35:BC:22:E7:36:C7:D2:9F
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/t7RbnKNVc2c0Jwf1Nbwi5zbH0p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.44.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:20:6f:a8:a1:8e:8e:41:cf:75:a2:55:80:ef:01:59:be:3b:
f1:04:f6:67:17:d9:74:22:b0:18:16:66:2f:d8:3f:93:d8:f1:
f3:0a:46:c9:7e:1f:68:94:9d:5d:7c:b7:7d:20:a2:01:42:55:
56:13:cc:29:5d:e0:f2:0d:83:06:49:6f:c5:42:2c:64:9d:d7:
35:7c:42:92:61:00:03:0a:1f:88:bd:7a:ef:b0:93:95:a6:95:
e1:77:bf:8d:d2:17:83:3a:fb:64:b6:07:f6:c2:f8:d7:c1:26:
6e:eb:a2:f0:dc:cd:74:97:15:dd:81:e3:e5:2d:4d:a1:f9:0e:
62:01:8e:ab:80:01:5f:0e:a7:70:14:82:9d:a2:aa:75:56:e4:
bf:96:46:59:5c:73:3f:c6:b0:63:a3:85:28:cd:32:36:bd:11:
13:52:fb:9a:ae:e3:96:0b:fc:fb:a1:a8:15:b4:73:c3:5a:ab:
fa:97:a0:71:15:4b:b7:24:2b:68:db:5b:7b:ea:72:17:8b:dc:
29:44:a9:40:06:e0:10:76:37:a3:29:5c:aa:06:e4:56:97:34:
bf:43:40:74:1e:5c:78:f0:9e:6e:d9:e8:4f:dc:0e:d2:da:48:
b5:22:d5:3f:2a:c4:63:75:4d:e0:0e:dd:36:32:db:49:54:7c:
52:da:93:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 21 08:07:28 2023 by rpki-client on console-fra.rpki-client.org