Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/QaQ6uZL0s_xjsl4fnTG7VXN_tFY.roa
File: QaQ6uZL0s_xjsl4fnTG7VXN_tFY.roa (raw, json)
Hash identifier: X0/QBnUxG8uuAL9ad72/NaVwwSxCP/MKCzgSLvpgf6k=
Subject key identifier: 41:A4:3A:B9:92:F4:B3:FC:63:B2:5E:1F:9D:31:BB:55:73:7F:B4:56
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 01868A44E0C8DB5EBC6B5A705524BEF1D188
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/QaQ6uZL0s_xjsl4fnTG7VXN_tFY.roa
Signing time: Sat 25 Feb 2023 20:30:15 +0000
ROA not before: Sat 25 Feb 2023 20:30:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42431
IP address blocks: 46.233.13.0/24 maxlen: 24
46.233.12.0/24 maxlen: 24
46.233.16.0/24 maxlen: 24
46.233.16.0/21 maxlen: 21
46.233.15.0/24 maxlen: 24
46.233.14.0/24 maxlen: 24
46.233.17.0/24 maxlen: 24
46.233.23.0/24 maxlen: 24
46.233.22.0/24 maxlen: 24
46.233.21.0/24 maxlen: 24
46.233.24.0/24 maxlen: 24
46.233.24.0/23 maxlen: 23
46.233.20.0/24 maxlen: 24
46.233.19.0/24 maxlen: 24
46.233.18.0/24 maxlen: 24
46.233.26.0/24 maxlen: 24
46.233.25.0/24 maxlen: 24
46.233.30.0/24 maxlen: 24
46.233.29.0/24 maxlen: 24
46.233.28.0/22 maxlen: 22
46.233.28.0/24 maxlen: 24
46.233.27.0/24 maxlen: 24
46.233.31.0/24 maxlen: 24
46.233.36.0/23 maxlen: 23
46.233.32.0/22 maxlen: 22
46.233.2.0/24 maxlen: 24
46.233.1.0/24 maxlen: 24
46.233.0.0/19 maxlen: 20
46.233.0.0/24 maxlen: 24
46.233.0.0/21 maxlen: 21
46.233.4.0/24 maxlen: 24
46.233.3.0/24 maxlen: 24
46.233.9.0/24 maxlen: 24
46.233.8.0/24 maxlen: 24
46.233.7.0/24 maxlen: 24
46.233.11.0/24 maxlen: 24
46.233.10.0/24 maxlen: 24
46.233.6.0/24 maxlen: 24
46.233.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 19:16:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8a:44:e0:c8:db:5e:bc:6b:5a:70:55:24:be:f1:d1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Feb 25 20:30:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41a43ab992f4b3fc63b25e1f9d31bb55737fb456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:e8:7b:b8:28:a4:2c:c0:66:7b:0e:00:05:
6b:4b:3e:bc:91:4b:e3:d5:68:aa:04:a8:94:67:37:
da:ca:49:75:5a:b3:b0:9d:89:c6:76:c1:98:0e:d5:
fc:33:33:d8:46:8f:5d:59:bb:a6:77:1b:38:fa:61:
57:05:72:26:1c:da:1b:e0:7d:11:1e:8a:2a:c6:39:
f4:36:e9:f1:7b:48:43:ec:54:95:e8:36:ae:69:c9:
5f:da:27:6e:b1:b0:9f:d8:1e:c3:1b:2c:f7:dc:b1:
41:2e:fe:af:5f:c4:b0:35:2b:1b:be:56:1e:7e:9e:
82:c0:dd:e9:cd:72:88:f2:a9:16:8c:cd:91:6a:5c:
4f:a2:b0:d1:7c:f4:d6:9a:54:6a:92:4e:09:19:45:
57:59:0e:ea:94:f9:29:1a:37:15:a7:81:8c:b7:52:
b6:b9:4d:7b:2f:54:a8:b7:0c:ec:06:b1:dd:a7:b6:
e6:ac:d2:61:df:e4:3e:fa:f1:56:91:4c:4a:3a:ce:
8b:cd:af:55:c8:37:f3:a0:fc:90:97:f5:27:fe:0d:
90:c7:1c:d2:4d:77:78:63:d6:d4:05:b4:95:e4:5f:
20:36:b8:a1:a3:e9:4c:a0:54:2f:b3:01:e2:d2:91:
c8:f1:5d:55:3e:47:2b:15:34:79:7a:b6:ce:72:8d:
9c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A4:3A:B9:92:F4:B3:FC:63:B2:5E:1F:9D:31:BB:55:73:7F:B4:56
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/QaQ6uZL0s_xjsl4fnTG7VXN_tFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.0.0-46.233.37.255
Signature Algorithm: sha256WithRSAEncryption
79:a2:6a:4b:50:01:e1:0b:cc:8b:dc:f7:1c:28:0e:39:01:ca:
e5:c6:2a:5f:31:68:a8:c4:bb:b5:e3:b0:a0:ad:26:0f:8b:73:
df:ef:49:c6:de:a4:a5:77:c4:13:a2:91:dd:de:a1:a8:d4:ad:
e6:f1:33:c5:be:a0:6b:b7:ac:35:a3:9d:c2:34:a3:c6:e2:44:
eb:15:02:1b:a7:ba:c9:25:1a:9c:8e:78:7e:9c:60:74:9f:6b:
73:59:8a:7d:6b:05:0b:de:b6:5b:09:d5:28:a7:69:16:22:6d:
9e:4d:60:ee:75:17:18:cd:56:fd:d7:41:18:04:1a:1f:31:24:
f9:3f:87:ad:b2:19:ec:a5:a3:1d:62:ee:56:a3:57:d4:61:28:
ea:b1:d7:f9:04:af:68:9e:90:22:75:8d:87:de:eb:71:c3:bd:
57:c2:8a:4b:83:05:7b:50:17:b8:dd:c1:6e:3e:43:a2:2e:d4:
95:07:93:03:2a:b9:5e:e3:d3:0b:25:37:ea:80:93:6c:77:87:
4e:e5:33:be:37:05:4b:ff:e5:9c:70:53:31:20:90:14:a5:77:
a3:b3:e3:e2:e9:00:a1:ff:06:09:b9:16:4e:8b:b7:21:db:10:
a9:1d:3b:20:ec:37:6a:be:12:8b:92:95:6d:49:11:8f:39:59:
f6:05:39:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org