Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/R77iBna89jXPg0djmDoqa5FrFpU.roa
File: R77iBna89jXPg0djmDoqa5FrFpU.roa (raw, json)
Hash identifier: SoV/m2TjgWnQE2ECdc4VS6lT+x0jo7JVTSlyD2GunFY=
Subject key identifier: 47:BE:E2:06:76:BC:F6:35:CF:83:47:63:98:3A:2A:6B:91:6B:16:95
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 018571D7C867DAB8CBF0AC8351D006ACC672
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/R77iBna89jXPg0djmDoqa5FrFpU.roa
Signing time: Mon 02 Jan 2023 09:37:25 +0000
ROA not before: Mon 02 Jan 2023 09:37:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41339
IP address blocks: 46.233.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:c8:67:da:b8:cb:f0:ac:83:51:d0:06:ac:c6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 2 09:37:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47bee20676bcf635cf834763983a2a6b916b1695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:27:bf:2f:5a:d4:e4:f2:f7:52:3e:ae:2f:73:
53:22:6c:df:b0:cf:1b:42:39:a3:4c:40:3f:7e:38:
85:f4:3e:5f:2a:43:35:af:58:3e:4c:a1:42:e7:aa:
68:a6:56:1a:30:9e:f3:36:51:4b:b4:c8:3c:55:61:
72:82:63:5a:5e:87:0c:08:2b:b1:ef:c6:7e:80:af:
c1:f6:f3:f0:84:e8:e0:8f:57:f2:53:0b:5d:7e:97:
3c:be:3b:5e:2b:f5:8b:c7:79:ee:70:f7:de:37:6d:
20:0f:ff:df:71:4a:a4:47:7a:75:ca:76:28:7e:e5:
ba:2b:38:da:0f:a7:e1:5b:e4:8f:04:4b:d2:4a:3a:
48:b3:a2:15:ea:ce:83:f2:dc:ab:8f:84:a4:c9:c7:
d8:b4:c4:17:ce:3c:a8:26:77:e5:7e:a6:50:15:d2:
d8:80:47:cc:16:6b:29:91:37:13:ca:aa:6e:a7:0d:
cb:db:6c:bf:82:85:7f:b9:50:57:d8:c8:18:f7:46:
d6:a5:c9:c9:c4:3b:2b:64:54:d5:22:83:70:28:65:
dc:85:6a:28:f0:19:5b:01:b9:f1:db:05:8d:ce:42:
46:18:a9:45:d0:de:49:64:54:72:03:ef:ea:4e:4d:
75:5f:37:10:3c:29:56:30:9c:f7:65:cf:a9:79:1b:
f9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BE:E2:06:76:BC:F6:35:CF:83:47:63:98:3A:2A:6B:91:6B:16:95
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/R77iBna89jXPg0djmDoqa5FrFpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.56.0/21
Signature Algorithm: sha256WithRSAEncryption
78:5d:77:86:3a:e8:5a:7f:cf:83:17:42:a6:02:e4:30:ad:6e:
25:44:b8:bd:8b:da:55:b6:a9:76:7b:fb:8b:ba:05:06:a7:fa:
fd:ea:a5:b7:d6:b2:8f:de:ea:06:19:69:da:35:6c:5b:58:27:
5d:08:43:a4:63:e0:30:96:c4:f2:a5:01:f1:60:5f:d6:be:04:
32:da:44:02:42:58:9b:97:fc:17:b6:0c:66:7e:07:1e:e0:26:
23:3a:e4:61:37:cf:86:bf:68:96:e2:63:05:3e:63:15:3a:ad:
86:ce:ca:01:af:8e:05:36:fb:26:f3:62:1c:44:cc:0e:f8:21:
6b:5d:7d:80:8a:42:a9:2b:9f:3d:89:ca:bb:ce:65:9d:9b:a0:
0c:cf:15:59:ce:2a:1e:82:70:95:47:19:c7:fd:2d:2b:2d:31:
02:40:27:38:57:bd:27:02:22:01:91:b0:c5:1c:cf:24:bc:cd:
0e:6e:eb:e9:d0:8f:9f:bb:aa:c7:0d:1c:64:73:07:69:f5:14:
87:f8:c5:cb:a2:9f:6d:64:33:91:d1:fb:de:24:e5:21:7c:37:
84:3c:05:03:ef:05:17:17:3e:41:31:18:a4:fa:0a:94:fd:ad:
83:55:d6:c7:41:e5:6f:09:69:90:a4:60:a9:81:14:d1:98:f2:
d4:b2:b8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:09 2024 by rpki-client on console-ams.rpki-client.org