Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/RnzorvCKn8HBGun9dty7ney8lC0.roa
File: RnzorvCKn8HBGun9dty7ney8lC0.roa (raw, json)
Hash identifier: txt2LqBVI5LxXvYkIbxBKgYyql6hrKTNXbzuUxUfKI4=
Subject key identifier: 46:7C:E8:AE:F0:8A:9F:C1:C1:1A:E9:FD:76:DC:BB:9D:EC:BC:94:2D
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 0188B0D3643C265EF6C09CE8989C2F61AD27
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/RnzorvCKn8HBGun9dty7ney8lC0.roa
Signing time: Mon 12 Jun 2023 18:17:03 +0000
ROA not before: Mon 12 Jun 2023 18:17:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 46.233.42.0/24 maxlen: 24
46.233.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 07:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b0:d3:64:3c:26:5e:f6:c0:9c:e8:98:9c:2f:61:ad:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jun 12 18:17:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=467ce8aef08a9fc1c11ae9fd76dcbb9decbc942d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:72:14:e9:e2:d3:59:8a:1d:a7:f0:67:c1:dc:
97:63:98:01:f0:c4:f1:d2:49:42:ba:19:1f:f0:93:
a8:0e:ee:3a:f9:33:a2:32:6e:fd:08:e1:d9:ad:49:
16:82:57:8a:5e:f9:e8:fc:54:cd:4d:b7:6e:a3:b0:
b9:98:60:e9:02:6b:ad:45:3d:49:c6:8c:8d:54:c3:
21:b7:3c:57:f8:e5:c3:8f:be:5d:23:da:b9:bb:41:
e8:5e:0b:d6:a5:42:8c:d0:4c:15:56:78:cb:d6:a8:
2e:56:a1:4e:ca:26:2b:d9:b4:d6:bf:12:29:8c:b9:
48:73:f8:a1:a6:f3:be:72:98:ba:44:56:f0:e2:13:
98:99:72:68:ed:fb:73:12:bd:8d:1e:36:04:1e:65:
d5:cc:e1:59:9f:76:0d:88:5c:bb:8a:72:94:75:ca:
b6:b9:f4:4c:4c:93:6e:b7:ed:ed:f7:95:80:fe:cf:
cf:f0:f8:05:5a:42:8b:ac:5f:4f:10:f7:dc:f7:bc:
89:6b:74:9d:39:2f:3a:6b:b8:3c:04:72:25:35:28:
32:38:01:b5:64:e9:48:19:c7:9b:f3:d5:20:f8:d0:
03:c9:32:bc:9e:c2:9a:fa:f6:31:5d:dc:24:f9:fd:
26:e7:0f:20:07:66:2a:ba:fe:be:1b:c7:2c:02:8c:
58:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:7C:E8:AE:F0:8A:9F:C1:C1:1A:E9:FD:76:DC:BB:9D:EC:BC:94:2D
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/RnzorvCKn8HBGun9dty7ney8lC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.42.0/23
Signature Algorithm: sha256WithRSAEncryption
39:b2:20:38:d5:e3:2a:e5:5d:37:64:30:51:07:cc:af:ab:d4:
03:f6:86:05:a2:a0:84:71:f5:c2:a5:1c:d7:19:2a:bb:23:da:
21:fe:bd:51:d3:5d:1e:79:c3:e3:51:e4:16:45:ef:fe:f1:24:
8c:8a:7e:09:dd:75:0d:88:e5:29:cd:9e:d4:7b:d0:d0:1b:9a:
af:98:58:5d:b1:37:08:38:36:77:c4:46:61:12:2d:a5:ab:fc:
75:26:64:42:2d:7e:51:9a:b0:7a:bc:d9:04:40:1b:70:e2:82:
29:a9:42:17:27:da:d7:fd:20:93:c6:41:44:21:f4:55:24:80:
e6:19:3d:6e:98:60:5e:a6:aa:24:06:fb:ee:ab:7c:87:a0:cf:
c7:fb:41:d5:08:d1:87:45:f0:5e:5a:47:28:ee:d1:67:85:09:
0b:08:ac:b4:a8:d6:f6:29:e0:8e:aa:bd:dc:27:a6:bf:1b:90:
c5:79:2e:cd:da:35:a7:61:cf:12:83:3a:3d:d8:90:39:dd:c6:
96:47:52:5b:74:80:a6:69:4b:c6:40:cb:20:61:28:ea:93:69:
6a:0f:f1:6f:60:e0:b9:44:8b:47:30:8d:f5:13:22:be:17:0b:
cc:5b:df:1c:02:bd:fd:23:e5:3c:9e:c8:c9:68:57:cd:6a:46:
c9:4a:8a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:09 2024 by rpki-client on console-ams.rpki-client.org