Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/poC3inmAQH75CQ34yzPlym-aeOM.roa
File: poC3inmAQH75CQ34yzPlym-aeOM.roa (raw, json)
Hash identifier: KnAIQIBKUJHsn6vWsMVewlP4c9UJ+yGWVMzGa4OLquE=
Subject key identifier: A6:80:B7:8A:79:80:40:7E:F9:09:0D:F8:CB:33:E5:CA:6F:9A:78:E3
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 018571D7C8DD3DD264F183FC8B26B1EE153D
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/poC3inmAQH75CQ34yzPlym-aeOM.roa
Signing time: Mon 02 Jan 2023 09:37:25 +0000
ROA not before: Mon 02 Jan 2023 09:37:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42410
IP address blocks: 46.233.48.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:c8:dd:3d:d2:64:f1:83:fc:8b:26:b1:ee:15:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 2 09:37:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a680b78a7980407ef9090df8cb33e5ca6f9a78e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:14:11:4d:12:c2:eb:ba:f9:00:a6:26:d3:45:
e1:52:ff:5d:9c:8f:0f:78:a4:0c:38:b6:f7:d2:ef:
5c:a6:af:1c:c8:3f:2d:a2:d9:f7:6d:1f:39:35:72:
b7:79:35:6a:4b:ab:f6:a5:88:84:12:ab:60:ff:84:
71:98:8a:20:b6:3e:4e:5a:c2:2f:e3:83:7a:b6:21:
77:0a:ee:fc:9c:72:6b:40:0c:99:22:e3:37:5a:8d:
6b:9c:85:c7:81:bb:65:9a:e8:c9:55:3d:3f:76:c8:
e4:56:c1:b3:bd:32:dc:e0:d7:75:8e:d2:b7:ec:d2:
ea:cf:20:44:8b:f3:06:46:3b:95:f9:ed:9e:35:52:
dc:4f:be:60:37:a3:b2:6c:24:55:31:ee:6b:5e:4b:
6f:d4:fd:7d:84:8b:db:ef:19:c2:f3:d5:8d:d8:e8:
75:1c:cd:1f:d5:74:0e:59:b1:cf:ed:72:a6:aa:67:
26:d0:99:50:40:37:e5:fc:db:87:3c:d8:f7:4c:79:
b2:6a:1b:83:d2:d0:ba:6b:24:6e:ee:d0:32:89:07:
a8:fd:b6:2b:36:92:d4:b4:6b:6a:b1:97:ef:f8:5d:
b1:ce:67:3d:24:f6:83:06:48:27:b8:73:41:c3:98:
59:b1:0b:7d:dc:f6:28:17:3c:04:06:97:50:37:6c:
50:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:80:B7:8A:79:80:40:7E:F9:09:0D:F8:CB:33:E5:CA:6F:9A:78:E3
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/poC3inmAQH75CQ34yzPlym-aeOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.48.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:1d:61:b1:46:74:55:bf:90:83:5e:bb:83:b7:ca:4c:2a:e4:
4e:88:91:30:5e:10:ae:20:62:14:31:3a:bd:58:eb:c4:bd:0d:
62:5e:97:d2:26:0a:a8:8d:b6:8e:7b:00:8a:0e:f7:46:01:9f:
40:28:0c:1e:70:b0:e1:32:ce:14:97:58:c5:dc:db:6b:78:9a:
91:9d:39:48:78:14:4c:bc:cb:39:19:c6:46:56:50:84:3d:ea:
d6:d3:36:99:9f:27:68:ab:8b:b1:50:66:64:cf:be:0f:ff:6f:
6a:03:4a:b4:74:07:18:82:eb:b1:f6:37:c8:0d:16:82:92:d3:
09:f3:24:85:8d:e7:5d:71:22:d6:d2:b1:64:fb:f3:93:79:26:
17:1f:cd:18:81:d7:36:5f:aa:e6:83:a6:d8:5f:52:11:5c:37:
4a:17:f7:4b:2e:0a:6a:b5:27:eb:3a:bf:96:70:ac:cc:33:5f:
cd:d6:ce:3e:05:88:76:22:5a:91:77:7f:ce:b6:8c:e5:d0:16:
f2:26:11:3c:86:5f:6a:16:f5:e0:e1:0b:73:e0:96:70:a4:43:
64:f8:4e:47:6b:31:15:ed:f4:e7:10:d4:58:de:fe:e2:b4:94:
ac:e1:0b:2a:1d:a1:82:64:24:e4:4c:71:67:78:39:ef:d2:3c:
3b:25:e4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:09 2024 by rpki-client on console-ams.rpki-client.org