Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/qCeWIxp5VFDTy-FY13kF5CUKV7E.roa
File: qCeWIxp5VFDTy-FY13kF5CUKV7E.roa (raw, json)
Hash identifier: 9Fq2ZsQWoDKK2Enl+bxYpUogF9o7UYTNgNmw+llH94Y=
Subject key identifier: A8:27:96:23:1A:79:54:50:D3:CB:E1:58:D7:79:05:E4:25:0A:57:B1
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 018571D7C9421847FE30B3A9098923808746
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/qCeWIxp5VFDTy-FY13kF5CUKV7E.roa
Signing time: Mon 02 Jan 2023 09:37:25 +0000
ROA not before: Mon 02 Jan 2023 09:37:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42431
IP address blocks: 46.233.13.0/24 maxlen: 24
46.233.12.0/24 maxlen: 24
46.233.16.0/24 maxlen: 24
46.233.16.0/21 maxlen: 21
46.233.15.0/24 maxlen: 24
46.233.14.0/24 maxlen: 24
46.233.17.0/24 maxlen: 24
46.233.23.0/24 maxlen: 24
46.233.22.0/24 maxlen: 24
46.233.21.0/24 maxlen: 24
46.233.24.0/24 maxlen: 24
46.233.24.0/23 maxlen: 23
46.233.20.0/24 maxlen: 24
46.233.19.0/24 maxlen: 24
46.233.18.0/24 maxlen: 24
46.233.26.0/24 maxlen: 24
46.233.25.0/24 maxlen: 24
46.233.30.0/24 maxlen: 24
46.233.29.0/24 maxlen: 24
46.233.28.0/22 maxlen: 22
46.233.28.0/24 maxlen: 24
46.233.27.0/24 maxlen: 24
46.233.31.0/24 maxlen: 24
46.233.32.0/22 maxlen: 22
46.233.32.0/21 maxlen: 21
46.233.36.0/23 maxlen: 23
46.233.2.0/24 maxlen: 24
46.233.1.0/24 maxlen: 24
46.233.0.0/19 maxlen: 20
46.233.0.0/24 maxlen: 24
46.233.0.0/21 maxlen: 21
46.233.4.0/24 maxlen: 24
46.233.3.0/24 maxlen: 24
46.233.6.0/24 maxlen: 24
46.233.5.0/24 maxlen: 24
46.233.9.0/24 maxlen: 24
46.233.8.0/24 maxlen: 24
46.233.7.0/24 maxlen: 24
46.233.11.0/24 maxlen: 24
46.233.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Feb 2023 20:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:c9:42:18:47:fe:30:b3:a9:09:89:23:80:87:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Jan 2 09:37:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a82796231a795450d3cbe158d77905e4250a57b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6c:db:53:89:03:27:9e:8f:28:3d:39:cd:0b:
32:77:93:96:b0:6c:27:74:1e:d1:23:04:bb:74:0e:
f0:d6:94:82:f3:6d:b4:98:26:f7:32:75:ab:83:73:
c8:ec:28:24:8c:e8:3a:00:85:40:41:08:af:11:0d:
0d:c4:7a:47:f5:7e:4b:67:15:fe:f8:e9:35:a8:78:
00:e0:5b:7f:99:7c:93:ad:5d:b8:1d:59:5b:67:c8:
c1:02:c8:ee:de:54:d3:f3:b9:6a:38:7e:57:07:c8:
cd:e4:8c:80:3c:0e:46:92:0e:c4:e5:33:f5:17:de:
9f:17:b6:a6:14:64:08:e7:12:7a:30:4c:45:ea:f4:
cf:6d:6d:ba:8a:3c:21:31:a6:86:da:6b:a6:98:32:
71:4e:49:07:25:fa:d8:49:ac:4d:ab:e5:62:79:84:
57:71:a0:f6:f3:55:79:0a:3d:a0:08:69:6b:30:1a:
ba:27:d0:42:7f:81:2a:ed:e6:5b:46:af:62:c2:51:
40:c5:59:5b:1c:da:b1:f7:a3:23:9b:64:d0:80:b5:
fa:93:e8:0b:4e:35:d6:c4:ee:21:4f:ac:06:d2:50:
39:e5:e2:c9:58:6e:f1:8b:15:4a:98:3f:78:0c:13:
9d:3c:72:1c:c1:95:f7:56:b4:08:5a:60:ba:ed:3f:
d8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:27:96:23:1A:79:54:50:D3:CB:E1:58:D7:79:05:E4:25:0A:57:B1
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/qCeWIxp5VFDTy-FY13kF5CUKV7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.0.0-46.233.39.255
Signature Algorithm: sha256WithRSAEncryption
b3:6a:37:c2:a2:a2:30:5f:18:51:93:5e:c4:be:fb:5b:f9:ff:
52:7e:56:5c:46:e0:2c:7e:aa:3c:15:f8:f8:41:bd:8d:a1:f6:
89:07:04:20:9d:37:77:50:aa:1c:e7:f6:d9:2b:e1:10:8a:76:
43:5d:7f:ce:0e:da:29:c7:e1:d4:41:aa:16:f5:60:c6:9d:f6:
fa:61:50:8e:f8:78:b6:c8:5a:5b:26:20:d8:82:5e:5e:9a:db:
32:21:73:e5:0e:71:81:2c:0c:9d:65:1e:8d:1b:48:e8:ab:91:
19:91:a0:2f:92:97:2b:45:07:63:3e:07:cf:a7:72:72:db:f0:
cb:65:85:01:52:5d:7e:50:68:cf:e0:f9:17:67:02:cf:8a:3c:
67:a4:83:94:f2:8e:50:b9:10:0d:f8:95:a2:bd:62:4e:65:22:
2b:62:11:57:b6:e6:a3:b6:5b:62:c7:29:29:a0:11:a3:9a:a4:
ed:92:8b:82:bc:4f:b5:53:15:4d:a4:bc:ba:89:8e:b8:c3:38:
9d:4c:c8:45:f8:af:10:b6:09:cb:dc:8a:49:af:8e:48:75:9d:
b3:10:14:66:fc:ca:4e:e4:f8:70:29:1a:77:40:0c:70:c8:c5:
bb:d6:33:d6:20:59:01:ac:44:57:22:b6:db:be:93:a7:14:b6:
42:07:01:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:09 2024 by rpki-client on console-ams.rpki-client.org