Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/xykJmJBCRTNXZLVP7TCT-iUqnM4.roa
File: xykJmJBCRTNXZLVP7TCT-iUqnM4.roa (raw, json)
Hash identifier: jK81gJZhwmW4v3N/ZsboUevxHXi62cRaVkm0hZii48A=
Subject key identifier: C7:29:09:98:90:42:45:33:57:64:B5:4F:ED:30:93:FA:25:2A:9C:CE
Certificate issuer: /CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Certificate serial: 01922293417CD3EF23EDEA0C32FE8789BD17
Authority key identifier: 6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/xykJmJBCRTNXZLVP7TCT-iUqnM4.roa
Signing time: Tue 24 Sep 2024 05:48:48 +0000
ROA not before: Tue 24 Sep 2024 05:48:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 46.233.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 06:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:93:41:7c:d3:ef:23:ed:ea:0c:32:fe:87:89:bd:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fc50d0d42067b76ab1a2e8e533ff849b65d56f5
Validity
Not Before: Sep 24 05:48:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7290998904245335764b54fed3093fa252a9cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:9e:4a:99:e5:8c:cd:aa:6e:11:4d:68:5e:
4d:d5:84:62:3b:f1:f6:ee:4b:a9:09:c1:15:31:4e:
5c:17:90:b9:a7:3c:c2:58:fe:3b:f8:92:ee:1d:ac:
37:e6:54:23:c7:bc:19:9a:e0:31:e9:fb:83:7a:e2:
d9:e6:7b:bd:73:9d:b8:6a:4d:28:00:4a:22:2f:34:
fe:51:0f:b3:62:b1:65:82:fe:12:64:12:50:5b:ee:
e0:5c:d2:f9:40:57:e6:95:11:57:da:f6:fd:1e:bf:
32:f9:2f:39:71:19:b3:4b:41:3f:1b:91:e1:72:34:
e7:24:6a:57:5d:bc:bf:a3:77:39:44:f5:7d:87:04:
08:23:27:e1:af:bd:ae:de:c3:bb:57:35:ce:ab:69:
39:7a:40:e9:dd:08:0e:e9:0e:de:50:89:31:26:58:
96:30:a2:cc:aa:69:8e:76:7c:f8:14:d8:db:3d:c8:
b9:5d:ce:1c:38:02:e1:83:e8:1e:b8:c5:91:e8:d6:
39:62:9f:98:fd:d1:77:66:8e:c8:c2:89:e1:1b:20:
1e:07:2f:2e:91:b5:14:f2:b8:d6:32:36:5f:d1:18:
2f:39:63:0c:68:e9:a1:ef:29:9b:5d:54:fc:7d:55:
b7:c7:20:66:af:a7:a3:f9:d6:a7:3a:cf:95:63:4b:
7b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:29:09:98:90:42:45:33:57:64:B5:4F:ED:30:93:FA:25:2A:9C:CE
X509v3 Authority Key Identifier:
keyid:6F:C5:0D:0D:42:06:7B:76:AB:1A:2E:8E:53:3F:F8:49:B6:5D:56:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8UNDUIGe3arGi6OUz_4SbZdVvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/xykJmJBCRTNXZLVP7TCT-iUqnM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f2bd6c-4843-4ead-aa09-3c16ff841ab2/1/b8UNDUIGe3arGi6OUz_4SbZdVvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.233.38.0/24
Signature Algorithm: sha256WithRSAEncryption
14:a9:09:74:d2:b1:f0:6d:48:4a:2e:60:e3:1e:3d:c7:f8:3f:
60:93:85:11:9f:05:2e:e7:d4:85:7c:10:a7:43:be:a9:45:78:
23:13:dc:38:1a:b4:91:73:5c:9e:d7:52:d2:0f:8b:d9:11:37:
fc:1d:20:42:ba:c9:12:01:10:3e:d3:c3:00:68:48:ea:1e:b5:
49:4f:eb:67:5a:5e:11:c7:a7:2a:21:5c:e1:10:d0:1f:5e:cc:
7a:93:38:9e:69:1d:5f:29:4b:e2:df:5a:56:42:69:64:26:6b:
63:bf:02:31:06:b3:48:9e:91:0d:d9:8d:2a:75:0c:6f:89:ce:
41:b3:9d:9e:0b:39:7b:a1:a8:f9:0a:37:52:fd:92:f5:21:09:
03:4c:8c:1d:3f:d0:51:4d:1b:34:28:68:15:21:68:ab:80:a9:
66:3d:c6:c7:21:18:2a:4e:fe:00:ec:5c:18:de:ad:ae:44:11:
b8:6c:eb:a4:f9:71:e3:61:26:33:b4:93:18:51:85:43:e3:11:
62:0c:b6:79:90:b4:9a:bb:46:6e:ed:5a:5e:fa:72:bd:da:15:
40:18:40:e2:f1:c0:72:b6:63:e7:eb:87:60:d8:27:de:91:96:
0e:69:8f:55:c5:48:fd:52:3d:d9:20:42:ef:43:86:f8:a5:0d:
2d:e9:5e:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIik0F80+8j7eoMMv6Hib0XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmYzUwZDBkNDIwNjdiNzZhYjFhMmU4ZTUzM2ZmODQ5YjY1
ZDU2ZjUwHhcNMjQwOTI0MDU0ODQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzI5MDk5ODkwNDI0NTMzNTc2NGI1NGZlZDMwOTNmYTI1MmE5Y2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrmeSpnljM2qbhFNaF5N1YRiO/H2
7kupCcEVMU5cF5C5pzzCWP47+JLuHaw35lQjx7wZmuAx6fuDeuLZ5nu9c524ak0o
AEoiLzT+UQ+zYrFlgv4SZBJQW+7gXNL5QFfmlRFX2vb9Hr8y+S85cRmzS0E/G5Hh
cjTnJGpXXby/o3c5RPV9hwQIIyfhr72u3sO7VzXOq2k5ekDp3QgO6Q7eUIkxJliW
MKLMqmmOdnz4FNjbPci5Xc4cOALhg+geuMWR6NY5Yp+Y/dF3Zo7IwonhGyAeBy8u
kbUU8rjWMjZf0RgvOWMMaOmh7ymbXVT8fVW3xyBmr6ej+danOs+VY0t7awIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMcpCZiQQkUzV2S1T+0wk/olKpzOMB8GA1UdIwQY
MBaAFG/FDQ1CBnt2qxoujlM/+Em2XVb1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjhVTkRVSUdlM2FyR2k2T1V6XzRTYlpkVnZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9mMmJkNmMtNDg0My00ZWFkLWFhMDkt
M2MxNmZmODQxYWIyLzEveHlrSm1KQkNSVE5YWkxWUDdUQ1QtaVVxbk00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS9mMmJkNmMtNDg0My00ZWFkLWFhMDktM2MxNmZmODQxYWIy
LzEvYjhVTkRVSUdlM2FyR2k2T1V6XzRTYlpkVnZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALukmMA0G
CSqGSIb3DQEBCwUAA4IBAQAUqQl00rHwbUhKLmDjHj3H+D9gk4URnwUu59SFfBCn
Q76pRXgjE9w4GrSRc1ye11LSD4vZETf8HSBCuskSARA+08MAaEjqHrVJT+tnWl4R
x6cqIVzhENAfXsx6kzieaR1fKUvi31pWQmlkJmtjvwIxBrNInpEN2Y0qdQxvic5B
s52eCzl7oaj5CjdS/ZL1IQkDTIwdP9BRTRs0KGgVIWirgKlmPcbHIRgqTv4A7FwY
3q2uRBG4bOuk+XHjYSYztJMYUYVD4xFiDLZ5kLSau0Zu7Vpe+nK92hVAGEDi8cBy
tmPn64dg2CfekZYOaY9VxUj9Uj3ZIELvQ4b4pQ0t6V5F
-----END CERTIFICATE-----
Generated at Fri Sep 27 08:13:25 2024 by rpki-client on console-fra.rpki-client.org