Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/CKuBD4FgU6lSQKRGuIsip_745c0.roa
File: CKuBD4FgU6lSQKRGuIsip_745c0.roa (raw, json)
Hash identifier: g3cUGa4LDkIPYLE6ROJs8aCANB7CHaj3FXdc4wEtIVA=
Subject key identifier: 08:AB:81:0F:81:60:53:A9:52:40:A4:46:B8:8B:22:A7:FE:F8:E5:CD
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0AE8203E84FE2F53801BA2955E10E3
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/CKuBD4FgU6lSQKRGuIsip_745c0.roa
Signing time: Sun 01 Jan 2023 11:15:09 +0000
ROA not before: Sun 01 Jan 2023 11:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 46.37.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 22:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e8:20:3e:84:fe:2f:53:80:1b:a2:95:5e:10:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08ab810f816053a95240a446b88b22a7fef8e5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:da:8f:07:f5:a2:47:4e:52:8f:2a:4e:cf:6d:
08:1a:4e:20:1b:e8:30:33:49:14:bb:80:b0:56:35:
d8:ab:1e:89:fd:9e:b1:ae:42:f6:46:6b:d0:3b:da:
de:14:2e:0b:04:31:72:74:af:c0:ef:14:fd:b4:d4:
f8:8e:2e:09:55:67:e7:33:a1:8a:e2:99:84:bb:b5:
57:e6:d6:be:f3:cc:02:a4:e6:d6:e6:a2:88:89:71:
03:67:89:f5:49:ab:ea:2c:62:25:1f:4f:f8:d4:21:
5c:d6:b9:53:05:82:ed:44:7d:08:7e:6d:f2:32:3d:
01:c3:7a:bb:12:e8:55:f1:97:99:9a:1d:7b:91:b6:
21:3e:6f:db:db:e6:44:a7:d6:4d:43:aa:22:47:ca:
f2:10:ff:f6:9b:50:f2:9c:14:56:1d:cb:7b:c7:01:
e1:19:e3:c3:83:d9:66:74:75:94:6a:e8:83:e1:69:
fa:b1:1e:7b:8d:e9:31:09:09:0a:3f:3f:87:f6:cc:
e8:dd:cf:a7:c8:fe:c3:70:a5:bd:4f:22:a9:e4:1c:
49:ee:3c:55:73:f1:0c:1f:2a:1d:7c:17:6a:9c:2c:
3d:ba:fc:f3:3d:b3:d9:f2:d6:d5:8b:88:27:65:10:
de:6d:e8:06:50:e3:76:8b:7a:41:c8:2e:df:f0:e4:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AB:81:0F:81:60:53:A9:52:40:A4:46:B8:8B:22:A7:FE:F8:E5:CD
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/CKuBD4FgU6lSQKRGuIsip_745c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.115.0/24
Signature Algorithm: sha256WithRSAEncryption
22:d3:0c:ec:81:8f:bd:cb:17:a1:5e:8c:35:5f:95:77:f0:07:
ae:ff:7d:0e:fc:14:0b:02:5f:e2:eb:8e:a3:33:85:dc:53:8f:
17:71:ab:30:37:d5:99:96:5e:ae:ea:56:90:21:e5:83:27:ad:
1f:82:24:aa:d3:8c:0f:e2:b3:6d:1d:1b:2d:cc:94:fb:aa:15:
7c:1b:3d:29:06:eb:75:03:ae:9c:62:c5:ca:cc:2a:29:79:37:
30:72:d3:bd:a9:fb:62:c9:f3:46:bb:28:a9:b8:b7:cc:01:15:
02:15:3d:be:62:96:a1:bf:2e:38:bc:be:02:0a:72:46:7f:30:
8a:f4:00:95:77:35:08:c2:e8:56:41:d9:62:52:e4:bb:3a:18:
21:f7:57:46:0a:f9:89:76:27:c3:7a:64:61:23:5c:54:5d:72:
5a:3c:8a:89:68:7d:c9:a0:c2:5b:33:5f:35:8d:6a:a2:70:c5:
10:dd:15:7a:c4:70:0d:c5:68:66:fd:12:79:89:33:02:2a:1e:
f3:af:59:da:5b:04:b6:35:1f:6f:1d:17:30:56:46:21:85:26:
76:37:13:aa:5a:40:af:6e:e6:d9:9d:a2:99:26:a1:30:a9:aa:
9f:bb:ba:4b:40:3d:ea:5c:6f:23:3e:df:a2:2c:2c:7b:42:b8:
fa:ed:c3:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtCuggPoT+L1OAG6KVXhDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjMwMTAxMTExNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGFiODEwZjgxNjA1M2E5NTI0MGE0NDZiODhiMjJhN2ZlZjhlNWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidqPB/WiR05SjypOz20IGk4gG+gw
M0kUu4CwVjXYqx6J/Z6xrkL2RmvQO9reFC4LBDFydK/A7xT9tNT4ji4JVWfnM6GK
4pmEu7VX5ta+88wCpObW5qKIiXEDZ4n1SavqLGIlH0/41CFc1rlTBYLtRH0Ifm3y
Mj0Bw3q7EuhV8ZeZmh17kbYhPm/b2+ZEp9ZNQ6oiR8ryEP/2m1DynBRWHct7xwHh
GePDg9lmdHWUauiD4Wn6sR57jekxCQkKPz+H9szo3c+nyP7DcKW9TyKp5BxJ7jxV
c/EMHyodfBdqnCw9uvzzPbPZ8tbVi4gnZRDebegGUON2i3pByC7f8ORQwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAirgQ+BYFOpUkCkRriLIqf++OXNMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvQ0t1QkQ0RmdVNmxTUUtSR3VJc2lwXzc0NWMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALiVzMA0G
CSqGSIb3DQEBCwUAA4IBAQAi0wzsgY+9yxehXow1X5V38Aeu/30O/BQLAl/i646j
M4XcU48XcaswN9WZll6u6laQIeWDJ60fgiSq04wP4rNtHRstzJT7qhV8Gz0pBut1
A66cYsXKzCopeTcwctO9qftiyfNGuyipuLfMARUCFT2+Ypahvy44vL4CCnJGfzCK
9ACVdzUIwuhWQdliUuS7Ohgh91dGCvmJdifDemRhI1xUXXJaPIqJaH3JoMJbM181
jWqicMUQ3RV6xHANxWhm/RJ5iTMCKh7zr1naWwS2NR9vHRcwVkYhhSZ2NxOqWkCv
bubZnaKZJqEwqaqfu7pLQD3qXG8jPt+iLCx7Qrj67cMH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org