Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/H68lafOU1om8LEfIAsoTpiJfZNw.roa
File: H68lafOU1om8LEfIAsoTpiJfZNw.roa (raw, json)
Hash identifier: +eGjh+CfoVqX5C4FKySRYswbYiVt5I/EniWG+ANDqKw=
Subject key identifier: 1F:AF:25:69:F3:94:D6:89:BC:2C:47:C8:02:CA:13:A6:22:5F:64:DC
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 018AB42A7A2C562D068355A7E1B3685E61E3
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/H68lafOU1om8LEfIAsoTpiJfZNw.roa
Signing time: Wed 20 Sep 2023 19:56:37 +0000
ROA not before: Wed 20 Sep 2023 19:56:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 46.37.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b4:2a:7a:2c:56:2d:06:83:55:a7:e1:b3:68:5e:61:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Sep 20 19:56:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1faf2569f394d689bc2c47c802ca13a6225f64dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cf:00:e8:21:29:8b:7d:9a:ae:c8:f3:1c:0f:
b6:f0:3f:26:c2:e7:e4:0b:22:95:f8:cf:27:37:ed:
b9:20:ed:02:a2:69:16:04:7f:01:d6:61:d0:7a:a3:
1c:cb:e0:0c:3d:c6:34:a6:40:19:04:49:6d:1b:c3:
d3:b5:5b:6e:43:4c:8d:4d:f1:3e:0e:3d:66:c9:1d:
2f:31:d0:1c:7c:51:b6:aa:90:6f:ce:1f:8a:15:94:
eb:5b:99:41:5f:d6:82:3b:0e:74:a5:8a:38:a7:a0:
23:e7:95:f5:09:fb:1f:0d:97:9b:dc:36:b9:70:9b:
7c:ff:c5:85:06:6a:d7:c1:06:3c:42:32:aa:0d:62:
42:14:b5:02:1a:7d:5b:12:59:d6:f0:2b:c9:5f:bf:
84:28:9f:ca:0f:78:ce:ea:fd:23:3d:4a:0c:42:60:
b6:85:0b:f5:03:35:c1:94:32:3a:08:12:68:a7:55:
c1:85:43:c3:70:09:06:a6:49:bf:89:b5:17:19:07:
da:20:9d:39:0c:66:a8:a4:d5:7d:d0:b9:a2:19:2a:
ba:29:67:62:a7:0d:7d:ff:9d:f2:e2:80:2e:5f:33:
5e:85:f1:fe:71:90:5f:fb:e9:01:b2:79:58:c4:d6:
3e:bd:01:4e:4c:0b:f7:19:bc:2f:c0:eb:7b:25:67:
be:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AF:25:69:F3:94:D6:89:BC:2C:47:C8:02:CA:13:A6:22:5F:64:DC
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/H68lafOU1om8LEfIAsoTpiJfZNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.96.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:d4:80:38:9a:e5:6d:3c:25:41:d4:bd:d7:2d:f4:da:89:f8:
7c:4b:8b:4b:fd:a1:00:99:f3:b9:8b:11:fd:a4:67:6c:72:dd:
31:a8:1a:bb:02:e3:0b:13:6d:c7:d0:55:c3:fd:77:4b:03:4e:
e3:b6:83:4c:13:99:88:d1:36:7c:48:36:ef:8e:93:41:e9:36:
22:a2:26:bd:fc:f4:ee:1c:e5:3b:64:a3:85:de:ab:94:74:58:
6d:27:aa:27:ba:dd:5b:0b:bc:09:a4:61:61:4a:52:d6:d8:4b:
c2:fb:a4:71:7a:7b:70:d2:46:bb:34:5a:c2:b8:dd:ae:cb:3b:
c0:4a:f1:4f:c3:75:f4:40:30:89:98:64:8b:79:7f:af:85:ad:
9d:86:e2:83:55:2c:73:74:d2:d2:10:16:0e:e6:26:ad:8c:aa:
f5:26:99:51:e6:a2:4f:eb:5a:e9:63:bd:42:9a:fa:72:de:f2:
37:38:e5:38:6e:5c:d2:09:3d:77:7c:64:83:ee:9e:5c:e2:7a:
c4:99:46:76:7a:1e:63:82:88:37:8a:ab:84:89:7f:f2:f0:7e:
d5:b8:cc:ec:6c:0c:ad:6f:56:9d:84:6d:ec:7f:ff:a4:d7:cf:
f4:39:b4:a2:97:5a:1c:6f:51:46:d1:2e:3e:3c:c1:5c:15:7f:
36:59:21:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:04 2024 by rpki-client on console-ams.rpki-client.org