Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/P4aVBFRg3RSB9fqnxLzBxyaZcC8.roa
File: P4aVBFRg3RSB9fqnxLzBxyaZcC8.roa (raw, json)
Hash identifier: MVjzzNh+7Sykepyt+FLzefjzA/5YsiIVFeCTeH522B4=
Subject key identifier: 3F:86:95:04:54:60:DD:14:81:F5:FA:A7:C4:BC:C1:C7:26:99:70:2F
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 018CC348BD6E696DE94131234E08EE45D3E2
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/P4aVBFRg3RSB9fqnxLzBxyaZcC8.roa
Signing time: Mon 01 Jan 2024 04:29:33 +0000
ROA not before: Mon 01 Jan 2024 04:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203377
IP address blocks: 46.37.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 13:41:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:bd:6e:69:6d:e9:41:31:23:4e:08:ee:45:d3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 04:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f8695045460dd1481f5faa7c4bcc1c72699702f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:24:74:2b:45:a0:a1:8b:aa:2f:b5:01:59:e7:
cf:ef:ad:87:b4:30:94:34:e1:ff:50:92:5b:53:c5:
f2:10:06:46:64:d7:0c:43:5c:db:2c:11:95:14:02:
fe:c8:74:93:4a:36:3c:ac:7e:68:83:ca:b0:bc:99:
5d:aa:50:5b:d0:f5:24:7f:48:5c:ca:c9:5a:89:18:
15:f8:d1:57:4e:6b:07:3c:aa:39:4f:02:c9:65:e1:
90:75:27:52:d8:7c:2f:25:c8:8c:6f:ab:f1:41:aa:
14:83:5f:2c:bc:af:54:89:bf:f5:f3:f6:ab:78:74:
3b:52:fd:fd:0e:25:cb:c2:55:8f:97:c8:25:b2:db:
2b:d1:3a:03:dd:ee:8b:a8:22:67:f2:68:fd:9e:3c:
f2:c5:a9:39:93:e1:ee:df:78:77:0f:b5:06:f5:87:
dc:26:83:a1:90:d0:54:96:6c:4d:c3:3e:cc:91:c6:
2a:f7:5a:c5:d8:14:09:ba:74:d9:e6:c5:5b:88:48:
48:46:02:13:e2:33:e2:bb:a5:e9:cb:6a:ab:7b:c7:
ab:15:f5:8b:05:42:f6:3e:59:13:c0:2e:40:c2:0b:
de:ba:51:79:07:27:49:3d:8e:fc:f8:51:6d:fa:40:
b7:f3:65:b9:72:c7:84:a4:9e:e1:33:69:0a:01:ae:
9e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:86:95:04:54:60:DD:14:81:F5:FA:A7:C4:BC:C1:C7:26:99:70:2F
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/P4aVBFRg3RSB9fqnxLzBxyaZcC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.123.0/24
Signature Algorithm: sha256WithRSAEncryption
78:79:41:40:e3:a7:1e:49:bc:46:bb:8d:7e:d8:b5:36:7f:23:
4d:d2:78:51:be:4e:fa:14:52:6f:d7:e1:30:40:05:71:9d:72:
d9:f4:8d:2d:78:db:54:1b:e3:19:b6:1f:0a:2d:9a:6d:9d:67:
9d:05:13:d9:b1:df:96:a7:23:7a:d8:bd:7a:ea:d5:be:35:7f:
42:e3:81:c4:ec:22:15:dc:7f:2a:62:fe:62:f1:83:ab:ac:60:
7b:68:d6:84:4b:23:b5:89:b0:6c:dd:a1:e9:84:74:78:6d:97:
e1:90:ea:7e:49:33:20:a8:4b:06:9b:17:12:78:0a:0f:a4:1b:
41:7a:8a:3b:9d:66:47:08:c2:39:61:98:53:76:48:c1:a8:41:
11:15:dd:ae:75:8a:f5:1f:92:05:19:d6:93:a6:fc:7f:d5:89:
82:f0:31:1f:0f:33:83:16:51:bc:0a:6f:d1:04:41:38:9a:db:
2f:de:43:12:5d:67:d4:e7:42:8f:3b:7b:04:2a:0d:c3:72:a6:
63:7e:a5:8b:71:ca:2f:a6:c7:b7:ce:fc:26:7c:a4:52:6f:3a:
8f:98:c2:f8:bb:23:e3:2b:b5:65:1c:21:34:91:15:d3:d6:b3:
3a:7c:79:49:00:2f:fd:e1:ab:69:23:c3:c2:30:0e:4a:b5:d6:
d8:d4:f5:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 17:22:43 2024 by rpki-client on console-ams.rpki-client.org