Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/P6pEH2ojOdOu1PH4yDBs7BOyW2o.roa
File: P6pEH2ojOdOu1PH4yDBs7BOyW2o.roa (raw, json)
Hash identifier: Mf473EDmaLp99US9ZbN+p73k+B8KexBxyBpFs5IgE7k=
Subject key identifier: 3F:AA:44:1F:6A:23:39:D3:AE:D4:F1:F8:C8:30:6C:EC:13:B2:5B:6A
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 018D3067E62AD657AC10E861ED9EDB65D811
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/P6pEH2ojOdOu1PH4yDBs7BOyW2o.roa
Signing time: Mon 22 Jan 2024 09:02:11 +0000
ROA not before: Mon 22 Jan 2024 09:02:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201575
IP address blocks: 46.37.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 13:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:67:e6:2a:d6:57:ac:10:e8:61:ed:9e:db:65:d8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 22 09:02:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3faa441f6a2339d3aed4f1f8c8306cec13b25b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7c:49:41:19:99:26:03:8c:4f:20:84:b1:1c:
c6:e4:cd:e3:a5:b2:41:a6:a6:bd:f4:2f:3c:74:be:
e3:d8:87:77:5a:9b:f3:7a:2b:14:3e:e4:db:6b:73:
52:f1:65:ce:4a:3e:35:17:c0:db:9d:d9:52:ae:ab:
48:df:15:77:3f:e4:a9:95:21:5f:d6:78:06:b2:99:
ef:12:1c:7c:0d:2e:dd:06:cc:51:1f:cf:cf:a2:ef:
f3:93:42:b9:8a:a3:36:e1:8a:d8:99:48:e6:9b:1a:
ab:83:49:29:b8:3d:88:67:04:10:83:bc:27:e2:87:
32:d8:5c:77:61:22:54:7f:40:88:0f:a5:57:f3:a0:
79:a2:11:ef:59:a4:fd:19:92:c9:b4:47:28:31:d0:
98:a1:2e:58:84:ba:b9:55:50:9f:ba:49:1f:da:b8:
ce:38:51:a3:00:aa:e7:03:f2:04:d5:3c:ad:a7:d1:
f7:17:d0:1a:e7:9e:1c:5f:82:b2:29:d5:4c:a8:66:
3a:d9:48:37:58:42:8d:3f:0a:f1:4d:f9:20:ef:6e:
6d:e3:16:61:bb:e9:46:0e:c3:89:cf:21:8c:e3:55:
a9:d9:38:54:6a:c1:4e:dc:46:fc:bf:24:ba:8b:6d:
d3:6a:55:c5:77:ab:5f:58:6a:e1:c2:fc:b5:57:e2:
b1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AA:44:1F:6A:23:39:D3:AE:D4:F1:F8:C8:30:6C:EC:13:B2:5B:6A
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/P6pEH2ojOdOu1PH4yDBs7BOyW2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.110.0/24
Signature Algorithm: sha256WithRSAEncryption
21:87:fe:a0:48:07:f6:b8:15:da:9b:e6:9f:42:79:7a:63:a9:
31:b3:bf:2a:04:44:55:78:28:9e:32:63:ad:b7:0c:6f:38:13:
fd:8f:48:8f:74:c2:59:1e:1f:2a:b1:35:83:3d:10:74:f9:69:
88:1b:ae:d1:fb:96:9e:52:3c:25:dd:8f:e7:17:03:1b:a9:c3:
0f:94:c4:2b:b3:9b:77:da:b0:64:08:13:ca:e5:50:04:0d:8f:
db:f8:73:6b:d5:06:8d:12:90:4a:2f:db:8e:de:a7:ce:b7:30:
95:41:ec:64:88:b2:44:e8:72:35:b7:b1:0f:31:e3:83:4c:0f:
a9:0f:30:8a:9e:95:02:b9:18:72:7b:96:bf:71:ae:f6:ab:76:
2d:2b:43:2a:56:f2:2a:7c:29:50:9d:86:53:93:80:20:87:54:
5a:a1:21:0c:32:92:9d:a0:ea:da:71:40:d5:09:a2:61:72:aa:
3d:0c:77:f3:fb:4b:dd:4d:4d:cd:58:ad:39:bb:9d:61:35:48:
2a:b6:1e:0b:73:4a:32:d6:f1:ac:5f:35:7b:89:af:48:6f:32:
0b:91:12:8c:d4:1a:e2:db:20:31:18:6b:85:cf:3c:31:5b:8b:
22:92:e5:48:73:f8:34:0b:70:d8:dc:9a:04:ef:4c:20:1a:0e:
27:b4:8a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org