Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/RNpRNW6kP09YuDWZFZc6jZJVvBg.roa
File: RNpRNW6kP09YuDWZFZc6jZJVvBg.roa (raw, json)
Hash identifier: l4ZwfcjKHmDGcpyDrQljuw3QYcWsx0p2yOLTqcDsofk=
Subject key identifier: 44:DA:51:35:6E:A4:3F:4F:58:B8:35:99:15:97:3A:8D:92:55:BC:18
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0190890DC1FB9CE6DF3A6ECA5BAD2AB9D8BD
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/RNpRNW6kP09YuDWZFZc6jZJVvBg.roa
Signing time: Sat 06 Jul 2024 17:18:18 +0000
ROA not before: Sat 06 Jul 2024 17:18:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 46.37.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 10:19:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:0d:c1:fb:9c:e6:df:3a:6e:ca:5b:ad:2a:b9:d8:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jul 6 17:18:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44da51356ea43f4f58b8359915973a8d9255bc18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:aa:44:37:09:32:e5:5a:e4:f9:c2:f0:22:
d7:57:1e:06:a3:68:33:99:6c:ff:c3:f5:3c:5f:f8:
06:c1:53:e7:8a:8a:37:5d:0f:9a:85:de:c2:76:b5:
40:04:8f:76:87:d3:eb:1a:5d:33:71:fd:9d:df:4b:
f5:1f:99:9a:9c:a1:c1:3f:98:ec:2e:89:94:25:b7:
b9:bf:b1:6e:93:bf:e5:ce:94:57:1c:dc:0f:cf:f9:
df:4a:c8:a6:55:a8:fc:0e:e8:9e:94:5a:2f:c8:07:
5d:59:68:9a:87:ce:8e:ac:0e:3e:88:9b:fb:da:4f:
83:f6:46:a8:6f:99:64:db:a1:a1:9e:0d:62:86:82:
8e:c0:a5:c1:78:11:e3:7e:71:ca:ca:f9:8e:5a:ae:
02:79:50:72:f5:23:44:2b:07:de:61:19:6e:78:44:
93:db:fa:6a:09:14:29:83:cb:25:57:60:9a:30:8f:
5a:a0:f5:f0:37:5c:89:3e:40:4a:99:82:cc:51:c1:
36:b2:57:37:55:14:8c:97:14:40:45:c4:20:49:f9:
6e:88:51:55:9f:4f:3b:6c:57:93:24:bf:e0:b4:cc:
79:fd:4d:e1:bf:a2:52:6e:b7:15:08:f7:5d:69:b4:
78:a6:fe:a3:44:fc:23:3f:7f:85:16:1b:23:f9:25:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DA:51:35:6E:A4:3F:4F:58:B8:35:99:15:97:3A:8D:92:55:BC:18
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/RNpRNW6kP09YuDWZFZc6jZJVvBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.122.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b7:5d:34:d9:aa:27:fe:d6:47:46:41:85:a6:81:df:47:89:
01:89:b2:89:83:ea:71:21:07:cf:2c:e5:88:61:99:a4:23:9b:
4f:d8:a0:04:a9:36:43:a3:fa:27:18:f0:94:56:a5:44:b5:e2:
6c:a1:0d:1e:37:bc:e6:5e:1f:f8:fe:61:de:6a:2e:e0:ee:05:
6d:f4:05:37:2e:fd:59:dd:39:e0:dc:e5:6b:e0:19:c1:0f:d7:
4f:a0:18:08:bb:fc:d1:11:16:b6:88:37:9c:7d:77:8c:57:f8:
bc:76:c8:f8:8e:7e:fc:17:49:29:11:13:9a:af:0b:8c:8f:b9:
96:d2:46:53:a3:db:91:4f:0e:63:cd:28:7c:db:a6:b3:80:15:
72:3f:9e:92:8b:d5:3a:48:24:a8:bd:51:03:49:af:4e:4c:ef:
de:47:a2:a6:6a:95:2d:56:f0:af:10:be:b9:0d:e9:bd:38:5c:
2d:9b:87:cd:0e:bb:6d:58:4e:33:d8:96:69:fa:7b:a5:50:26:
17:f3:70:77:6a:e7:48:2c:8f:1a:4e:8f:ae:92:27:f8:07:be:
cc:83:28:8d:02:cf:b1:31:3c:71:7d:ec:7a:05:78:d7:72:fd:
58:0c:59:5d:4b:08:cc:f2:61:47:39:59:86:8f:bc:d6:ce:14:
c6:ca:7b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 12:42:42 2024 by rpki-client on console-ams.rpki-client.org