Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UwfQ5emhGsC2YQ0gPjuEZw7KRCM.roa
File: UwfQ5emhGsC2YQ0gPjuEZw7KRCM.roa (raw, json)
Hash identifier: ygyV8fMa1doBHlmEhQ+WVsduDaxSE8ZgZBP9smNNMR0=
Subject key identifier: 53:07:D0:E5:E9:A1:1A:C0:B6:61:0D:20:3E:3B:84:67:0E:CA:44:23
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01919768067A4D348A82DD757E0968652139
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UwfQ5emhGsC2YQ0gPjuEZw7KRCM.roa
Signing time: Wed 28 Aug 2024 05:14:22 +0000
ROA not before: Wed 28 Aug 2024 05:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 46.37.98.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
46.37.118.0/24 maxlen: 24
46.37.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 16:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:97:68:06:7a:4d:34:8a:82:dd:75:7e:09:68:65:21:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Aug 28 05:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5307d0e5e9a11ac0b6610d203e3b84670eca4423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:99:40:0b:30:d6:87:ac:c3:70:be:eb:59:4d:
2b:a1:74:a5:48:25:29:ea:aa:0a:bf:4b:9f:d5:ad:
0b:0d:1f:52:ce:29:6d:98:b9:45:ea:0e:64:86:e7:
6d:1c:2b:d6:5e:df:d7:ac:e0:e9:55:ab:b4:aa:48:
00:68:15:29:37:95:3f:38:44:00:5f:a0:20:35:a1:
0f:a5:a0:a7:64:9b:42:54:38:94:95:05:b5:8e:e1:
ce:3c:fc:df:77:29:51:96:77:9f:97:76:0b:97:19:
2e:1f:b1:1a:8e:c9:b5:6b:a7:7a:28:77:38:4e:e6:
69:c4:6e:e1:74:f4:73:9b:ac:20:22:60:96:90:50:
25:37:1a:1c:e7:e3:c6:8b:fb:3b:db:98:3c:75:07:
ca:67:b5:62:6a:5b:7c:d1:cc:f9:22:6b:b1:cf:e9:
4e:3d:63:ef:b8:62:a6:bf:f6:ad:fe:dc:95:4b:b2:
2a:4a:cf:0a:ca:ec:db:70:cf:f8:67:90:71:33:d2:
ea:bf:15:6e:2a:78:d7:8f:61:d6:b0:31:d0:24:db:
b7:82:c3:8f:c4:a1:44:a0:ab:a9:3a:b9:fc:c4:e9:
3f:0b:7f:d5:05:fa:6a:57:e0:1e:77:1a:e5:62:e0:
a9:cc:eb:dc:8a:32:ac:82:dc:90:0e:b3:89:23:7c:
b3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:07:D0:E5:E9:A1:1A:C0:B6:61:0D:20:3E:3B:84:67:0E:CA:44:23
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/UwfQ5emhGsC2YQ0gPjuEZw7KRCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.98.0/24
46.37.113.0/24
46.37.118.0/24
46.37.122.0/24
Signature Algorithm: sha256WithRSAEncryption
64:3d:29:57:27:19:b3:a0:3b:7d:4f:67:92:3b:93:30:ac:0f:
1a:e3:38:b3:0a:0e:29:eb:a8:90:4e:5c:7f:91:a6:d9:14:49:
0f:27:7a:1a:14:84:6b:12:13:82:dc:55:1c:8b:58:47:4c:d9:
7c:02:39:99:02:c3:2f:7b:77:6d:de:f2:c0:dd:ed:42:1d:84:
8f:d1:fe:96:4a:cd:45:64:36:82:49:9e:0f:41:e7:50:f9:27:
e3:62:16:c3:4a:dc:65:57:b2:d2:06:b0:37:f3:af:f1:81:47:
eb:31:fc:b7:70:9f:20:d9:f7:6e:ce:99:30:eb:3d:86:f4:6f:
d8:cf:0d:cf:b2:6f:66:51:b8:a5:73:96:50:d9:4e:64:c7:e0:
e1:ff:9e:dc:c0:3a:07:80:a1:b4:8a:14:77:ea:41:db:c8:72:
05:2d:d7:40:c6:7f:53:d2:36:1c:6e:2b:91:b5:27:9d:2e:02:
12:a8:e0:c8:0f:66:84:0b:58:bd:fa:33:3f:39:d2:5a:5f:4c:
57:ff:a5:80:30:17:82:3f:91:40:61:45:34:b9:5e:51:ea:39:
5c:cc:3a:66:07:e6:83:07:88:32:e4:4e:41:a0:e6:58:5c:e8:
aa:1a:e2:58:3b:ff:cb:59:40:5a:12:57:ca:9e:95:74:9f:1d:
7f:95:db:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 18:52:24 2024 by rpki-client on console-fra.rpki-client.org