Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bAFX_EAnm6QuEaYGl2JM9o46TzA.roa
File: bAFX_EAnm6QuEaYGl2JM9o46TzA.roa (raw, json)
Hash identifier: MiqFn303ICeguHMSdYvKLfC8/5cX67LH1v10/HkP5No=
Subject key identifier: 6C:01:57:FC:40:27:9B:A4:2E:11:A6:06:97:62:4C:F6:8E:3A:4F:30
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0ADD8F98BCD451666152E87BB436F3
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bAFX_EAnm6QuEaYGl2JM9o46TzA.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 46.37.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 05:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:dd:8f:98:bc:d4:51:66:61:52:e8:7b:b4:36:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c0157fc40279ba42e11a60697624cf68e3a4f30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e3:b8:86:8e:d2:f0:57:88:34:59:ce:0d:07:
ed:0a:c6:98:15:7d:99:85:ec:23:58:06:c5:ef:ba:
6b:05:88:11:05:a7:22:9b:31:e5:c9:0f:ba:e2:9f:
e0:14:cf:05:fe:0a:30:58:ef:36:ed:39:ce:73:de:
84:5c:d2:3e:73:e6:67:56:b6:b3:b5:28:68:0a:49:
59:db:78:54:67:7b:aa:f1:38:6c:b8:e9:7a:02:e8:
81:d1:c7:fb:10:9d:8e:d3:73:8a:00:eb:b7:c3:03:
6f:da:1d:0d:1f:bb:b8:b8:b2:79:05:bb:ea:4f:9a:
e5:ee:ac:9a:f8:44:55:83:03:a3:d4:1d:9f:d7:49:
53:06:73:92:10:a4:13:ee:99:83:cb:67:2f:5d:0d:
ab:76:0c:62:a2:21:72:69:71:a8:20:08:3a:e5:74:
1f:58:15:5a:1a:da:32:4e:f4:1f:66:29:44:e6:11:
2e:e5:5d:b1:df:d7:4f:48:bc:fd:11:c4:62:82:46:
4d:12:10:5d:8a:70:e2:99:8c:59:4e:a9:f4:72:1a:
dc:4c:13:92:79:85:12:0b:4c:a5:42:4e:c9:cd:8f:
8d:91:7b:2f:ca:52:69:11:8c:ad:17:e9:2c:0d:97:
3c:d2:39:9e:c7:a2:53:2d:68:a0:80:1c:58:0c:31:
90:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:01:57:FC:40:27:9B:A4:2E:11:A6:06:97:62:4C:F6:8E:3A:4F:30
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bAFX_EAnm6QuEaYGl2JM9o46TzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.110.0/24
Signature Algorithm: sha256WithRSAEncryption
47:89:0f:08:c2:12:58:0c:8e:4a:77:33:92:0a:87:ac:fe:37:
bc:19:28:75:64:27:18:a5:4b:9a:a8:f2:6a:ae:31:05:98:c9:
b3:93:48:c7:ff:d6:b9:49:07:53:f6:34:b3:65:50:bb:9b:cf:
34:15:2d:63:ad:88:11:0f:04:d4:89:ec:e0:f1:d1:20:1a:1f:
87:f3:d8:9d:b2:71:d8:be:7b:38:0a:c4:31:89:66:ee:ed:0f:
50:71:0b:ff:fb:c7:de:d6:99:41:d5:52:1a:14:69:4a:95:91:
9c:5d:aa:97:ab:6a:88:03:8e:fe:0e:e2:49:1e:ef:7e:01:bc:
2b:b4:e0:f8:e4:7b:9c:aa:6a:ec:05:4c:2b:bb:d3:62:6e:f3:
9f:a9:af:4a:f9:13:34:f1:67:f1:a3:80:7b:63:65:67:36:67:
90:77:72:45:60:ec:71:23:12:d6:06:82:f8:04:be:25:89:3c:
e1:40:eb:82:e7:10:a4:cb:f6:4c:4f:8e:b8:9f:63:f8:30:54:
e2:19:a0:5d:30:d2:04:cc:c9:99:f8:58:40:5f:9b:60:60:45:
e4:c7:a3:6d:7d:97:83:c0:ed:e9:41:82:e6:86:c9:4f:05:21:
be:d8:3d:ae:ae:ab:13:ec:b8:5e:fa:b9:cd:9f:ba:fc:bf:90:
39:5b:e0:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org