Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bBq-iFDiOtPC9OC8vEkHw45wJEw.roa
File: bBq-iFDiOtPC9OC8vEkHw45wJEw.roa (raw, json)
Hash identifier: jQqAnq1N9TR7/EUdHSGUi1K3cUODQCNng1Pk3nukVd4=
Subject key identifier: 6C:1A:BE:88:50:E2:3A:D3:C2:F4:E0:BC:BC:49:07:C3:8E:70:24:4C
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0188D3AE22B03E236BF35D68F62173610BE8
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bBq-iFDiOtPC9OC8vEkHw45wJEw.roa
Signing time: Mon 19 Jun 2023 12:43:04 +0000
ROA not before: Mon 19 Jun 2023 12:43:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 46.37.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Aug 2023 06:18:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d3:ae:22:b0:3e:23:6b:f3:5d:68:f6:21:73:61:0b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jun 19 12:43:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c1abe8850e23ad3c2f4e0bcbc4907c38e70244c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:63:db:78:51:22:a6:5c:23:b1:94:cd:b2:dd:
7b:47:32:bf:08:83:4d:ff:69:3e:5c:ae:ce:2b:16:
da:77:fe:ec:c7:89:54:5f:ea:bd:be:28:2f:f7:27:
44:4f:65:22:86:9c:c6:6b:90:ee:02:26:7e:d6:d7:
63:7c:df:aa:13:99:4c:d0:13:0e:45:68:03:b3:48:
03:dc:fd:55:b3:31:2d:ff:2f:32:64:39:cf:f8:10:
8c:af:2d:79:ac:c5:23:eb:02:eb:44:78:ce:f8:f0:
a1:5e:9a:80:0f:2b:50:c0:9b:e8:18:01:2a:bd:48:
4f:d3:16:18:52:60:15:c4:fe:8c:29:58:2b:27:86:
f1:bc:ae:50:a9:79:0d:3e:85:af:a0:21:0d:4f:63:
36:20:08:6a:40:5f:05:cd:44:b4:a1:b4:5c:6c:8e:
ee:7b:d7:30:df:86:d8:27:b1:4b:b9:4d:15:cb:b9:
66:ac:42:b0:4c:f9:af:53:4d:e6:48:86:9c:ff:77:
cf:6b:07:fd:bd:e8:04:a2:fc:14:9c:50:1d:0a:90:
5f:96:36:47:f1:21:64:3c:b7:e2:8a:5e:93:12:b3:
61:2e:3e:f6:65:00:8a:83:d8:b1:49:ff:ab:7b:5a:
66:f4:e4:a6:30:54:b4:a2:dc:3a:75:d6:2a:15:6b:
b5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1A:BE:88:50:E2:3A:D3:C2:F4:E0:BC:BC:49:07:C3:8E:70:24:4C
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bBq-iFDiOtPC9OC8vEkHw45wJEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.115.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:bc:68:29:a2:bc:d3:b5:9d:e9:a4:00:36:11:01:9a:bf:65:
6e:d1:37:19:d0:b8:08:ba:9e:e5:b1:56:92:68:2e:9d:3e:fb:
b1:8e:57:08:e1:58:2c:f6:09:0a:06:04:cb:3a:03:81:8e:20:
7a:39:f2:62:fb:e5:64:a7:39:46:42:16:32:42:89:5e:c4:e4:
c2:56:5a:a1:09:ee:da:6c:d9:00:74:1b:31:7c:7b:07:53:15:
54:0b:93:8c:6e:d7:5d:d3:1d:de:55:9d:f8:9b:96:01:a8:31:
08:38:e1:af:a2:67:7f:09:fb:a6:3d:c4:e8:6b:1c:1b:8d:76:
26:73:97:e9:f8:df:4b:d1:0b:d8:a3:77:0f:af:bf:19:cd:60:
79:1f:a9:49:8e:2c:f7:8d:cd:91:6a:60:fa:de:21:ae:08:cc:
94:a6:bd:4b:b5:e9:b2:ce:38:ba:19:5c:ab:98:da:6e:17:34:
66:c3:2b:60:35:e3:ea:cc:bb:d0:e2:6b:6a:98:da:db:ed:36:
7d:fb:8a:98:95:71:1d:c6:10:01:7f:ca:56:d0:71:69:bb:46:
2d:ba:ca:d8:86:6e:cd:84:3e:10:f0:bc:d5:e2:7b:d2:f1:b8:
9a:d5:e2:70:b4:2e:0d:6c:56:01:ed:aa:e7:e3:a9:3c:9f:2f:
67:e8:7f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org