Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bDQJjPeCKJ_Q0r9ePpvOmaASQs0.roa
File: bDQJjPeCKJ_Q0r9ePpvOmaASQs0.roa (raw, json)
Hash identifier: d8vV9YIkCUlfBxOEXny6Vo1zBLgU8WTiXNEYWEFEdvI=
Subject key identifier: 6C:34:09:8C:F7:82:28:9F:D0:D2:BF:5E:3E:9B:CE:99:A0:12:42:CD
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 018A27F98942765B9C3BE7908AA99571FC9C
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bDQJjPeCKJ_Q0r9ePpvOmaASQs0.roa
Signing time: Thu 24 Aug 2023 14:36:19 +0000
ROA not before: Thu 24 Aug 2023 14:36:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 46.37.98.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
46.37.114.0/24 maxlen: 24
46.37.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 08:40:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:27:f9:89:42:76:5b:9c:3b:e7:90:8a:a9:95:71:fc:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Aug 24 14:36:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c34098cf782289fd0d2bf5e3e9bce99a01242cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a4:c6:60:2c:4d:70:2c:f9:6b:6b:ad:25:d5:
23:89:c9:37:8f:4a:8b:df:5f:a6:bc:fa:b0:3b:1b:
5b:a0:1d:55:19:a1:3c:a2:98:99:de:9b:32:6f:8a:
23:dc:b0:22:5e:8b:85:8b:70:02:ed:77:9c:77:d9:
bb:58:2e:24:69:ae:17:9b:c0:b4:58:db:5d:4f:f7:
e4:8d:c5:7a:03:65:d7:7d:8c:60:ff:59:ec:8d:1d:
22:e0:90:2b:5e:4c:87:00:d6:31:38:a5:77:c3:d0:
26:20:4c:86:e1:c4:63:86:89:a6:87:8a:7f:35:16:
c2:e1:71:fd:f8:80:23:6d:d7:d6:05:c8:be:56:fa:
e0:7d:c5:3d:97:d6:01:fd:c8:6b:d8:a4:ac:29:db:
e7:98:c1:af:41:c7:1f:df:c9:8d:22:f1:05:ff:47:
cc:d1:fb:6b:f0:24:24:03:99:d4:5e:ac:ef:45:be:
ed:21:ef:e7:94:2f:c1:5b:0e:b6:8e:ec:0e:a0:c3:
cb:6d:5e:fe:7d:c5:9a:f0:27:d1:c3:ae:50:b4:72:
e9:86:ad:6f:18:fe:00:6c:bc:cc:a6:c5:42:57:7d:
9f:a6:16:b3:c9:2c:b1:9c:36:6d:b4:02:3d:fc:93:
3b:07:ac:89:13:61:02:d9:13:9b:18:6d:40:8b:51:
bb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:34:09:8C:F7:82:28:9F:D0:D2:BF:5E:3E:9B:CE:99:A0:12:42:CD
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/bDQJjPeCKJ_Q0r9ePpvOmaASQs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.98.0/24
46.37.113.0-46.37.115.255
Signature Algorithm: sha256WithRSAEncryption
37:f5:f2:ea:23:89:01:2d:7d:b9:dc:35:50:55:20:5e:33:b1:
e8:e6:32:d0:9e:9f:df:b2:04:1b:9a:01:a7:0c:42:12:a8:c1:
28:cd:69:b9:c1:80:52:26:0c:d4:f6:b7:f3:77:b8:d2:d4:3f:
56:9c:ba:c6:7d:41:47:1f:d5:8f:f6:20:94:d8:63:b3:f3:5c:
dc:d8:df:7e:0c:7f:e8:45:32:ec:b5:0f:67:89:98:d4:f4:75:
95:ac:2e:cc:d0:c3:f7:fe:1e:d9:5c:bf:a4:0a:45:a3:21:ac:
1d:f6:c5:7b:7c:76:13:24:dc:b2:c8:a5:72:ce:ec:c0:1e:93:
e3:5d:83:f3:a9:18:ee:91:07:37:e1:8c:a3:df:62:f6:03:4f:
f4:4c:e1:01:e7:94:e1:d4:88:1f:8a:54:b4:22:c0:03:39:20:
23:0c:19:58:a5:49:d3:7b:31:e8:8d:43:df:14:8b:72:a5:ec:
fe:98:00:b1:ec:97:4c:8a:1e:56:09:4a:dc:c3:b7:54:c4:5d:
13:51:cb:2f:f7:47:6f:98:7f:50:12:94:c6:d8:f5:b9:95:96:
bb:b0:01:2e:67:85:72:31:44:a2:8c:6a:44:47:f9:14:47:58:
f3:c9:69:ab:49:b9:2e:37:16:f0:21:ea:fb:e3:84:92:37:6e:
42:41:21:24
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:07 2024 by rpki-client on console-ams.rpki-client.org