Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/cTaOuEQngT2MLdgjkw_e6D7t3yg.roa
File: cTaOuEQngT2MLdgjkw_e6D7t3yg.roa (raw, json)
Hash identifier: faD8V4k+cAf9P0REP9J5a1qooiIJXfrCQTwkKLyaZMk=
Subject key identifier: 71:36:8E:B8:44:27:81:3D:8C:2D:D8:23:93:0F:DE:E8:3E:ED:DF:28
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0AE6BEA440553D76D7C2DA6861B771
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/cTaOuEQngT2MLdgjkw_e6D7t3yg.roa
Signing time: Sun 01 Jan 2023 11:15:08 +0000
ROA not before: Sun 01 Jan 2023 11:15:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 46.37.101.0/24 maxlen: 24
46.37.108.0/24 maxlen: 24
46.37.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e6:be:a4:40:55:3d:76:d7:c2:da:68:61:b7:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71368eb84427813d8c2dd823930fdee83eeddf28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:be:9f:ea:13:3e:90:87:3d:58:2a:83:d3:83:
a9:9b:38:7b:be:9a:96:41:27:68:d6:e9:aa:2e:e7:
54:5d:e6:82:61:60:23:c6:ec:5d:dd:98:bb:0d:ea:
d6:ec:c3:9b:18:e2:9a:6e:b4:f6:62:ad:97:9b:e3:
8c:f5:6e:3e:e8:cb:f5:ef:90:9c:8e:07:fe:fc:70:
30:6d:ee:08:4b:03:25:30:4c:bd:62:d9:fe:8a:6d:
b5:d2:61:b4:9a:89:fa:96:a5:65:74:9c:d3:1b:f4:
58:93:dd:20:6a:a8:f9:c0:d7:8a:06:54:30:ea:0c:
e0:1a:71:e7:0a:7a:6b:88:30:f1:b8:5e:48:b8:37:
60:fe:46:e3:ba:81:a4:53:23:c7:5a:b6:31:44:a5:
da:9a:74:50:71:7f:fe:5f:ac:3e:ff:fb:32:1f:d5:
08:0e:39:58:6b:50:3d:18:d7:12:6a:da:68:be:12:
23:a5:52:ba:a4:96:43:c9:da:87:3f:cb:1d:f5:d1:
14:3e:ae:be:40:78:30:4a:a3:e9:1e:ed:a3:88:cc:
30:4f:8d:86:1e:79:98:79:cb:75:2e:45:33:83:de:
fe:b0:ae:15:c9:b3:62:4a:43:16:13:38:6e:0b:88:
4a:e2:6f:b7:e2:c1:9c:90:7a:cf:22:6d:31:c6:c0:
77:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:36:8E:B8:44:27:81:3D:8C:2D:D8:23:93:0F:DE:E8:3E:ED:DF:28
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/cTaOuEQngT2MLdgjkw_e6D7t3yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.101.0/24
46.37.108.0/24
46.37.125.0/24
Signature Algorithm: sha256WithRSAEncryption
23:30:3f:49:11:83:75:89:d3:f6:06:8a:3f:89:44:8f:9e:59:
8d:fc:3a:58:a2:9a:e5:ec:a8:c1:c3:8c:00:e4:01:40:6a:4f:
5c:24:ec:4c:18:e0:2e:09:be:ee:29:da:57:0a:83:96:52:e3:
ac:b3:83:ff:fd:55:34:c7:bc:6a:aa:b2:d4:ad:13:8a:b5:7a:
57:26:bd:37:40:2f:4c:ff:97:ad:d7:a5:45:1b:5a:0f:31:b8:
b1:fb:b4:e2:51:59:23:2f:e2:4d:21:bb:6e:2d:31:60:75:86:
37:dd:74:38:50:e3:1b:21:9b:e5:e4:27:2b:5a:08:77:55:6e:
c0:89:77:58:e8:5f:3f:0a:e4:40:cf:67:1e:f6:9a:1a:fc:ad:
a0:ac:cd:46:d0:a3:36:6f:bc:fd:c4:e4:6b:29:0f:ac:01:4f:
62:99:c0:6d:f6:c4:76:6f:a2:62:0e:e1:64:73:6e:3f:92:01:
42:c0:c1:48:d9:b1:30:82:af:e0:e0:75:62:ab:ce:5c:86:18:
c0:24:50:91:77:85:14:4e:13:62:30:e1:2f:df:8e:a5:16:20:
62:da:79:f2:3d:0d:15:31:61:1d:ba:95:f1:fb:71:a7:e1:4c:
3b:dd:7f:64:a1:f1:9e:e9:19:8a:6b:d8:ef:b4:2d:9f:8a:c6:
62:ec:b4:43
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVtCua+pEBVPXbXwtpoYbdxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzY2YwODg0OTE4YTUwMjM5ZWY3MDUxOGVlOWZjMDRmMWFh
ZTE5MjkwHhcNMjMwMTAxMTExNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTM2OGViODQ0Mjc4MTNkOGMyZGQ4MjM5MzBmZGVlODNlZWRkZjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgL6f6hM+kIc9WCqD04Opmzh7vpqW
QSdo1umqLudUXeaCYWAjxuxd3Zi7DerW7MObGOKabrT2Yq2Xm+OM9W4+6Mv175Cc
jgf+/HAwbe4ISwMlMEy9Ytn+im210mG0mon6lqVldJzTG/RYk90gaqj5wNeKBlQw
6gzgGnHnCnpriDDxuF5IuDdg/kbjuoGkUyPHWrYxRKXamnRQcX/+X6w+//syH9UI
DjlYa1A9GNcSatpovhIjpVK6pJZDydqHP8sd9dEUPq6+QHgwSqPpHu2jiMwwT42G
HnmYect1LkUzg97+sK4VybNiSkMWEzhuC4hK4m+34sGckHrPIm0xxsB34wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHE2jrhEJ4E9jC3YI5MP3ug+7d8oMB8GA1UdIwQY
MBaAFNPPCISRilAjnvcFGO6fwE8arhkpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEt
MjMxNTQ5NDA5NzIwLzEvY1RhT3VFUW5nVDJNTGRnamt3X2U2RDd0M3lnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9jZGZmMTYtNDU4YS00N2MzLThkZmEtMjMxNTQ5NDA5NzIw
LzEvMDg4SWhKR0tVQ09lOXdVWTdwX0FUeHF1R1NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALiVlAwQA
LiVsAwQALiV9MA0GCSqGSIb3DQEBCwUAA4IBAQAjMD9JEYN1idP2Boo/iUSPnlmN
/DpYoprl7KjBw4wA5AFAak9cJOxMGOAuCb7uKdpXCoOWUuOss4P//VU0x7xqqrLU
rROKtXpXJr03QC9M/5et16VFG1oPMbix+7TiUVkjL+JNIbtuLTFgdYY33XQ4UOMb
IZvl5CcrWgh3VW7AiXdY6F8/CuRAz2ce9poa/K2grM1G0KM2b7z9xORrKQ+sAU9i
mcBt9sR2b6JiDuFkc24/kgFCwMFI2bEwgq/g4HViq85chhjAJFCRd4UUThNiMOEv
346lFiBi2nnyPQ0VMWEdupXx+3Gn4Uw73X9kofGe6RmKa9jvtC2fisZi7LRD
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org