Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/hPjEYGhAoVNLcQt0Fn7D125aaAc.roa
File: hPjEYGhAoVNLcQt0Fn7D125aaAc.roa (raw, json)
Hash identifier: EhMCLxHD4INnWSsYqDhk7KAt0xzyCcYzwctzUEnUxuE=
Subject key identifier: 84:F8:C4:60:68:40:A1:53:4B:71:0B:74:16:7E:C3:D7:6E:5A:68:07
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0AE918E7BA80838C0847F62901510D
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/hPjEYGhAoVNLcQt0Fn7D125aaAc.roa
Signing time: Sun 01 Jan 2023 11:15:09 +0000
ROA not before: Sun 01 Jan 2023 11:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397423
IP address blocks: 46.37.100.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e9:18:e7:ba:80:83:8c:08:47:f6:29:01:51:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84f8c4606840a1534b710b74167ec3d76e5a6807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c6:78:16:8f:c1:26:62:73:98:c8:f3:0a:c3:
73:79:77:6b:21:30:9e:25:39:ac:1f:36:25:11:bd:
e6:21:25:e2:74:cd:33:d5:db:ab:79:cb:13:e7:e2:
84:06:9d:79:82:c3:ad:c3:7c:38:5c:4c:42:45:eb:
ba:28:63:97:4a:6d:f0:61:ce:df:9e:ad:a9:54:62:
8e:30:6c:3e:ff:72:43:55:55:f0:d8:75:a0:76:37:
62:e4:43:ac:c8:26:37:fb:e4:46:ff:8d:bc:db:37:
43:c3:fe:50:43:b6:1e:34:08:b4:8d:a5:06:dd:aa:
39:99:c4:df:71:e9:bd:b1:7b:5a:cc:cb:c8:b1:71:
56:36:f6:5a:aa:c4:3d:ca:f9:c1:51:1e:f7:03:26:
c1:5d:08:66:2f:21:4a:8a:11:9f:f4:e6:6d:e2:7a:
8a:3e:41:ee:84:e4:72:e3:40:c4:85:36:1b:3b:cd:
96:61:a7:a6:e3:9a:b0:70:b9:e4:b6:26:49:bb:6c:
84:cd:b3:02:70:6b:c1:e5:fc:fa:51:97:63:fa:fc:
a4:42:b3:3e:4e:af:99:25:d6:61:21:41:3c:da:80:
b6:3c:31:ff:35:c6:98:b1:cf:6a:d8:59:95:6d:5e:
61:93:be:f6:24:a1:54:0c:34:30:49:ae:b6:11:2d:
e2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F8:C4:60:68:40:A1:53:4B:71:0B:74:16:7E:C3:D7:6E:5A:68:07
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/hPjEYGhAoVNLcQt0Fn7D125aaAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.100.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:6f:1c:71:e3:16:13:3c:67:30:a2:11:a0:e8:e3:26:f9:da:
2c:7c:53:5b:67:9c:61:ab:93:a3:b5:0b:5a:b2:78:cf:0c:6d:
74:32:47:3c:58:3b:0c:a3:f3:d6:bc:ba:ed:ab:2e:17:8c:84:
5e:8a:ed:ab:cc:c3:80:7c:a9:f6:b0:c6:a0:9c:7f:34:21:e5:
04:db:cf:ac:69:20:d2:16:b2:91:4b:58:f9:e1:77:61:1c:40:
35:a2:31:02:86:78:ec:16:3f:5a:d5:4c:c2:56:a3:7b:57:cf:
8a:26:b8:68:3a:50:77:58:a7:1f:5d:50:6f:85:60:2b:bd:28:
f7:b8:2a:16:04:9d:86:5d:c1:d6:e8:71:b3:37:03:d4:2f:80:
6e:34:05:0b:aa:12:59:a3:f3:00:5e:9e:dd:f0:e3:f5:a2:2b:
01:43:bb:19:05:46:c1:d7:76:5b:32:b7:30:91:c2:b6:00:b6:
c8:64:c2:24:83:8f:7e:17:26:73:9e:35:d5:aa:7a:35:44:66:
d0:73:39:41:9a:cd:03:0b:55:f7:9e:70:b9:59:d9:36:0f:ef:
22:e8:4e:12:30:50:10:9a:35:55:6d:fe:45:0e:45:fe:6f:6d:
f9:48:7d:cd:f3:0c:88:9a:30:77:89:8b:4c:f6:47:d8:9a:14:
d6:64:ef:ba
-----BEGIN CERTIFICATE-----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Generated at Wed Dec 13 23:54:50 2023 by rpki-client on console-ams.rpki-client.org