Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/opNmKFIeVaATVBgDkZfSZ6gJw2w.roa
File: opNmKFIeVaATVBgDkZfSZ6gJw2w.roa (raw, json)
Hash identifier: QQNGOwKrPPP5DRo9zr66AqSZqMupeQ7opmfzScN2eDY=
Subject key identifier: A2:93:66:28:52:1E:55:A0:13:54:18:03:91:97:D2:67:A8:09:C3:6C
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 01856D0ADB0368EBACEE534CB88002DF0B8C
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/opNmKFIeVaATVBgDkZfSZ6gJw2w.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 46.37.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 11:25:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:db:03:68:eb:ac:ee:53:4c:b8:80:02:df:0b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2936628521e55a0135418039197d267a809c36c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cb:8b:b8:30:ec:35:98:9b:b3:bf:ab:5b:e5:
39:ae:41:07:67:88:35:4a:cc:23:88:19:61:39:60:
93:0d:ff:d1:9b:09:12:56:da:e0:1b:8a:3e:60:7b:
a2:47:74:6c:29:4b:56:2d:4d:99:cc:7a:c0:ca:cf:
e0:84:75:34:30:3d:f6:73:4d:47:67:a5:42:57:b0:
8d:2a:73:f7:be:50:8f:7b:5c:8d:e4:db:44:73:95:
87:3f:5c:f5:12:57:34:f9:49:a9:9a:67:27:d4:87:
a8:75:85:7c:84:65:40:af:7e:4a:e2:c5:8b:09:ad:
e7:82:e6:10:65:36:52:d9:8c:74:f8:70:19:1c:58:
29:83:9d:ec:07:e0:e9:e8:30:8d:37:1c:9f:31:57:
e9:a9:a7:e3:fb:ff:a0:bb:0e:cc:35:91:97:dd:b9:
03:69:90:e0:bc:39:a4:3e:ec:6b:28:c4:e4:b8:75:
53:92:a7:81:8d:47:f8:37:62:30:4f:75:f1:76:19:
f4:39:00:09:7c:06:fe:18:65:80:00:43:62:75:ee:
38:01:ca:e2:df:87:1d:cf:a4:fe:5c:33:88:3d:3b:
0a:29:7f:ae:30:7e:bb:2f:34:75:bb:81:13:ac:74:
69:2e:67:53:7e:53:4a:c7:5d:61:88:ea:01:97:b5:
70:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:93:66:28:52:1E:55:A0:13:54:18:03:91:97:D2:67:A8:09:C3:6C
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/opNmKFIeVaATVBgDkZfSZ6gJw2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.117.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d7:30:ae:e6:0c:f4:90:90:cf:ee:02:81:f9:15:8b:01:73:
cd:83:a2:8d:d2:b8:ea:b6:57:40:23:28:7e:30:db:c1:11:46:
09:94:8b:c6:89:51:8a:28:65:f2:60:8d:b7:7b:2f:da:85:26:
bc:56:97:96:40:03:c4:a2:4f:9e:7b:a3:3b:37:08:51:ab:51:
9f:43:90:82:5f:0f:dd:a8:41:ce:9e:6d:83:dc:e7:c4:1e:ce:
82:61:30:3d:74:2e:5d:fc:ba:4a:1a:8f:af:0b:09:45:f3:f1:
47:fc:e3:f9:2a:13:e4:1d:0f:22:c4:e6:c9:34:d2:f4:e1:7f:
c9:d8:2f:97:83:9d:fa:96:b5:55:0a:b3:8f:6f:ad:8a:e2:2c:
c4:bf:5b:4d:d2:f7:f2:5b:14:86:12:27:7f:2e:69:75:00:ca:
b9:60:e7:d9:e0:48:15:c6:30:89:a5:78:87:46:89:cf:3f:16:
35:83:4e:20:9c:27:cb:49:4d:8e:8a:58:81:6a:5f:e2:09:aa:
56:dc:70:b9:f6:e8:f5:08:65:8a:ec:49:60:ab:87:5e:c0:12:
d3:72:9c:ad:be:72:89:db:d3:75:49:db:d3:ee:af:d9:87:3c:
43:4c:1b:a0:fc:a3:c5:76:1c:63:aa:a7:f6:8c:5f:bf:6f:31:
25:1e:d7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:07 2024 by rpki-client on console-ams.rpki-client.org