Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/9680c7-57d7-49c6-8b63-40153c5d0a47/1/pV0stw_qd4i65GaCUBhg4-C2q50.roa
File: pV0stw_qd4i65GaCUBhg4-C2q50.roa (raw, json)
Hash identifier: O0lsVWiRxUMrAOv4StgMgQFCxoiCzGcR4TYjuZ/GkCA=
Subject key identifier: A5:5D:2C:B7:0F:EA:77:88:BA:E4:66:82:50:18:60:E3:E0:B6:AB:9D
Certificate issuer: /CN=ff8208b129c53e87c3f0d0ed1bca85730140f390
Certificate serial: 018C01C2A04B539605FD3AADD32BC6E640A4
Authority key identifier: FF:82:08:B1:29:C5:3E:87:C3:F0:D0:ED:1B:CA:85:73:01:40:F3:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IIsSnFPofD8NDtG8qFcwFA85A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/9680c7-57d7-49c6-8b63-40153c5d0a47/1/pV0stw_qd4i65GaCUBhg4-C2q50.roa
Signing time: Fri 24 Nov 2023 14:36:21 +0000
ROA not before: Fri 24 Nov 2023 14:36:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211309
IP address blocks: 46.227.152.0/21 maxlen: 21
185.190.36.0/24 maxlen: 24
2a0a:2780::/31 maxlen: 31
2a0a:2781::/32 maxlen: 32
2a0a:2780::/32 maxlen: 32
2a10:d640::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 11 Dec 2023 14:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:01:c2:a0:4b:53:96:05:fd:3a:ad:d3:2b:c6:e6:40:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff8208b129c53e87c3f0d0ed1bca85730140f390
Validity
Not Before: Nov 24 14:36:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a55d2cb70fea7788bae46682501860e3e0b6ab9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c2:cd:6a:1f:39:3d:3e:7d:a6:f7:ea:98:98:
5a:78:0f:45:30:94:d9:8f:cd:34:d6:4b:91:3f:dc:
d6:22:f5:bf:63:18:3f:6e:57:e7:58:80:60:e1:0c:
11:a5:6f:5e:77:a8:1d:c0:61:fe:7b:01:82:74:14:
a5:84:b3:30:ba:71:04:76:0d:35:09:4b:b4:17:08:
3c:75:fd:c3:c3:29:e4:35:3d:2d:dc:ef:ea:b3:74:
02:e0:7c:a4:e0:88:d7:67:35:f1:6c:31:75:d1:13:
6f:14:83:50:bb:93:00:06:a5:68:21:c6:8e:54:a5:
a3:6a:04:c7:03:a0:ef:ae:a3:b7:48:2a:3f:bb:1b:
f9:d2:b8:a8:06:84:2c:e6:4c:90:c2:bd:b2:d2:29:
54:7c:5e:1e:bf:4a:ec:cf:1f:47:66:a9:fc:8c:96:
74:f3:31:3a:d3:6d:b2:ec:75:92:26:19:89:cb:41:
39:4d:a9:d9:47:82:a5:a9:0f:14:d9:69:0f:fb:4c:
08:9b:d6:b3:eb:0f:19:2a:39:4d:9a:a1:84:21:86:
18:dd:6f:d9:72:3f:10:9c:67:82:a7:0a:a3:e1:a2:
df:82:d8:e9:9b:77:f9:c2:7d:8b:d3:aa:5c:c0:51:
56:90:db:3a:68:9f:81:29:91:6c:eb:36:8d:8f:45:
63:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5D:2C:B7:0F:EA:77:88:BA:E4:66:82:50:18:60:E3:E0:B6:AB:9D
X509v3 Authority Key Identifier:
keyid:FF:82:08:B1:29:C5:3E:87:C3:F0:D0:ED:1B:CA:85:73:01:40:F3:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IIsSnFPofD8NDtG8qFcwFA85A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/9680c7-57d7-49c6-8b63-40153c5d0a47/1/pV0stw_qd4i65GaCUBhg4-C2q50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/9680c7-57d7-49c6-8b63-40153c5d0a47/1/_4IIsSnFPofD8NDtG8qFcwFA85A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.152.0/21
185.190.36.0/24
IPv6:
2a0a:2780::/31
2a10:d640::/29
Signature Algorithm: sha256WithRSAEncryption
5a:7d:ed:bf:bd:2f:33:e7:7f:88:e7:5d:ab:fb:e6:7c:09:40:
22:b7:77:86:75:9d:86:93:96:f9:87:b7:19:e9:c6:ec:89:cf:
8d:be:d2:7d:0c:13:65:b4:88:91:11:0a:71:65:38:0b:2c:f4:
10:2f:eb:d6:5f:d9:2d:f3:42:cc:66:63:26:4f:d4:46:ce:b9:
38:75:f8:fc:ab:81:9d:a2:f6:f6:d1:cb:14:72:20:5c:69:95:
cd:6e:b6:f8:04:13:ae:42:a9:98:e0:e6:8e:16:60:ac:a8:e3:
31:84:71:f2:a5:b9:d7:10:d3:5b:d5:5a:71:9b:c5:b2:9d:95:
22:a2:12:d7:15:4c:25:6c:07:92:b7:07:f7:81:d8:6a:05:b5:
0e:9e:e3:a6:6a:06:a6:b4:bc:d0:dc:d1:28:4f:60:4f:d8:e5:
91:17:2f:ae:0d:7c:7d:ce:01:d5:d8:55:28:3c:c0:ab:b1:77:
44:ae:94:4c:58:01:eb:7f:98:5e:a6:48:92:f1:bb:9c:91:a5:
7e:6d:f3:08:18:47:b1:cb:41:95:c3:a6:81:06:61:c7:dd:29:
c5:e3:08:2f:f2:67:65:b9:c2:f1:df:6f:2d:32:e6:de:83:4e:
68:6e:e4:f5:cc:84:a5:04:89:25:d9:ea:db:59:b4:d3:27:3b:
b2:ed:10:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:28 2024 by rpki-client on console-ams.rpki-client.org