Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/4uvBqFkozjPPfMenOlV2CrJA8OA.roa
File: 4uvBqFkozjPPfMenOlV2CrJA8OA.roa (raw, json)
Hash identifier: rLt30dFEZGnLGxt2IPXXELPVIP3Jc0TfgT4wk0QpIyM=
Subject key identifier: E2:EB:C1:A8:59:28:CE:33:CF:7C:C7:A7:3A:55:76:0A:B2:40:F0:E0
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018E2D63025954FF08F719BE796A826022D4
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/4uvBqFkozjPPfMenOlV2CrJA8OA.roa
Signing time: Mon 11 Mar 2024 12:00:47 +0000
ROA not before: Mon 11 Mar 2024 12:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 46.23.110.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 10:46:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:63:02:59:54:ff:08:f7:19:be:79:6a:82:60:22:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Mar 11 12:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2ebc1a85928ce33cf7cc7a73a55760ab240f0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:61:1c:17:09:1b:c2:06:a3:c2:96:14:ae:6b:
b6:8d:1c:05:62:79:1b:90:09:96:10:31:8a:d4:cf:
16:50:87:08:53:46:f1:ee:13:f4:59:b5:0f:13:47:
c3:be:3a:bf:60:ae:64:59:d7:51:82:ea:a4:7f:13:
eb:d0:f6:e9:b4:0b:f1:04:50:da:ae:02:1e:6c:d0:
85:4c:3a:61:c6:03:ed:90:56:3e:8b:21:e4:91:40:
37:d9:19:30:b4:f1:fd:77:73:cd:f5:53:e7:a0:e6:
c1:61:e0:d9:8d:93:e5:ec:6a:1c:fe:fe:ec:0e:76:
81:14:fa:dd:cf:83:63:71:e7:38:3f:0e:57:8c:da:
aa:90:4a:d1:53:a5:b3:85:b7:80:82:a9:8d:bb:bb:
82:2a:27:00:27:20:b5:06:ab:f4:e2:59:84:d4:10:
b3:4f:d1:0b:fe:38:0e:21:37:e9:a1:2f:91:4e:be:
09:17:cc:f5:c5:3f:19:d4:c2:89:f1:2f:64:b0:5a:
ae:19:a6:8d:a7:d9:d2:89:6b:bd:9e:0a:86:df:e9:
fc:4e:67:1d:a9:6a:f1:0e:d7:d1:72:8c:3a:79:da:
ec:29:9f:b2:e5:bb:f3:5a:f1:f3:63:4f:e8:bc:95:
f6:ae:24:bb:ca:23:2e:3f:bb:09:b7:94:ef:44:44:
6e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:EB:C1:A8:59:28:CE:33:CF:7C:C7:A7:3A:55:76:0A:B2:40:F0:E0
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/4uvBqFkozjPPfMenOlV2CrJA8OA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/24
164.215.97.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:0c:26:e2:9d:47:16:19:4d:2f:20:64:19:da:7d:1f:f9:de:
03:cc:7f:c5:92:7d:d8:a1:b9:9a:5f:61:5b:a6:d9:82:a8:cd:
96:09:20:4b:2b:72:39:16:4d:b9:10:ab:61:05:49:21:29:c4:
c0:b0:9d:c8:d5:89:e5:65:e7:36:0d:5f:45:fa:22:ae:54:1d:
bc:36:6f:5d:ae:ad:a2:ed:d0:0e:2a:42:2a:fc:b2:c3:83:a9:
58:b7:7a:a0:a4:41:20:4b:6e:61:5f:f5:53:7e:76:28:ee:14:
55:a7:13:dc:8b:f7:2a:cf:a0:aa:31:88:43:47:00:8d:7c:00:
99:8d:16:a1:1d:7d:2d:e1:73:8d:fd:67:a4:d6:90:3a:c8:1d:
fd:c4:7e:d5:45:64:fb:25:b4:4c:a1:bf:3e:1e:94:f7:4f:b4:
c3:85:3e:ab:b0:3f:0a:34:47:49:63:b0:94:49:45:6e:27:3b:
8b:5b:f5:ed:02:6a:38:89:bb:f1:2f:e7:79:a6:d7:97:ce:eb:
bc:50:7c:9a:23:c6:78:b8:30:44:74:cf:ea:ea:b5:ad:1e:78:
36:aa:4d:3c:85:5e:2b:a0:aa:45:0e:31:0f:1c:20:22:a7:77:
c6:74:cf:6e:94:c0:02:a2:66:26:d5:44:05:af:59:19:b6:4f:
67:22:80:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 14:28:11 2024 by rpki-client on console-ams.rpki-client.org