Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/G5nMDaikMUYnV70tlk457Uj3QL4.roa
File: G5nMDaikMUYnV70tlk457Uj3QL4.roa (raw, json)
Hash identifier: ERFBIScthMOq3A/TMz9ADqgrNO5F6XmbMqGzukhy6Jk=
Subject key identifier: 1B:99:CC:0D:A8:A4:31:46:27:57:BD:2D:96:4E:39:ED:48:F7:40:BE
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01856D9419AD53191B30D8A41E5F27F4C198
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/G5nMDaikMUYnV70tlk457Uj3QL4.roa
Signing time: Sun 01 Jan 2023 13:45:00 +0000
ROA not before: Sun 01 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211895
IP address blocks: 46.23.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:19:ad:53:19:1b:30:d8:a4:1e:5f:27:f4:c1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b99cc0da8a431462757bd2d964e39ed48f740be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:7a:99:0c:37:9a:8b:3e:d5:e2:65:57:f8:
fb:fa:3a:1b:aa:97:88:fb:b9:53:c2:7b:47:ee:83:
5e:17:e7:92:5d:36:be:e1:42:eb:15:dd:23:e7:36:
4b:e3:fb:ca:4c:c9:e3:86:37:49:f8:c2:59:87:bd:
33:43:66:1d:7f:ee:af:fe:30:95:7a:3e:85:8c:a3:
c8:f2:18:ce:1e:95:1d:44:c4:5a:fc:1c:9a:b3:54:
87:b8:5f:43:4f:99:b5:86:50:c4:c2:09:03:8b:12:
30:38:b1:05:fa:70:2f:46:4d:1e:00:4e:79:7f:07:
6b:04:c4:43:1a:70:88:e0:5a:f7:e7:fe:9d:d1:cf:
b1:48:28:4c:bf:f5:3a:57:1f:c5:8b:7c:b6:74:03:
63:85:a6:78:1c:7b:e9:7d:9f:80:9c:92:d3:ff:2c:
47:5b:10:8b:17:91:de:84:b4:75:e4:ee:5b:8a:f8:
1e:93:0a:68:51:d6:06:1c:97:6f:32:b4:b4:f1:f5:
fb:c2:45:6a:54:65:ab:24:5c:66:1a:c2:9e:84:c0:
d7:8a:e8:40:24:65:f7:e2:6b:0c:32:05:74:61:31:
89:d9:aa:25:34:0f:3e:ab:12:c3:e9:42:e1:ca:ee:
de:da:82:de:87:3a:a3:df:7a:2a:65:3a:ab:e5:17:
4e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:99:CC:0D:A8:A4:31:46:27:57:BD:2D:96:4E:39:ED:48:F7:40:BE
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/G5nMDaikMUYnV70tlk457Uj3QL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.109.0/24
Signature Algorithm: sha256WithRSAEncryption
68:42:ed:1f:8c:6d:93:fc:3b:97:f1:81:05:68:2b:5c:a2:32:
b9:42:2b:48:a5:20:1a:fa:3f:c0:bf:0d:4f:e4:04:81:d6:f0:
82:c0:7b:9d:4f:a0:b6:56:63:38:61:06:ec:fd:00:08:ea:bd:
e0:c8:ef:8a:4f:a3:07:cb:6e:dc:a8:cc:44:fe:74:24:ca:c3:
35:ae:e4:d6:74:c1:50:b1:5b:22:0a:41:88:b5:2a:da:e3:b6:
11:5e:f2:fa:5c:ef:80:f2:a3:c5:cc:fb:21:0f:ca:9d:bd:09:
fe:b4:ce:96:53:ab:64:3e:9f:a1:7e:50:b0:ad:b3:d0:71:13:
38:52:0f:81:ff:38:1f:89:90:60:2b:2a:29:4b:f3:16:ce:82:
2d:99:e7:b5:b9:7f:1c:d6:41:8e:e2:0b:4d:b5:56:c4:f1:6f:
de:1e:f7:96:c6:43:2e:b0:a9:9e:44:ac:e5:f5:08:c7:11:80:
b8:45:c6:f7:55:7a:93:1e:d5:3a:71:d0:5d:5d:fb:5c:c5:10:
b4:c7:fc:bb:eb:c7:e8:5c:3a:c5:ac:c3:b3:ad:51:eb:53:53:
12:aa:7a:6c:19:c0:ab:16:ca:c6:a3:5c:7f:38:6c:0e:b2:e1:
69:15:ff:2e:7e:43:53:ae:a0:fc:3a:29:b1:1e:63:0d:ae:10:
66:64:53:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org