Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/wEnUqxVSXoYU3R8KOa7FfX3sY1M.roa
File: wEnUqxVSXoYU3R8KOa7FfX3sY1M.roa (raw, json)
Hash identifier: n7FMszGqmU92fyt3Vo3mGsxnXa/tvXdLTSfplJieTs4=
Subject key identifier: C0:49:D4:AB:15:52:5E:86:14:DD:1F:0A:39:AE:C5:7D:7D:EC:63:53
Certificate issuer: /CN=07fa540a25432e2aa4dca057845c359d214886f7
Certificate serial: 018C597A73C0AD2DAD85604975787B0F4704
Authority key identifier: 07:FA:54:0A:25:43:2E:2A:A4:DC:A0:57:84:5C:35:9D:21:48:86:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_pUCiVDLiqk3KBXhFw1nSFIhvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/wEnUqxVSXoYU3R8KOa7FfX3sY1M.roa
Signing time: Mon 11 Dec 2023 15:24:06 +0000
ROA not before: Mon 11 Dec 2023 15:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196922
IP address blocks: 46.232.186.0/24 maxlen: 24
46.232.184.0/21 maxlen: 21
46.232.184.0/24 maxlen: 24
46.232.185.0/24 maxlen: 24
46.232.190.0/24 maxlen: 24
46.232.187.0/24 maxlen: 24
46.232.191.0/24 maxlen: 24
178.248.240.0/24 maxlen: 24
178.248.245.0/24 maxlen: 24
178.248.246.0/24 maxlen: 24
178.248.243.0/24 maxlen: 24
178.248.244.0/24 maxlen: 24
178.248.241.0/24 maxlen: 24
178.248.240.0/21 maxlen: 21
178.248.242.0/24 maxlen: 24
185.115.24.0/22 maxlen: 24
185.115.24.0/23 maxlen: 23
178.248.247.0/24 maxlen: 24
185.115.26.0/23 maxlen: 23
185.115.26.128/27 maxlen: 27
2a02:1308::/29 maxlen: 32
2a02:1308::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:59:7a:73:c0:ad:2d:ad:85:60:49:75:78:7b:0f:47:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07fa540a25432e2aa4dca057845c359d214886f7
Validity
Not Before: Dec 11 15:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c049d4ab15525e8614dd1f0a39aec57d7dec6353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f2:ec:4c:ce:a4:46:15:10:8a:1d:12:7b:6b:
54:24:d4:d7:49:e6:9a:7a:57:96:75:db:16:9c:6d:
02:64:ba:85:be:74:1b:a9:21:e1:67:7b:9e:60:53:
ae:96:b5:fc:3c:7d:9f:ac:6d:31:40:44:e9:b9:20:
9d:8f:e0:d9:71:ef:3f:52:57:24:60:68:ef:d7:8d:
00:e5:8a:41:fd:d5:6e:31:dc:95:5a:44:df:25:25:
73:24:9f:3a:cc:58:d8:12:e1:57:fc:54:07:e8:cc:
a2:fe:87:02:87:44:6a:16:aa:5a:11:c0:aa:a4:e7:
af:3a:3b:d8:0a:cc:70:33:36:d1:a3:7f:ee:bc:ce:
89:4b:d7:a0:f5:dd:b0:a6:9d:35:20:20:2b:12:5f:
ae:bd:3b:6d:84:2a:66:03:6c:f6:a0:32:d9:37:2c:
14:6d:a2:c1:f8:61:97:60:07:ba:40:88:7d:24:76:
b5:17:83:95:57:8b:12:a0:a1:d3:32:3b:24:0d:5b:
2e:e7:03:07:ed:8b:ff:9e:0a:7b:f3:91:c4:f1:31:
9b:e3:b3:0e:8d:76:06:f4:72:60:6f:94:11:3b:37:
96:d1:4e:c9:cb:3e:c1:75:58:ae:d3:bd:99:ca:76:
58:fc:66:c0:75:c5:20:6d:38:57:6d:2f:3b:9a:2f:
c8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:49:D4:AB:15:52:5E:86:14:DD:1F:0A:39:AE:C5:7D:7D:EC:63:53
X509v3 Authority Key Identifier:
keyid:07:FA:54:0A:25:43:2E:2A:A4:DC:A0:57:84:5C:35:9D:21:48:86:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_pUCiVDLiqk3KBXhFw1nSFIhvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/wEnUqxVSXoYU3R8KOa7FfX3sY1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4307d1-b608-4581-992c-753741a80e94/1/B_pUCiVDLiqk3KBXhFw1nSFIhvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.184.0/21
178.248.240.0/21
185.115.24.0/22
IPv6:
2a02:1308::/29
Signature Algorithm: sha256WithRSAEncryption
65:ad:91:6f:f5:2a:c6:24:18:0d:03:58:cc:d9:76:c2:2d:ce:
a5:51:cb:b8:84:84:d3:b8:c6:b8:85:8f:35:6b:8e:12:1b:e5:
ef:dc:f7:54:ae:07:86:37:8f:07:1b:02:c7:e6:57:1c:8d:1d:
c3:39:33:9e:12:55:bd:4d:55:8e:c6:68:2e:00:84:b2:33:f2:
6b:0c:8f:0a:04:85:ea:c9:d2:e3:88:51:0f:ee:17:96:3d:86:
6a:02:6c:b6:85:5a:b7:4a:b1:bc:2e:2e:7b:5e:80:e1:35:3f:
ff:27:32:f6:bb:c2:a8:0e:07:d8:41:49:5c:e3:78:b4:fa:dc:
f1:3b:fd:4f:0f:d4:85:2f:22:25:23:09:e9:ed:fc:bc:74:f9:
60:51:af:f4:64:69:74:05:7f:8a:81:cd:8c:1f:a8:e8:21:e6:
6d:d3:f3:02:df:bf:1e:e5:62:6e:3c:0e:51:08:b4:ec:95:0c:
fd:12:31:d1:04:32:bf:06:99:7b:06:b5:4d:f3:10:ed:e5:38:
aa:2d:85:42:f3:b1:c1:e3:41:49:35:52:15:15:ab:5c:68:6d:
21:ae:e8:e0:c1:6d:8b:6e:75:cb:0b:66:7f:09:3a:55:1b:e7:
f5:1f:83:ac:92:07:ff:89:27:c1:67:43:33:cb:dd:d7:3c:8e:
38:33:29:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:53 2024 by rpki-client on console-fra.rpki-client.org