Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/PV2b15uDKbaGEw4tzwxtqQWLn_o.roa
File: PV2b15uDKbaGEw4tzwxtqQWLn_o.roa (raw, json)
Hash identifier: a7PNF9IYdeI4Hz6az9OmKHSPm3fYOTVM5snJuKK69T4=
Subject key identifier: 3D:5D:9B:D7:9B:83:29:B6:86:13:0E:2D:CF:0C:6D:A9:05:8B:9F:FA
Certificate issuer: /CN=23d480b0795617e2e26e6e18264377e7a96c78f3
Certificate serial: 01856EF418FF65B14067D08C71198D2A9433
Authority key identifier: 23:D4:80:B0:79:56:17:E2:E2:6E:6E:18:26:43:77:E7:A9:6C:78:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9SAsHlWF-Libm4YJkN356lsePM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/PV2b15uDKbaGEw4tzwxtqQWLn_o.roa
Signing time: Sun 01 Jan 2023 20:09:28 +0000
ROA not before: Sun 01 Jan 2023 20:09:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31059
IP address blocks: 46.227.160.0/23 maxlen: 23
46.227.162.0/24 maxlen: 24
46.227.164.0/24 maxlen: 24
46.227.166.0/24 maxlen: 24
46.227.167.0/24 maxlen: 24
193.242.176.0/22 maxlen: 22
95.143.4.0/24 maxlen: 24
95.143.0.0/21 maxlen: 24
95.143.10.0/24 maxlen: 24
95.143.11.0/24 maxlen: 24
95.143.5.0/24 maxlen: 24
95.143.8.0/23 maxlen: 23
95.143.12.0/24 maxlen: 24
95.143.13.0/24 maxlen: 24
95.143.14.0/23 maxlen: 23
185.72.224.0/24 maxlen: 24
185.72.225.0/24 maxlen: 24
185.72.226.0/24 maxlen: 24
185.72.227.0/24 maxlen: 24
2a02:1328:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:18:ff:65:b1:40:67:d0:8c:71:19:8d:2a:94:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d480b0795617e2e26e6e18264377e7a96c78f3
Validity
Not Before: Jan 1 20:09:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d5d9bd79b8329b686130e2dcf0c6da9058b9ffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:ef:0d:84:bd:af:9a:e1:8c:e7:b6:3b:7c:
67:f1:e3:b7:39:51:d9:59:fe:20:b6:a4:14:94:99:
a4:6f:b0:78:68:9b:51:45:e1:b0:26:07:54:c2:88:
14:8e:0b:a5:cf:8f:ec:03:f4:9d:0b:9c:95:d0:2a:
bc:8a:a9:39:a9:7f:b5:86:be:f9:51:c3:51:07:5b:
d7:ef:aa:53:59:87:3a:38:96:78:40:c4:2b:f9:d3:
05:02:62:9d:40:f7:31:37:78:c0:4c:6a:66:4c:4c:
8e:27:0c:6e:58:1a:d9:db:72:45:e3:91:78:56:07:
ed:be:79:b9:87:e1:3b:f7:e4:f1:00:f8:4f:d0:20:
14:84:5c:1c:95:0e:f2:f2:d9:20:d7:ef:59:bb:ec:
00:77:c2:a1:5e:c2:01:ec:1b:b5:90:87:aa:23:bc:
56:e8:b4:c2:aa:8f:ca:08:a7:0c:a1:fa:d9:18:e5:
eb:d4:72:6d:53:51:8e:bd:f8:e3:6a:00:7a:c1:f7:
12:4c:22:f1:79:e9:2a:f0:73:b0:1b:fd:4e:f2:92:
41:98:af:49:31:c8:da:69:07:46:f1:d7:58:df:38:
70:fa:d7:8d:22:47:8f:f1:35:39:be:89:50:64:5d:
67:0d:b2:3a:17:21:a3:2a:23:e5:a2:41:51:f9:0a:
a3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5D:9B:D7:9B:83:29:B6:86:13:0E:2D:CF:0C:6D:A9:05:8B:9F:FA
X509v3 Authority Key Identifier:
keyid:23:D4:80:B0:79:56:17:E2:E2:6E:6E:18:26:43:77:E7:A9:6C:78:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9SAsHlWF-Libm4YJkN356lsePM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/PV2b15uDKbaGEw4tzwxtqQWLn_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/664cab-ba9a-4c40-97f4-af98e49f11ae/1/I9SAsHlWF-Libm4YJkN356lsePM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.227.160.0-46.227.162.255
46.227.164.0/24
46.227.166.0/23
95.143.0.0/20
185.72.224.0/22
193.242.176.0/22
IPv6:
2a02:1328:2::/48
Signature Algorithm: sha256WithRSAEncryption
90:ee:11:cf:0a:2c:b5:31:d1:53:07:61:fa:6c:74:32:e9:f0:
f0:3c:b6:6c:47:b0:88:6a:33:2a:88:66:e6:cc:69:c1:6e:66:
93:ad:cf:a4:ee:f3:ff:d6:23:a6:44:a4:98:1c:de:e7:2c:23:
b3:84:bd:ff:40:9f:bc:2f:47:bc:62:8c:d2:b3:bc:90:f4:f7:
db:1d:24:3a:62:82:f3:ef:11:1e:2b:ef:80:ff:be:36:af:2b:
69:02:c2:84:dc:15:e3:73:dd:e1:4f:b5:48:53:3b:0f:10:a9:
e8:fe:6f:84:9f:87:d1:ef:6f:8c:56:bb:ae:c9:7f:36:2a:ee:
eb:1d:7d:7d:76:98:93:b3:3c:9a:bf:e5:c2:5a:81:92:1e:33:
ff:de:50:4e:83:ba:dd:ff:c5:fa:ba:43:c1:e9:c3:30:77:70:
c9:e5:1d:35:ea:21:35:43:73:72:53:df:5d:01:cc:ca:cc:68:
06:3e:01:c4:0c:97:2b:ad:22:08:d8:1b:16:99:47:e2:6d:a4:
0c:24:7e:0a:10:bc:78:4d:0d:60:2c:fc:df:fe:8c:fd:8a:20:
eb:d5:ad:a6:f5:a2:a2:fa:b2:04:be:e8:7c:ac:46:38:9a:66:
59:47:6d:63:b6:b2:58:c9:7c:92:3c:f8:d2:63:58:cc:9c:d4:
c0:75:f1:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:26 2024 by rpki-client on console-ams.rpki-client.org