Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/91f8f9-fc3f-4bb8-8454-405b0bda2c26/1/COzeGJZ9H-1Vhrv1pz6Ya5TXTIo.roa
File: COzeGJZ9H-1Vhrv1pz6Ya5TXTIo.roa (raw, json)
Hash identifier: FpFtNd4RE/UBv2RlyRAOWaUPa1//sz2RPb94aVJjnHs=
Subject key identifier: 08:EC:DE:18:96:7D:1F:ED:55:86:BB:F5:A7:3E:98:6B:94:D7:4C:8A
Certificate issuer: /CN=d435658b58b714196eef371bd967c0c5e2cabd66
Certificate serial: 018B614DBAF77C4E4AE93423770095D390DA
Authority key identifier: D4:35:65:8B:58:B7:14:19:6E:EF:37:1B:D9:67:C0:C5:E2:CA:BD:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DVli1i3FBlu7zcb2WfAxeLKvWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/91f8f9-fc3f-4bb8-8454-405b0bda2c26/1/COzeGJZ9H-1Vhrv1pz6Ya5TXTIo.roa
Signing time: Tue 24 Oct 2023 10:49:25 +0000
ROA not before: Tue 24 Oct 2023 10:49:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3326
IP address blocks: 46.150.64.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:61:4d:ba:f7:7c:4e:4a:e9:34:23:77:00:95:d3:90:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d435658b58b714196eef371bd967c0c5e2cabd66
Validity
Not Before: Oct 24 10:49:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08ecde18967d1fed5586bbf5a73e986b94d74c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:40:ff:86:59:42:48:06:30:c5:c9:43:6a:
4b:3e:da:de:df:95:f8:e8:85:99:ab:5a:ea:4e:cb:
3a:0a:f7:b0:49:50:1a:3c:ac:84:70:57:be:bb:25:
04:d8:59:d5:cb:f9:d4:d6:8a:83:80:93:6e:f7:d4:
c4:71:a8:25:b9:c1:88:54:75:f2:11:82:d3:87:67:
ef:47:9f:a4:2a:9a:73:a5:e0:74:bf:1a:35:ba:cc:
b4:56:93:c7:70:14:1f:4e:ae:1e:19:7b:1f:8d:c3:
7c:29:f0:0c:65:4c:54:65:4a:30:88:00:f2:74:4d:
93:12:83:5b:7f:a0:eb:e6:0f:48:55:00:44:b1:9a:
07:dc:6f:90:b3:31:8a:60:63:64:6d:ac:1d:20:93:
55:08:ae:97:65:bd:32:ed:c4:b2:d2:78:35:00:68:
8f:2a:a8:3d:70:6c:70:2f:a2:54:28:86:f0:ae:f7:
f3:82:e0:c0:79:07:86:c2:51:89:8a:2b:87:b7:38:
5d:48:e2:69:a1:67:ee:51:90:4f:8a:8a:8b:25:f8:
64:5e:89:a6:de:5b:f0:fe:89:31:a0:4d:99:c3:10:
f2:01:8a:67:98:3c:86:02:3c:58:c5:3c:08:c2:63:
ea:ac:18:34:34:5f:93:ab:82:ff:2f:f5:1f:94:b7:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EC:DE:18:96:7D:1F:ED:55:86:BB:F5:A7:3E:98:6B:94:D7:4C:8A
X509v3 Authority Key Identifier:
keyid:D4:35:65:8B:58:B7:14:19:6E:EF:37:1B:D9:67:C0:C5:E2:CA:BD:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DVli1i3FBlu7zcb2WfAxeLKvWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/91f8f9-fc3f-4bb8-8454-405b0bda2c26/1/COzeGJZ9H-1Vhrv1pz6Ya5TXTIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/91f8f9-fc3f-4bb8-8454-405b0bda2c26/1/1DVli1i3FBlu7zcb2WfAxeLKvWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.150.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:56:90:15:29:38:3a:7d:75:a3:f1:16:71:90:43:ff:a2:ca:
81:f6:18:12:65:65:c8:08:96:fc:9b:97:8d:3b:61:5d:b6:6e:
fe:72:70:4c:5c:89:fe:ff:ae:6a:52:1e:37:f6:28:4e:dd:9b:
22:17:5a:5a:dc:a2:4c:aa:51:0b:2a:55:b4:de:10:61:e1:c9:
24:b0:fd:9b:36:50:76:17:83:e2:38:81:6d:0c:7e:68:ff:42:
9b:01:ef:05:93:5e:e7:0e:36:85:15:54:f5:a8:0d:58:cf:fa:
3f:67:48:2f:45:a5:31:85:c5:85:8b:94:7d:98:fa:60:af:24:
88:e3:1d:d2:92:7f:3c:08:79:20:67:84:cc:ca:87:6c:a4:75:
5f:f2:da:4b:61:b8:e4:35:58:7f:f7:af:63:c6:05:97:da:f6:
5a:09:81:3a:b5:09:69:2f:dc:bf:16:7d:eb:7e:05:56:a6:b0:
77:ea:02:ec:97:51:a9:c5:c1:67:b8:0d:51:34:bc:f1:8e:d0:
e6:3e:15:b0:99:e0:c6:9e:14:ca:81:55:be:18:9d:a3:fe:a0:
73:80:29:16:88:af:13:d6:89:ea:d3:b8:df:45:ed:da:2b:cc:
69:7e:4a:91:96:f3:3e:45:a8:e7:ed:2d:14:8f:8d:d0:03:fb:
aa:ef:b2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 4 12:59:49 2023 by rpki-client on console-ams.rpki-client.org