Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/ju0PkoDDngGFft2YZMSamI16BtI.roa
File: ju0PkoDDngGFft2YZMSamI16BtI.roa (raw, json)
Hash identifier: jOTNr/jQXmslzVCMIGc8CZuCpIspJasBjySG5A39K3g=
Subject key identifier: 8E:ED:0F:92:80:C3:9E:01:85:7E:DD:98:64:C4:9A:98:8D:7A:06:D2
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 01856F14AA94D42561EE80AB6460B101E2E9
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/ju0PkoDDngGFft2YZMSamI16BtI.roa
Signing time: Sun 01 Jan 2023 20:45:03 +0000
ROA not before: Sun 01 Jan 2023 20:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56587
IP address blocks: 46.151.150.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:aa:94:d4:25:61:ee:80:ab:64:60:b1:01:e2:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Jan 1 20:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8eed0f9280c39e01857edd9864c49a988d7a06d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:37:74:51:6b:08:16:6d:92:c5:cb:8b:9e:1a:
3c:fe:07:9a:2c:fd:75:a2:ca:66:84:b0:75:91:96:
fc:0a:7a:1d:ef:c6:98:ff:78:24:42:4d:6c:da:75:
b9:46:20:d0:79:ec:2e:56:a8:29:39:e9:94:fc:79:
a5:34:cf:62:8e:72:86:2a:08:37:b7:5a:f5:cf:e1:
70:d2:6c:e4:e6:09:42:66:dc:fb:65:3e:5b:50:1d:
c3:45:34:64:1f:86:78:e1:68:61:00:18:a8:99:9d:
f7:10:81:11:21:3c:15:2e:9d:7c:3e:f6:c2:01:dd:
ca:c6:c9:34:d5:26:98:f4:d1:36:dc:2e:74:80:b5:
08:75:6f:fe:d6:5e:6c:3b:37:53:17:8e:41:4d:8c:
e3:a6:6e:41:11:6b:f5:99:84:b6:59:d1:df:1a:03:
0f:52:03:bb:a2:19:59:3e:c1:d2:a1:03:0d:2c:b6:
1f:f9:e6:81:06:5e:aa:a4:f1:bc:42:1b:2d:ff:23:
54:eb:ab:93:5f:e9:6a:c1:b3:f3:d1:24:c9:f1:a8:
37:f9:e4:2e:e8:9c:58:a9:5d:7b:7c:51:b7:14:ec:
00:af:69:05:60:f3:28:d9:5d:0d:aa:ee:42:55:80:
de:31:95:91:b0:1a:79:f0:55:2f:45:4d:8b:d7:dc:
d2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:ED:0F:92:80:C3:9E:01:85:7E:DD:98:64:C4:9A:98:8D:7A:06:D2
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/ju0PkoDDngGFft2YZMSamI16BtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.150.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:b4:db:f8:51:ad:70:bd:9e:4e:b0:51:ef:ed:0f:ed:5e:d9:
af:bb:57:ff:d3:cb:12:6f:9c:a8:73:b6:9f:c8:26:bc:71:68:
5b:05:81:6b:b3:14:7b:b7:44:47:7e:35:dd:97:ad:77:46:ff:
66:98:50:3b:e7:3e:54:0a:d9:12:e1:ee:12:ba:cc:47:98:3f:
68:06:89:ca:a4:91:24:96:98:07:0d:a5:d7:01:8e:a2:a9:0d:
84:0b:9b:f8:eb:84:8b:3a:cd:be:0e:8a:86:63:9a:67:bc:2d:
94:a7:ed:ed:7f:34:94:16:1f:c0:26:4a:9d:c7:24:63:42:62:
4d:0f:25:74:50:da:97:5e:c7:8c:5b:6a:90:0b:ca:c5:fc:45:
5f:8b:f0:39:2a:ee:6f:31:6f:6c:12:74:8c:e3:14:fc:b0:1a:
d3:2d:e6:e7:1a:97:af:fb:60:86:59:3c:26:42:cb:80:b2:44:
8d:7c:f9:77:34:3a:d7:56:b0:42:2a:85:95:e6:61:8b:cf:20:
63:b8:f7:fc:2e:c8:f1:8c:53:f8:89:e9:f2:6b:2f:86:d0:40:
94:a5:34:9b:cc:81:55:20:cb:ea:c2:df:df:87:2c:20:ed:83:
7c:bb:36:77:79:3f:40:0f:ea:e7:5c:14:d1:1d:39:78:79:b2:
48:9c:72:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:03:09 2024 by rpki-client on console-ams.rpki-client.org