Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/OM3K2DPyz8kGv4KNjhAq5ug_d-g.roa
File: OM3K2DPyz8kGv4KNjhAq5ug_d-g.roa (raw, json)
Hash identifier: fTKUwHdzQDsWst/hmMQhs72f6L7uOefqPRx3908uD5M=
Subject key identifier: 38:CD:CA:D8:33:F2:CF:C9:06:BF:82:8D:8E:10:2A:E6:E8:3F:77:E8
Certificate issuer: /CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Certificate serial: 018570DE586B97EAD667290159B1708EFB76
Authority key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/OM3K2DPyz8kGv4KNjhAq5ug_d-g.roa
Signing time: Mon 02 Jan 2023 05:04:57 +0000
ROA not before: Mon 02 Jan 2023 05:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47389
IP address blocks: 46.33.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:58:6b:97:ea:d6:67:29:01:59:b1:70:8e:fb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Validity
Not Before: Jan 2 05:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38cdcad833f2cfc906bf828d8e102ae6e83f77e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f6:ce:23:cc:0f:18:69:44:3c:7c:2c:4c:0b:
1b:84:2f:6c:1d:60:11:8f:dc:cc:8e:49:82:05:2d:
b9:f6:7e:91:66:f3:0b:35:ce:62:15:69:01:d6:fc:
a4:0d:39:02:c5:b0:8c:37:2d:76:01:56:9e:d0:6a:
79:ad:5f:41:cd:60:7a:d9:f2:f6:61:ba:39:7f:07:
be:1d:0e:60:12:29:fa:61:5e:81:00:e8:51:e0:3d:
7f:03:a4:21:91:85:4c:4d:c4:74:fd:3f:4f:4f:de:
42:de:77:3a:1b:fd:be:97:1d:e4:4f:6a:ff:8d:f5:
4f:62:90:25:be:e8:d4:72:6e:d0:50:5c:35:22:28:
63:3f:af:ce:95:57:8c:70:02:8a:6a:7c:16:dd:bd:
30:26:9c:0a:27:b0:76:8e:77:6b:da:55:28:e2:17:
d0:cd:d2:cb:95:e4:8e:18:ff:e8:a9:e0:3d:91:1f:
08:b8:ab:ef:4f:e4:27:9b:e7:60:08:2d:ae:a7:09:
a9:9a:98:ef:49:6c:0f:ff:c9:d5:61:6b:0f:4b:2a:
37:f3:d8:13:fa:ad:5e:d7:ee:eb:0d:1c:5a:c8:69:
1c:28:41:fb:52:44:d5:46:7d:4d:39:1d:ad:1c:53:
d4:50:9b:15:94:8f:06:04:ba:8d:38:20:5a:e5:f0:
42:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CD:CA:D8:33:F2:CF:C9:06:BF:82:8D:8E:10:2A:E6:E8:3F:77:E8
X509v3 Authority Key Identifier:
keyid:C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/OM3K2DPyz8kGv4KNjhAq5ug_d-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.53.0/24
Signature Algorithm: sha256WithRSAEncryption
04:99:9c:06:93:58:23:51:07:17:45:ce:0e:bc:54:15:0a:a3:
76:54:e4:12:ea:61:ce:17:f3:7e:c1:c3:7f:06:83:fe:c4:d0:
d3:7d:3d:ca:d7:54:de:d3:a1:4e:52:c0:44:78:ef:46:e7:9a:
b3:53:4f:97:e9:05:47:bf:d4:05:83:6c:92:ea:34:8d:79:bd:
a3:52:49:e7:ee:51:58:55:f9:b0:98:37:51:bb:06:f3:8a:5a:
ac:ab:e8:21:76:f7:9e:69:02:c7:29:29:8e:50:8b:de:ca:05:
ee:70:bc:84:35:41:81:60:d9:af:64:ef:28:ea:0b:25:3c:9a:
bf:65:01:1f:3b:c8:e4:89:11:77:32:23:37:a6:c6:9c:13:32:
d7:e4:9e:d2:a7:cb:67:14:73:de:e9:ed:35:66:2f:ba:e9:bf:
4c:68:24:47:ed:ab:7d:d8:c2:ec:a7:f3:9d:1a:08:e5:a4:9e:
e9:d2:a5:91:cc:c9:b6:ac:58:e9:39:3a:3d:fd:f4:b8:b6:ed:
48:55:98:0b:8b:6e:75:06:e3:1b:b0:8d:c0:e5:0f:ea:46:ad:
43:e7:cc:74:d6:d3:83:ab:16:a6:36:2e:8f:2e:c1:f8:88:d5:
e2:de:48:f3:69:06:6e:74:57:1f:2a:99:b4:4f:da:b1:07:d0:
78:93:82:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:52 2024 by rpki-client on console.sobornost.net