Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/3t1a0St3p1nYLXBR2_rFvM4k_gk.roa
File: 3t1a0St3p1nYLXBR2_rFvM4k_gk.roa (raw, json)
Hash identifier: 9wendANgD9WxZNr1QQs7fgnxKnrXwMMdoFUCq3qPSiQ=
Subject key identifier: DE:DD:5A:D1:2B:77:A7:59:D8:2D:70:51:DB:FA:C5:BC:CE:24:FE:09
Certificate issuer: /CN=5283073076e673a32b7dd6bcdc0fbcc16f37b6a1
Certificate serial: 018571955F733205EC6A2747970493D6211F
Authority key identifier: 52:83:07:30:76:E6:73:A3:2B:7D:D6:BC:DC:0F:BC:C1:6F:37:B6:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoMHMHbmc6Mrfda83A-8wW83tqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/3t1a0St3p1nYLXBR2_rFvM4k_gk.roa
Signing time: Mon 02 Jan 2023 08:24:52 +0000
ROA not before: Mon 02 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42525
IP address blocks: 46.32.128.0/20 maxlen: 20
46.32.128.0/24 maxlen: 24
46.32.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5f:73:32:05:ec:6a:27:47:97:04:93:d6:21:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5283073076e673a32b7dd6bcdc0fbcc16f37b6a1
Validity
Not Before: Jan 2 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dedd5ad12b77a759d82d7051dbfac5bcce24fe09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:82:12:33:83:a7:f2:0e:c1:8f:55:0c:c6:dd:
d4:b7:0c:47:58:3f:46:a3:5f:c2:c8:2c:08:b1:3e:
98:12:12:2a:e4:c9:c1:eb:31:a2:fe:4d:ab:6a:86:
b9:9a:dd:4f:d7:fe:1e:e7:6a:1a:5b:b0:54:c3:c1:
34:8e:19:4f:aa:f2:e0:9c:86:0d:86:a3:c0:56:c7:
0b:6f:45:f7:69:f1:fa:85:79:d1:46:5c:41:69:e0:
ef:9f:23:e4:66:b8:88:79:5d:1f:7f:61:66:76:3b:
66:58:87:5d:ae:6a:b8:34:83:62:2e:1c:7b:4a:81:
3c:af:b3:ae:b8:a2:73:8c:1a:37:b7:f4:fa:7f:87:
a8:6e:f2:22:60:a4:38:28:d1:76:c2:b7:08:be:ae:
48:f5:c6:a1:5f:7b:2d:8d:de:53:0b:32:cb:31:db:
0c:4c:2d:38:a8:ca:bf:46:23:53:82:15:49:3d:9c:
39:b4:05:b0:b0:3c:24:89:35:45:4a:04:9b:ec:cf:
ea:7f:52:1d:5f:5c:32:d1:90:0e:1a:f7:1a:92:6c:
fa:b1:a1:34:8e:c8:11:85:62:45:4d:a5:4e:8e:52:
f7:76:ee:ed:13:a6:14:f4:a1:da:86:a3:86:8e:cf:
c2:e3:ed:0c:a2:c0:b5:43:70:b1:1a:b8:12:61:21:
7b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DD:5A:D1:2B:77:A7:59:D8:2D:70:51:DB:FA:C5:BC:CE:24:FE:09
X509v3 Authority Key Identifier:
keyid:52:83:07:30:76:E6:73:A3:2B:7D:D6:BC:DC:0F:BC:C1:6F:37:B6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoMHMHbmc6Mrfda83A-8wW83tqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/3t1a0St3p1nYLXBR2_rFvM4k_gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/27e527-e02e-4c30-a86b-3c354d618b3a/1/UoMHMHbmc6Mrfda83A-8wW83tqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.32.128.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:bc:63:1e:b6:db:9e:d5:a6:f1:9d:b8:3d:44:97:18:86:5e:
e5:b1:a6:68:3d:cc:1f:ef:b6:84:69:e2:f7:6a:10:d9:73:83:
49:3e:a9:ec:44:c2:4d:49:bf:1b:2f:24:ac:2a:e0:16:07:e5:
a7:fe:56:ca:51:cf:a3:c6:fc:62:a6:c3:62:c1:01:3e:1a:f1:
c0:6b:03:9e:25:c8:91:27:49:65:d8:2b:f1:02:e9:3d:71:61:
22:6d:cf:98:78:d1:bf:31:55:fb:c3:b5:ac:4e:5f:1f:47:09:
01:98:a2:01:b2:4e:5a:ed:8d:4d:11:58:cd:a6:fd:73:f3:8d:
b6:81:f7:97:88:49:7c:e3:02:96:c7:00:49:90:5e:9c:db:76:
cb:74:e3:77:77:4c:68:20:7f:02:95:3f:2a:8c:91:ea:93:9e:
d0:36:af:51:0a:d6:a8:e3:55:1f:72:36:c0:3c:a4:60:cd:16:
bd:db:a0:2c:c3:46:47:9a:2e:82:6f:18:98:fe:88:cd:57:b6:
5c:be:f4:2f:e6:14:14:bc:09:79:e1:76:92:a7:f7:b6:af:84:
3e:c7:75:30:1f:54:23:b7:9d:14:1e:d8:81:7c:cd:12:e6:67:
17:29:e7:11:be:23:78:10:45:85:13:2c:51:59:a6:a9:16:40:
b5:e5:c0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:04 2024 by rpki-client on console.sobornost.net