Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/dLvDkO67kAaJXQUMRFUuYmAxls4.roa
File: dLvDkO67kAaJXQUMRFUuYmAxls4.roa (raw, json)
Hash identifier: mCeNmq42sbtQ0SSi3P9dXmwUxA8QI8qMvvsPvBQrfBw=
Subject key identifier: 74:BB:C3:90:EE:BB:90:06:89:5D:05:0C:44:55:2E:62:60:31:96:CE
Certificate issuer: /CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Certificate serial: 0185701EDBC37C8660A7459F11869E5326E8
Authority key identifier: 59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/dLvDkO67kAaJXQUMRFUuYmAxls4.roa
Signing time: Mon 02 Jan 2023 01:35:48 +0000
ROA not before: Mon 02 Jan 2023 01:35:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 46.20.15.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:db:c3:7c:86:60:a7:45:9f:11:86:9e:53:26:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Validity
Not Before: Jan 2 01:35:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74bbc390eebb9006895d050c44552e62603196ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9f:18:98:f3:30:ea:3a:73:fc:9e:70:2b:31:
6e:55:6c:ab:30:1d:6d:9d:65:b2:da:d2:c1:ff:3f:
f9:9b:0b:b7:74:c2:83:46:29:78:d2:83:93:04:2a:
19:55:1f:02:3e:9a:f2:29:8a:0f:4c:ec:76:7d:e8:
c9:d1:2d:01:9a:ae:1f:2c:e2:21:35:04:18:da:22:
64:45:1e:a4:49:54:96:ae:2c:97:5e:fd:08:ec:94:
09:a5:a2:83:82:aa:0b:c0:8d:81:ef:87:d9:ca:1f:
6b:f9:21:16:32:71:3a:d9:bd:31:9b:55:0b:ff:54:
ec:8d:fa:28:32:00:0e:30:d9:6a:ff:45:1b:06:2d:
5f:b5:79:30:1a:7c:7d:28:2c:4b:bb:65:d2:e1:71:
15:04:73:38:ea:74:4f:f3:8e:6d:8d:64:9c:48:64:
ff:79:71:54:73:5b:e7:3d:f9:0b:b8:13:11:a8:a8:
ba:e8:d1:3c:3f:f1:4c:60:64:e4:9b:6d:c9:b5:d8:
6f:73:03:f9:d0:a6:45:05:52:b6:a8:c5:38:40:21:
83:e2:b0:96:d1:83:85:1f:24:85:2d:a3:11:12:88:
24:ff:89:db:62:95:ae:ef:a3:36:cc:e9:ec:4b:74:
e2:d3:3e:8b:32:28:05:b3:be:67:cd:67:01:52:fd:
60:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BB:C3:90:EE:BB:90:06:89:5D:05:0C:44:55:2E:62:60:31:96:CE
X509v3 Authority Key Identifier:
keyid:59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/dLvDkO67kAaJXQUMRFUuYmAxls4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.15.0/24
Signature Algorithm: sha256WithRSAEncryption
25:2b:0d:10:cb:99:06:24:39:b5:99:31:21:69:5a:7f:5e:59:
e9:e1:1a:0d:f7:59:64:fd:31:96:76:69:7f:96:a3:77:a1:dd:
91:20:86:25:d3:23:61:8b:af:fc:10:0c:50:6c:6e:9c:2c:4d:
28:7b:00:88:08:da:fd:85:38:6f:86:01:70:13:02:80:c9:2c:
7e:be:c5:f5:07:9c:c5:96:56:1d:5c:96:97:3f:d0:d5:06:71:
31:90:fb:12:26:89:56:dc:89:bb:4b:86:e6:6a:5b:9e:9a:3e:
08:fe:e3:c7:7e:8e:62:b4:43:5c:90:33:79:c4:b7:e6:08:99:
5f:0c:11:30:b9:71:55:ae:4d:4d:6d:69:ed:db:e9:c7:cd:ce:
c4:c4:b1:b2:67:2c:28:a1:51:b3:bc:b8:54:b6:86:bb:e6:13:
5c:43:04:5a:9f:5a:f8:d4:ea:40:00:76:63:a9:82:49:1d:dc:
64:ab:12:9c:bd:d6:4d:04:99:75:a1:1e:ea:e4:25:e6:89:d0:
bc:f4:ed:33:cc:d1:46:6a:a3:b1:b9:f9:79:98:72:18:1b:67:
9c:cb:8b:78:49:e6:1d:d7:c6:34:6c:f0:ee:10:cb:87:c7:e8:
ee:6e:75:ed:05:d8:85:f2:c0:87:93:7b:31:ba:a2:e6:d8:9d:
0d:7e:9a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:01 2023 by rpki-client on console.sobornost.net