Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Kl7wlkkhTDOiW6Dy7rbTnV8F58s.roa
File: Kl7wlkkhTDOiW6Dy7rbTnV8F58s.roa (raw, json)
Hash identifier: MYQZnRA2GskrawOkxY8eKBWDeBJnssMotgfOYHDAF/4=
Subject key identifier: 2A:5E:F0:96:49:21:4C:33:A2:5B:A0:F2:EE:B6:D3:9D:5F:05:E7:CB
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 018B95EA59D95E69F8618D14504000D392DC
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Kl7wlkkhTDOiW6Dy7rbTnV8F58s.roa
Signing time: Fri 03 Nov 2023 16:00:45 +0000
ROA not before: Fri 03 Nov 2023 16:00:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 348449
IP address blocks: 46.20.111.0/24 maxlen: 24
46.20.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:95:ea:59:d9:5e:69:f8:61:8d:14:50:40:00:d3:92:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Nov 3 16:00:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a5ef09649214c33a25ba0f2eeb6d39d5f05e7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:35:70:55:a6:b1:13:59:0e:72:f8:7e:33:cf:
46:c2:ef:f2:c7:13:8d:59:e1:a7:71:72:00:3f:cf:
25:02:25:c8:de:94:29:e8:6c:70:8f:28:e2:58:14:
98:5d:38:d0:3c:ca:73:b3:84:ba:85:e8:f1:e3:5d:
42:22:5e:51:9a:89:0b:22:5a:db:38:68:bb:23:19:
01:8b:c3:e9:e8:39:ba:18:62:fe:56:ce:5b:e5:e5:
73:9b:e0:0d:9f:2a:5d:22:02:20:30:39:01:1e:1b:
bc:79:c5:81:28:da:80:f0:1e:d6:1a:77:bc:6a:a1:
49:e5:ac:de:3c:06:7e:45:03:2c:15:89:da:f0:5b:
18:7d:21:c0:c4:c9:a2:03:b1:ef:76:67:8e:a3:66:
f4:dd:8b:f6:69:70:ce:1f:6a:c5:72:3c:a8:40:5b:
c4:f4:f2:12:d9:ad:37:34:5e:72:28:15:0d:81:3c:
45:16:98:c2:3b:1b:14:48:61:6e:43:93:61:47:e4:
65:90:08:60:b6:73:15:19:c3:7f:52:84:5a:50:3c:
8e:08:2b:88:06:fa:4f:11:b4:dd:52:64:a5:32:01:
54:b0:cf:0f:8f:25:51:4e:4f:d1:1d:23:ca:44:3d:
7c:f1:1f:11:8e:86:f2:c7:f8:11:f9:bf:6f:61:be:
d2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:5E:F0:96:49:21:4C:33:A2:5B:A0:F2:EE:B6:D3:9D:5F:05:E7:CB
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Kl7wlkkhTDOiW6Dy7rbTnV8F58s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.97.0/24
46.20.111.0/24
Signature Algorithm: sha256WithRSAEncryption
96:db:ae:3d:b5:e2:31:e5:9c:fd:47:9f:5c:b5:99:21:10:73:
b6:b0:92:2f:fe:29:d5:54:a0:82:6b:45:36:90:f4:b7:5d:bc:
0c:8d:17:ab:80:e9:e8:2e:f9:55:e3:30:97:74:37:09:2b:f6:
48:65:72:6e:7c:2b:47:1e:c5:5f:47:65:8a:c6:ad:33:fb:8d:
6d:70:36:0b:bf:7d:4c:e0:31:d5:2f:93:89:74:cc:81:cf:c9:
14:c5:7e:69:28:57:23:ba:06:21:3b:16:e1:fc:bb:73:f6:20:
df:f4:b3:a4:12:ff:17:66:68:11:fd:f4:25:b2:2a:fc:2b:87:
4f:b0:29:5b:5b:13:fc:4e:a2:37:c3:a4:01:2f:71:34:20:ad:
23:b5:94:d5:b5:ed:ab:62:9c:ff:b5:4e:c0:e7:bd:1c:32:d3:
3c:0d:f9:45:e3:06:e4:a4:10:54:ed:ec:e4:18:dd:a1:f7:b6:
e9:b0:b2:a0:9e:a6:48:d6:8e:09:3d:4b:7c:23:cb:9d:34:9a:
59:28:69:5f:fe:93:93:32:d4:22:0b:e7:4d:c1:8e:58:82:1b:
ac:cf:b5:24:b8:12:63:b6:17:7d:ef:d5:d9:0d:5f:05:69:ba:
16:2e:9d:93:e3:0e:c0:6b:10:f6:fe:05:ab:14:57:f9:75:e4:
2c:03:96:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:26 2023 by rpki-client on console.sobornost.net