Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/hWKLYari72dn10KInmVpKyUzqeE.roa
File: hWKLYari72dn10KInmVpKyUzqeE.roa (raw, json)
Hash identifier: i5Es+tmCVHLO8yoFALhrpRuK4HUNtKo/OehDPpY/45E=
Subject key identifier: 85:62:8B:61:AA:E2:EF:67:67:D7:42:88:9E:65:69:2B:25:33:A9:E1
Certificate issuer: /CN=ca58aeb4129f8e2c9bc42cd19185c8d7f0e6eaf9
Certificate serial: 018B4430A8309DAFB03E32B721FAF383ECA3
Authority key identifier: CA:58:AE:B4:12:9F:8E:2C:9B:C4:2C:D1:91:85:C8:D7:F0:E6:EA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yliutBKfjiybxCzRkYXI1_Dm6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/hWKLYari72dn10KInmVpKyUzqeE.roa
Signing time: Wed 18 Oct 2023 19:08:41 +0000
ROA not before: Wed 18 Oct 2023 19:08:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45049
IP address blocks: 194.113.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Oct 2023 21:18:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:30:a8:30:9d:af:b0:3e:32:b7:21:fa:f3:83:ec:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca58aeb4129f8e2c9bc42cd19185c8d7f0e6eaf9
Validity
Not Before: Oct 18 19:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85628b61aae2ef6767d742889e65692b2533a9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:8b:e8:45:dd:d6:7f:fd:34:78:b8:7f:61:
d4:5d:cb:be:ab:e1:9c:fd:3a:e3:4e:f0:00:36:89:
68:09:14:a1:5a:6d:21:7a:66:cf:fe:40:8f:04:22:
2e:f8:28:8c:27:02:e6:07:28:84:6e:b9:2d:4d:5f:
48:f1:da:cb:7a:14:af:7d:28:a6:14:b7:6c:1e:db:
1d:53:ca:32:76:67:99:73:03:d9:f9:ba:6b:79:04:
f4:11:9d:a7:fd:2a:91:56:06:0c:d8:1f:c0:61:5a:
cd:ca:8b:b5:9c:48:43:b8:69:cd:f0:29:79:45:71:
43:a1:bc:37:8b:cf:e9:ff:d6:cf:ef:03:1b:f0:4a:
94:17:3e:90:ee:c1:76:c1:47:07:d3:04:30:30:26:
5c:02:21:05:58:7f:78:a8:c0:b1:2e:2b:eb:5e:eb:
e0:30:67:d3:e1:23:a8:46:6f:c7:42:e4:82:d2:25:
25:72:3e:59:62:a2:20:43:1e:47:38:be:29:8f:df:
14:78:93:89:60:10:a8:77:e1:d4:a4:2e:82:c6:a8:
e9:07:0e:fe:e9:42:85:2d:22:da:26:f6:bd:d4:ef:
90:a6:85:d2:f7:91:c4:d5:13:1f:9d:9b:f2:b4:0d:
eb:a2:00:12:e7:0f:72:0e:38:4d:6c:fa:3a:98:5d:
a9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:62:8B:61:AA:E2:EF:67:67:D7:42:88:9E:65:69:2B:25:33:A9:E1
X509v3 Authority Key Identifier:
keyid:CA:58:AE:B4:12:9F:8E:2C:9B:C4:2C:D1:91:85:C8:D7:F0:E6:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yliutBKfjiybxCzRkYXI1_Dm6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/hWKLYari72dn10KInmVpKyUzqeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8f0218-543d-4943-8e3c-aef1b34a287d/1/yliutBKfjiybxCzRkYXI1_Dm6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.116.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:7e:c9:fc:23:3c:84:1d:3e:66:3b:0c:e8:bb:7e:46:f8:e4:
8c:a2:91:72:4a:4a:8a:d7:00:34:cf:e3:e2:7b:3c:7a:24:88:
ea:f3:a5:06:cb:71:19:6b:cd:2c:75:e4:b1:76:a2:cb:11:dc:
74:f7:98:63:1e:fc:c5:92:d5:6b:11:ec:f7:45:79:d2:27:ea:
58:91:ac:2a:25:33:91:30:9f:cd:f0:e1:df:a6:a3:99:51:1e:
73:64:33:c5:c6:f8:1c:57:71:45:50:e6:bc:1c:10:8b:3b:ca:
8f:f2:7e:e1:d1:bb:e0:93:2c:86:da:8a:db:81:f3:df:67:d3:
c0:97:09:4e:3b:cc:ff:41:95:90:26:78:ef:8e:76:21:74:aa:
dc:47:47:c7:1f:2f:cf:ca:80:98:31:62:35:fe:7b:96:1f:e2:
e6:a4:a0:6c:a9:dd:b6:28:2b:78:7f:77:1d:33:21:34:63:ba:
1a:2d:1f:e7:5d:f1:27:fa:27:33:3f:fe:94:33:7d:85:f6:5f:
86:57:85:69:c1:40:e4:54:59:d5:5c:d0:f3:90:23:fc:eb:1e:
96:b0:7b:61:48:26:b9:df:c2:ee:02:34:cf:99:c9:ca:7d:59:
ec:ad:47:4c:f1:e0:ba:dd:ec:81:89:b5:aa:b0:fb:87:5d:98:
50:a4:02:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:54 2024 by rpki-client on console-ams.rpki-client.org