Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/ee9c81-6d67-4e33-bd1f-1348ec97b902/1/HzxVo0fvNE6dBWzdsLHzuIJ0coE.roa
File: HzxVo0fvNE6dBWzdsLHzuIJ0coE.roa (raw, json)
Hash identifier: wJ/mQyfopP91nD0Lh84DKKSWg7qPIRoxKq+HQjpfj+s=
Subject key identifier: 1F:3C:55:A3:47:EF:34:4E:9D:05:6C:DD:B0:B1:F3:B8:82:74:72:81
Certificate issuer: /CN=f174a1a42d40a7fb82a6c08ce97651cb66abf370
Certificate serial: 01857C161AFFEDFF02FEA6161046FDEFBDB8
Authority key identifier: F1:74:A1:A4:2D:40:A7:FB:82:A6:C0:8C:E9:76:51:CB:66:AB:F3:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8XShpC1Ap_uCpsCM6XZRy2ar83A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/ee9c81-6d67-4e33-bd1f-1348ec97b902/1/HzxVo0fvNE6dBWzdsLHzuIJ0coE.roa
Signing time: Wed 04 Jan 2023 09:21:41 +0000
ROA not before: Wed 04 Jan 2023 09:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197320
IP address blocks: 195.20.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:16:1a:ff:ed:ff:02:fe:a6:16:10:46:fd:ef:bd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f174a1a42d40a7fb82a6c08ce97651cb66abf370
Validity
Not Before: Jan 4 09:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f3c55a347ef344e9d056cddb0b1f3b882747281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:3b:d6:61:7a:fd:e0:d0:4c:e8:c0:52:60:a5:
24:2f:6d:d1:1e:f3:ed:11:e7:de:1e:9b:ff:f0:75:
86:4c:4d:18:e6:31:77:37:a1:71:e9:1a:26:35:70:
6a:15:77:b7:bf:b9:24:dc:98:9c:b3:74:83:89:10:
a1:52:08:e9:4f:99:c6:d2:a9:1e:78:95:71:64:f4:
d9:e1:12:04:71:9c:01:e2:fc:3e:00:08:67:23:38:
e8:19:0b:97:84:5f:65:f3:08:5f:4c:b1:fa:74:b0:
cd:15:0e:d2:66:c3:a5:f2:9e:47:0c:8a:af:15:90:
fe:29:4b:4b:c1:0b:4a:fa:b1:b4:20:8d:eb:a4:0d:
e4:0e:76:28:7a:b9:c6:e8:10:03:f9:57:28:1f:c9:
0a:65:49:9a:89:ad:70:71:2b:1e:00:22:b2:8f:31:
be:34:33:e2:a8:8a:52:33:f3:45:13:18:25:9a:03:
6d:11:3e:86:c4:4a:4e:72:a1:cb:47:07:25:66:53:
2f:26:85:2e:1f:5c:52:62:ae:6f:df:cc:7f:85:57:
41:55:5d:65:a6:46:23:fa:0c:cc:3e:b1:16:b1:24:
cc:33:04:bc:22:ea:69:81:8b:77:4b:12:1a:30:d7:
28:22:88:ce:08:8e:00:d3:01:93:60:9e:9b:87:03:
79:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3C:55:A3:47:EF:34:4E:9D:05:6C:DD:B0:B1:F3:B8:82:74:72:81
X509v3 Authority Key Identifier:
keyid:F1:74:A1:A4:2D:40:A7:FB:82:A6:C0:8C:E9:76:51:CB:66:AB:F3:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8XShpC1Ap_uCpsCM6XZRy2ar83A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/ee9c81-6d67-4e33-bd1f-1348ec97b902/1/HzxVo0fvNE6dBWzdsLHzuIJ0coE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/ee9c81-6d67-4e33-bd1f-1348ec97b902/1/8XShpC1Ap_uCpsCM6XZRy2ar83A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.20.155.0/24
Signature Algorithm: sha256WithRSAEncryption
01:64:1b:30:41:e0:77:8e:00:20:1a:88:a2:3e:30:a3:a7:ff:
ae:18:eb:1d:8f:dc:51:36:31:ba:fd:ca:5f:95:fa:d3:f8:c9:
fc:c2:a4:fc:04:d4:87:33:7a:99:a4:4c:d0:30:24:53:6b:de:
b7:37:62:fe:06:23:a8:e4:ee:bb:5d:9b:94:aa:f7:e1:24:fe:
31:4b:cf:e3:58:31:ee:1c:64:ca:f4:08:9f:1a:2d:63:9d:02:
20:a8:d3:56:17:c2:4b:b0:32:2a:e9:ca:a4:08:7f:00:c1:36:
4b:3c:2e:9b:25:c0:d0:9e:c4:3b:df:e4:fd:66:74:e2:28:9a:
32:5c:bc:c4:60:f2:1a:1d:bd:69:a5:14:50:27:b7:87:27:05:
67:5d:d1:7f:ef:c8:cb:42:73:e9:19:83:06:50:23:52:9a:2f:
69:3a:5a:ab:99:0c:83:a2:a5:d9:31:39:c7:75:c2:be:f7:48:
79:38:4f:7d:d4:64:a9:1f:b5:60:75:30:e4:42:ed:62:c0:91:
61:04:dd:7a:4a:9f:51:b4:98:90:dd:a4:f6:c9:c1:a0:74:a8:
c5:e5:f9:76:29:65:cf:87:c6:43:2e:f4:41:3a:77:09:82:0a:
66:1f:e6:87:3d:57:69:a7:c2:d7:67:c4:9b:5b:2d:74:a8:53:
b7:b4:23:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:57 2024 by rpki-client on console-fra.rpki-client.org