Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8141dd-449b-4d1f-811a-d6190ccf7857/1/HNtf6AhkmirkXzgFZcIuJiJ7FgI.roa
File: HNtf6AhkmirkXzgFZcIuJiJ7FgI.roa (raw, json)
Hash identifier: IZwMG3SrphKIYT0rD+yPXMa5gIAuMyNOxqFwK33PQBk=
Subject key identifier: 1C:DB:5F:E8:08:64:9A:2A:E4:5F:38:05:65:C2:2E:26:22:7B:16:02
Certificate issuer: /CN=42fe55e6288a1b4702f9ebe7f8c6060b6cfbb1bc
Certificate serial: 0186B614C756D4F85F95626B90ACDD4221C7
Authority key identifier: 42:FE:55:E6:28:8A:1B:47:02:F9:EB:E7:F8:C6:06:0B:6C:FB:B1:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qv5V5iiKG0cC-evn-MYGC2z7sbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8141dd-449b-4d1f-811a-d6190ccf7857/1/HNtf6AhkmirkXzgFZcIuJiJ7FgI.roa
Signing time: Mon 06 Mar 2023 08:41:00 +0000
ROA not before: Mon 06 Mar 2023 08:41:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15703
IP address blocks: 194.50.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:14:c7:56:d4:f8:5f:95:62:6b:90:ac:dd:42:21:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42fe55e6288a1b4702f9ebe7f8c6060b6cfbb1bc
Validity
Not Before: Mar 6 08:41:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cdb5fe808649a2ae45f380565c22e26227b1602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9f:ef:b7:80:09:25:c2:2f:3c:44:29:9b:19:
fd:c7:17:53:a3:0f:a3:62:6d:6f:90:ad:27:20:79:
69:77:23:1a:f9:79:b5:d0:99:1f:fc:9a:54:e5:cf:
37:26:4f:ac:8a:6d:2e:38:34:71:ec:2d:60:22:ef:
52:90:e0:77:fc:24:70:c4:64:50:08:bb:0f:d4:59:
b1:9d:a5:5a:94:9d:4d:59:59:b3:1c:23:e5:97:37:
19:64:db:8d:54:01:23:c6:ed:ca:7b:7d:f0:c9:6e:
3d:5b:fb:78:5b:22:4f:b6:6c:b2:cb:66:7b:a2:0d:
bc:5a:f8:7d:60:ae:4b:cb:42:ce:18:8f:40:5d:4b:
bd:8a:26:c5:52:c0:40:8f:cb:35:42:34:06:0a:73:
fc:af:89:75:0a:23:4c:ae:60:2b:61:96:67:8e:0d:
e2:1a:17:72:38:00:84:1b:58:09:5b:a0:a3:d8:4d:
37:70:dd:d6:3c:15:6c:c8:16:c4:dc:4b:67:8f:c7:
a2:63:c0:cd:f0:59:ff:a2:aa:e4:d8:62:a3:a8:58:
ed:36:d9:e0:2d:3b:c0:66:d4:b6:d4:30:93:51:fa:
ad:e4:49:95:d4:1a:4d:c9:3c:65:56:ea:6b:11:cf:
fa:c4:ee:99:53:5c:f2:ca:0b:ac:94:a4:df:25:e1:
97:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DB:5F:E8:08:64:9A:2A:E4:5F:38:05:65:C2:2E:26:22:7B:16:02
X509v3 Authority Key Identifier:
keyid:42:FE:55:E6:28:8A:1B:47:02:F9:EB:E7:F8:C6:06:0B:6C:FB:B1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qv5V5iiKG0cC-evn-MYGC2z7sbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8141dd-449b-4d1f-811a-d6190ccf7857/1/HNtf6AhkmirkXzgFZcIuJiJ7FgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8141dd-449b-4d1f-811a-d6190ccf7857/1/Qv5V5iiKG0cC-evn-MYGC2z7sbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.112.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:90:54:c6:13:fc:e4:34:7b:97:3a:57:ae:dd:d5:fe:d2:86:
81:25:89:90:2b:d7:cb:28:51:e9:af:60:bf:a4:25:4f:c4:99:
84:1d:87:a5:24:94:89:d4:44:33:8d:e1:9b:16:2c:e4:36:11:
75:fd:de:0d:ec:63:d3:b2:8b:d5:c9:d3:e0:75:6b:46:02:50:
de:cf:f2:51:be:29:7a:dc:ec:5b:a7:2b:88:62:bf:cb:f1:f8:
a4:d4:ff:a9:ff:23:47:8b:e2:69:04:c4:d7:55:5e:5f:08:35:
01:0f:4c:9c:52:2c:78:98:22:4a:4d:ff:3a:9c:2d:af:4f:b7:
b6:6c:49:e2:87:45:03:5f:ce:f6:ba:7d:a5:cc:56:4e:d5:56:
14:5c:b8:78:52:e4:a7:e2:ac:31:73:b4:0e:34:96:62:74:45:
ea:e7:b9:d4:eb:f9:f8:08:35:f9:a8:4d:96:48:d9:2d:68:bf:
e7:5e:95:f4:ed:18:a7:a6:b5:b1:8f:97:76:eb:aa:7e:c2:62:
e0:2e:77:bc:0e:88:98:2b:5d:6f:58:10:e8:4a:3d:52:a8:aa:
c7:fb:f3:74:ca:4b:15:9d:94:41:11:ff:ab:e6:24:91:6a:fb:
17:f4:a1:f7:fd:88:ad:c0:de:e8:de:5b:a6:75:74:e7:6e:49:
a2:79:91:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:20 2024 by rpki-client on console-ams.rpki-client.org