Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/hJbUCpjbmkYbrkMcnL1r9RpsznA.roa
File: hJbUCpjbmkYbrkMcnL1r9RpsznA.roa (raw, json)
Hash identifier: S2Ls2sb0gnB3FQOy2ulBfGstomCvuXIeirJ7FyIb+Gw=
Subject key identifier: 84:96:D4:0A:98:DB:9A:46:1B:AE:43:1C:9C:BD:6B:F5:1A:6C:CE:70
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 01856C6F2AACBAB1A2172B23D122E2B6FB2B
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/hJbUCpjbmkYbrkMcnL1r9RpsznA.roa
Signing time: Sun 01 Jan 2023 08:25:02 +0000
ROA not before: Sun 01 Jan 2023 08:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34253
IP address blocks: 194.242.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:2a:ac:ba:b1:a2:17:2b:23:d1:22:e2:b6:fb:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Jan 1 08:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8496d40a98db9a461bae431c9cbd6bf51a6cce70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c1:ba:8a:1d:76:a2:e9:cf:92:19:17:0a:e9:
1c:cf:7d:e9:0d:83:c3:55:f5:1b:2a:dc:27:f7:37:
0e:94:d5:05:0c:f2:9e:81:c9:6f:ba:38:0d:a8:1e:
5f:41:9c:70:be:36:e5:e3:ac:8e:05:92:85:2f:fa:
20:71:ab:bb:6d:e1:5e:49:92:ec:1c:5f:cc:83:0c:
e1:4d:8c:e6:55:c8:f2:20:fb:b0:e6:ae:76:74:f6:
11:b5:b2:d7:92:00:2a:b6:ca:25:a9:25:31:42:e6:
82:23:cc:66:76:f4:b9:e5:c6:18:3b:ca:63:5d:87:
26:aa:a8:70:2e:b1:76:8f:1c:a9:6c:36:d0:62:ab:
c9:3e:6d:08:6d:60:c9:3d:78:ac:4a:e2:7e:52:e7:
3f:d7:9d:08:0c:d0:58:c9:4e:7b:cf:0b:0e:55:f2:
c9:90:96:e9:07:57:e9:bc:b8:ac:b0:9b:a6:a7:02:
46:18:17:a4:ac:20:96:f7:18:e3:bc:56:c5:35:f2:
94:b0:44:22:75:97:90:a5:cb:7c:49:3b:bd:12:2e:
51:4a:e0:2a:a3:ac:dd:fb:08:20:f7:28:e1:44:ae:
da:33:9a:bc:3a:9b:a1:4e:17:bc:5a:c6:46:7b:76:
44:e9:84:e6:06:86:09:4f:11:60:dc:2d:72:3f:b1:
cc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:96:D4:0A:98:DB:9A:46:1B:AE:43:1C:9C:BD:6B:F5:1A:6C:CE:70
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/hJbUCpjbmkYbrkMcnL1r9RpsznA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.55.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:76:7f:c3:9a:37:f4:85:ed:29:61:4b:b4:42:41:5c:17:58:
35:8f:ed:33:d8:1f:5d:c7:69:fb:8a:6b:3f:5d:17:be:51:c9:
fa:2f:2a:1c:ba:1c:06:f7:5c:98:e8:36:15:3f:21:d6:53:82:
b3:c1:db:1b:64:fb:69:cd:86:16:b8:92:89:e7:c2:07:be:b7:
e1:95:8c:be:b3:ba:b8:25:6f:20:1b:1e:b5:84:dd:dc:b9:90:
33:cc:00:ea:56:f2:30:98:0d:24:54:74:eb:17:e9:1c:14:66:
2e:19:06:0b:8e:7d:cd:7b:8d:ac:4d:0a:fd:34:5b:0e:bd:58:
23:26:36:c0:6c:5b:e5:c3:40:59:91:2b:78:1c:22:6b:ab:6a:
3f:25:27:3f:ac:6d:e7:49:0c:2a:3d:8e:35:39:e1:93:2f:59:
80:15:58:9b:61:9a:8a:2a:68:dd:63:f5:1d:34:e9:5d:90:42:
14:ef:8d:58:e4:88:f7:1b:99:ce:58:cf:d1:22:10:1c:99:0f:
f3:17:ea:ef:e5:8b:38:00:ab:ba:68:ae:a1:e7:01:71:98:98:
41:2f:b8:26:c9:c4:23:19:12:0a:c2:3a:31:b9:cd:d7:f7:c9:
10:30:6e:3d:76:34:e8:bf:d2:f4:b1:70:73:46:27:e5:32:d1:
34:78:74:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:03 2024 by rpki-client on console-ams.rpki-client.org