Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/h1S1PKt-uoOpAk5RWFD5F61vkhA.roa
File: h1S1PKt-uoOpAk5RWFD5F61vkhA.roa (raw, json)
Hash identifier: 76aERPsc3qqgnjP4J9vJi/ypcKsfWdJYPuKmSFQ1Sps=
Subject key identifier: 87:54:B5:3C:AB:7E:BA:83:A9:02:4E:51:58:50:F9:17:AD:6F:92:10
Certificate issuer: /CN=dff1113bfc892d1df49a166047cb8c2aaeca768e
Certificate serial: 0185704BA3823073F668BFF52C1F922512F3
Authority key identifier: DF:F1:11:3B:FC:89:2D:1D:F4:9A:16:60:47:CB:8C:2A:AE:CA:76:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_ERO_yJLR30mhZgR8uMKq7Kdo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/h1S1PKt-uoOpAk5RWFD5F61vkhA.roa
Signing time: Mon 02 Jan 2023 02:24:43 +0000
ROA not before: Mon 02 Jan 2023 02:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49522
IP address blocks: 194.165.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:a3:82:30:73:f6:68:bf:f5:2c:1f:92:25:12:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff1113bfc892d1df49a166047cb8c2aaeca768e
Validity
Not Before: Jan 2 02:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8754b53cab7eba83a9024e515850f917ad6f9210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c2:ff:c4:13:d0:7f:d8:9a:e2:fc:3f:c2:4b:
48:7d:7f:61:f9:37:38:f0:a3:f4:43:c7:2a:cb:d6:
b5:43:8e:82:5f:e5:90:29:0d:4b:ae:c5:9d:14:c0:
d9:70:a7:3b:61:0a:cb:2b:c8:17:ff:8e:f2:90:d1:
e7:05:1e:2f:90:3a:35:66:88:41:b5:c2:4d:4b:be:
15:42:12:d1:15:bb:4c:c0:76:77:01:a2:f7:32:05:
34:db:a8:e1:dc:80:e2:59:0e:f8:22:85:f7:37:ee:
09:cc:60:58:17:24:61:9b:34:8c:f9:52:88:68:9c:
74:fc:78:22:a6:92:cf:ac:d2:63:6c:e8:fa:8b:e4:
e9:5a:83:0e:2e:c0:16:fa:d3:94:e1:4d:9c:21:04:
74:f3:b2:e6:1a:bc:95:da:8c:46:89:df:73:d2:b3:
b7:90:27:47:c9:0b:5f:fc:d4:ea:56:3b:53:59:10:
1f:36:96:00:31:ec:0a:a6:e5:fe:de:e1:eb:94:c8:
16:05:ad:e7:43:af:96:d5:e7:7d:7a:bf:4a:22:0f:
eb:3f:5c:d4:ee:0e:bb:99:64:61:45:fc:57:4a:c3:
1d:c9:31:12:2f:98:76:b0:78:c5:a5:c8:ac:96:0e:
a6:e1:e4:68:f1:28:6e:8c:41:8c:b0:21:71:3f:3a:
b8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:54:B5:3C:AB:7E:BA:83:A9:02:4E:51:58:50:F9:17:AD:6F:92:10
X509v3 Authority Key Identifier:
keyid:DF:F1:11:3B:FC:89:2D:1D:F4:9A:16:60:47:CB:8C:2A:AE:CA:76:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_ERO_yJLR30mhZgR8uMKq7Kdo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/h1S1PKt-uoOpAk5RWFD5F61vkhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/3_ERO_yJLR30mhZgR8uMKq7Kdo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.55.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:3f:c4:d5:b2:41:fc:57:89:19:15:3f:2a:b7:94:17:df:57:
e5:b3:14:08:eb:32:98:f0:60:0c:d8:e1:0d:10:87:10:7c:c8:
11:3e:20:8e:78:5e:5b:83:af:96:da:1a:24:ee:e7:61:f5:19:
1d:38:74:18:b9:26:3f:f1:9c:7f:f0:f3:c0:d3:99:3c:fe:65:
f5:2e:ed:a6:48:00:9e:31:08:d7:97:7c:f2:7b:30:b0:d4:56:
fd:68:c6:a2:49:64:a0:c2:95:6a:27:5d:ce:42:fe:d5:c2:06:
dd:33:c4:6e:82:e6:48:5b:77:dd:81:17:7f:f5:df:30:2e:57:
1f:cb:55:c8:3f:39:7d:45:92:49:d4:bc:fa:bc:d4:bc:2f:74:
92:8c:07:07:83:59:56:bc:f5:c5:7c:f1:40:b5:1c:5b:eb:4a:
09:b4:be:af:b3:72:7e:09:4a:85:e8:14:66:ca:d9:ba:27:b3:
b2:ca:2e:56:4b:06:b5:d0:31:f0:f0:64:a0:f5:f6:66:55:70:
f2:08:4c:75:8a:e2:ab:1d:7a:d1:a3:43:ad:41:11:35:9f:d1:
83:ba:b1:22:18:92:0d:fc:a9:b0:ac:a1:e4:46:ed:ee:5f:e6:
1c:c5:eb:e8:90:0d:9a:62:4e:92:19:56:97:d1:0e:9d:15:60:
86:08:f0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:30 2024 by rpki-client on console-ams.rpki-client.org