Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/51b5e1-03da-4150-bd21-15fe72b15468/1/hBda8c1t4EWIMCoK3Mkp1SMzCAY.roa
File: hBda8c1t4EWIMCoK3Mkp1SMzCAY.roa (raw, json)
Hash identifier: f9YsMhPsZkLa/lKCl4DRDdXbkDHe9d6989bUeoRgPWs=
Subject key identifier: 84:17:5A:F1:CD:6D:E0:45:88:30:2A:0A:DC:C9:29:D5:23:33:08:06
Certificate issuer: /CN=995ecde87cb10677895b662e7e77a346bc4ab1f8
Certificate serial: 018570305E2FA8CEF37C77BB15A51A677F0F
Authority key identifier: 99:5E:CD:E8:7C:B1:06:77:89:5B:66:2E:7E:77:A3:46:BC:4A:B1:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mV7N6HyxBneJW2YufnejRrxKsfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/51b5e1-03da-4150-bd21-15fe72b15468/1/hBda8c1t4EWIMCoK3Mkp1SMzCAY.roa
Signing time: Mon 02 Jan 2023 01:54:55 +0000
ROA not before: Mon 02 Jan 2023 01:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44396
IP address blocks: 194.48.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:5e:2f:a8:ce:f3:7c:77:bb:15:a5:1a:67:7f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=995ecde87cb10677895b662e7e77a346bc4ab1f8
Validity
Not Before: Jan 2 01:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84175af1cd6de04588302a0adcc929d523330806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c2:7d:15:14:95:4a:51:d8:6c:70:e8:3d:53:
1f:38:e9:c9:bc:4a:ca:d8:0e:58:cb:e4:ca:48:c3:
8d:ec:e4:a0:05:90:76:ce:b9:b2:3d:7d:a5:81:6d:
05:44:1b:a2:47:6c:99:1a:ac:ed:74:fb:e3:7e:fe:
9f:0d:f9:75:f8:2e:7a:d0:a6:9b:c6:37:28:e9:b3:
a7:9f:88:01:b4:3f:78:eb:17:ab:60:5a:c6:f9:f2:
d3:9c:01:59:f1:c9:2b:75:e8:94:57:9f:a9:57:79:
7b:b7:e4:e6:ad:b2:fe:19:e1:cb:6a:c5:39:88:a1:
78:34:b8:5d:1e:19:4e:c3:a9:e0:d5:e7:78:16:49:
b8:2d:c2:9f:a3:dd:98:b2:f9:31:f6:4d:1d:99:7c:
27:c1:54:e9:fd:d3:0e:fa:7e:47:39:0d:9b:ab:9b:
9d:f6:5e:0b:40:ef:59:ce:82:cc:59:d3:e2:2d:9c:
17:5e:23:b4:9b:84:f1:c7:de:0b:27:37:e6:40:0f:
c6:98:85:99:74:89:cc:94:11:4a:f0:e1:52:a0:c3:
a7:4b:c5:73:39:d8:8a:94:eb:55:f2:58:ec:86:6d:
81:6f:50:92:0b:de:4f:cf:00:11:b9:79:87:c0:ce:
be:67:4e:be:07:24:31:09:86:4e:38:13:9e:ce:ab:
09:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:17:5A:F1:CD:6D:E0:45:88:30:2A:0A:DC:C9:29:D5:23:33:08:06
X509v3 Authority Key Identifier:
keyid:99:5E:CD:E8:7C:B1:06:77:89:5B:66:2E:7E:77:A3:46:BC:4A:B1:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mV7N6HyxBneJW2YufnejRrxKsfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/51b5e1-03da-4150-bd21-15fe72b15468/1/hBda8c1t4EWIMCoK3Mkp1SMzCAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/51b5e1-03da-4150-bd21-15fe72b15468/1/mV7N6HyxBneJW2YufnejRrxKsfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.206.0/24
Signature Algorithm: sha256WithRSAEncryption
41:61:af:94:02:ac:d8:4b:fc:bc:43:a0:2d:b6:db:b3:ef:55:
8a:f4:99:7d:22:2b:5f:b7:7c:a6:93:98:14:2d:04:7d:58:fc:
b8:9a:68:c3:8f:5c:23:15:5b:13:2c:3b:4e:90:7b:34:e1:42:
c5:ec:26:d4:d6:70:33:2b:29:26:d9:db:54:db:08:d0:de:f4:
62:d8:8c:65:94:1b:2a:37:50:8e:d1:fe:7b:f8:3b:a0:47:a1:
c1:1f:8a:10:f6:7d:39:2e:ee:18:fe:fc:3e:59:89:d3:38:73:
14:39:4b:71:91:8b:96:d7:52:98:23:e3:56:da:91:7f:9b:65:
fa:b6:7e:4c:d9:d4:75:f1:30:bf:c0:19:57:a4:66:c3:b3:d9:
ba:fd:c8:62:9a:81:84:78:ff:98:ce:77:ad:fa:3d:f7:1d:d7:
e2:66:cc:85:80:18:1a:37:7a:22:44:a1:7f:f9:88:1b:86:9b:
a0:68:df:29:e1:52:74:26:03:72:97:68:8b:5c:fd:b9:08:81:
3c:b4:02:e8:94:fd:d1:9f:4a:32:48:5a:42:b0:84:b0:b0:90:
a8:0b:2d:95:e4:7e:96:92:b8:8b:a0:a3:c4:6d:71:bb:63:f8:
66:d1:da:6a:c2:10:fe:ee:29:96:4d:14:fc:ed:ba:b0:d5:42:
e5:37:51:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:47 2024 by rpki-client on console-fra.rpki-client.org