Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/HEmpv6CdnbZxODdsaljHhnpvOPU.roa
File: HEmpv6CdnbZxODdsaljHhnpvOPU.roa (raw, json)
Hash identifier: e5yI69b0XpIpDzVresGaXK1s02EuiSZSoEcQoE0dIck=
Subject key identifier: 1C:49:A9:BF:A0:9D:9D:B6:71:38:37:6C:6A:58:C7:86:7A:6F:38:F5
Certificate issuer: /CN=9aeecb353f1cdc5fd3a9d54a8873531efd285c46
Certificate serial: 018570B09DC8316028C68E5869A66F28197D
Authority key identifier: 9A:EE:CB:35:3F:1C:DC:5F:D3:A9:D5:4A:88:73:53:1E:FD:28:5C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu7LNT8c3F_TqdVKiHNTHv0oXEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/HEmpv6CdnbZxODdsaljHhnpvOPU.roa
Signing time: Mon 02 Jan 2023 04:15:00 +0000
ROA not before: Mon 02 Jan 2023 04:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 195.96.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:9d:c8:31:60:28:c6:8e:58:69:a6:6f:28:19:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aeecb353f1cdc5fd3a9d54a8873531efd285c46
Validity
Not Before: Jan 2 04:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c49a9bfa09d9db67138376c6a58c7867a6f38f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:bf:b6:12:36:d1:71:e4:33:dc:dc:99:a3:
8b:db:0f:30:89:76:c2:e5:52:52:15:6f:d4:fe:9c:
2e:21:ce:0e:d3:b6:56:69:bc:aa:f8:c0:ba:c0:86:
55:aa:10:7c:03:8e:91:d8:72:24:2d:a9:a4:aa:39:
98:8a:be:91:8a:3f:2d:e6:d8:60:e6:6d:bc:84:1e:
08:7d:2e:44:27:15:ad:35:74:d4:75:bc:c8:17:c8:
8c:34:81:fb:80:25:8c:09:4d:4e:6a:4c:dc:15:61:
4f:2d:01:e0:4d:c0:80:7d:ce:75:c6:30:63:f7:6e:
26:5a:1a:c9:38:55:a9:15:30:95:ab:5e:3c:33:27:
b7:73:6e:e2:c0:67:9f:ff:c6:2f:98:3f:67:ea:af:
19:5a:a1:50:64:bd:7b:61:d3:f2:2d:31:d7:19:7f:
28:21:36:f7:74:c1:d8:c2:07:3e:f1:0e:f7:59:a8:
ad:ae:33:2d:5c:09:9a:1c:fd:49:e2:4e:3b:d4:9f:
f7:49:05:61:99:67:e9:a8:08:d2:0c:95:9e:5c:45:
8d:2a:83:02:2f:2d:06:27:dc:b3:c2:01:3c:e0:c0:
58:5b:43:33:8d:5c:53:76:69:65:b3:1d:ba:41:dc:
4d:7b:ac:63:5f:23:9f:e1:50:a9:28:0e:02:60:0b:
a8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:49:A9:BF:A0:9D:9D:B6:71:38:37:6C:6A:58:C7:86:7A:6F:38:F5
X509v3 Authority Key Identifier:
keyid:9A:EE:CB:35:3F:1C:DC:5F:D3:A9:D5:4A:88:73:53:1E:FD:28:5C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu7LNT8c3F_TqdVKiHNTHv0oXEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/HEmpv6CdnbZxODdsaljHhnpvOPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/15863b-787f-4084-b7f6-5944960e31cf/1/mu7LNT8c3F_TqdVKiHNTHv0oXEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.138.0/24
Signature Algorithm: sha256WithRSAEncryption
08:94:59:a7:08:b7:03:14:0f:c5:c8:1c:ab:c2:b0:44:3c:9a:
2d:0c:0b:01:5c:f8:6d:c3:a7:47:bf:54:8e:57:12:5e:f8:1c:
3c:12:19:d2:c4:e7:7e:52:f8:82:2f:1e:8c:03:97:09:e1:5b:
9e:73:c0:78:f1:f6:b3:ed:0a:b8:48:17:11:8b:b2:aa:ae:12:
d7:a1:7e:05:47:51:64:e3:65:82:8d:d2:fb:af:a8:92:41:72:
80:f1:d5:7c:cf:bd:5f:60:b8:43:41:63:4d:41:19:a2:7e:3f:
de:05:98:af:88:e3:88:98:01:02:4a:65:af:7b:1c:e4:6f:37:
09:17:06:ea:71:8a:6c:27:88:e2:49:37:0a:98:6a:d8:db:16:
1d:f6:7d:15:0e:c4:7a:98:e7:79:e0:36:09:75:27:f1:3b:65:
00:d3:06:eb:73:a8:27:cd:64:09:ee:c5:25:d5:1d:64:1a:b0:
5d:21:b5:76:c6:ad:10:5f:cc:bd:43:b3:45:84:82:f2:3f:02:
81:34:cf:96:0b:a5:13:d9:ba:f4:91:17:96:b6:ed:6f:5e:3c:
21:2e:2f:87:41:e7:d5:22:3a:c1:4a:e6:56:2c:6b:a5:25:c0:
ef:4f:d5:9f:64:c3:b6:8b:6a:b5:aa:69:5c:2b:0b:69:3a:7d:
ca:54:74:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org