Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/h4qVqFIUnn8vDlNhVPh-V4swgOY.roa
File: h4qVqFIUnn8vDlNhVPh-V4swgOY.roa (raw, json)
Hash identifier: 6BWxBsv9TvwbLhOMM+gFwzHDY0/JJBtkmaCDhUUAMJY=
Subject key identifier: 87:8A:95:A8:52:14:9E:7F:2F:0E:53:61:54:F8:7E:57:8B:30:80:E6
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018BBA26FF617D5CA8FBFEDBC8E64541AD34
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/h4qVqFIUnn8vDlNhVPh-V4swgOY.roa
Signing time: Fri 10 Nov 2023 16:53:19 +0000
ROA not before: Fri 10 Nov 2023 16:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 5.1.40.0/24 maxlen: 24
185.182.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ba:26:ff:61:7d:5c:a8:fb:fe:db:c8:e6:45:41:ad:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 10 16:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=878a95a852149e7f2f0e536154f87e578b3080e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b2:fa:de:a7:94:4c:cc:45:5d:7b:5a:67:b3:
e6:fd:eb:9f:30:a2:c4:44:8f:b8:e1:05:32:71:24:
fc:23:11:6c:c3:22:82:1a:cf:8b:24:a2:1a:9c:80:
af:af:11:b5:93:8a:d4:88:4a:6f:45:7e:0b:21:59:
29:c4:d9:25:fa:78:91:b2:6f:bb:8f:c3:3f:4c:ea:
21:70:22:34:69:9f:be:7e:58:e1:75:ca:e8:0b:22:
ff:e5:a5:d3:8f:3d:75:03:be:52:ad:ba:1a:74:47:
24:87:ef:a5:e6:db:79:c5:7f:49:ea:cd:76:2e:9e:
57:e0:e1:2e:ec:43:c5:fa:f3:5a:4a:50:bc:3d:1a:
bf:45:b6:60:43:3f:19:1e:f1:d5:61:22:bd:83:42:
3b:d8:13:1e:52:88:eb:4e:38:32:74:9b:21:b2:6f:
dd:13:a1:b5:8f:eb:2f:18:91:6b:e2:45:b3:c8:ed:
2a:fa:59:bd:02:51:15:84:f2:ac:75:50:d2:cd:b8:
20:1a:bd:15:f2:23:a2:e5:20:ec:25:7b:e8:cd:50:
87:19:c5:fa:b7:8b:3b:2e:b4:e9:2c:ae:0f:d2:21:
cd:e3:ca:3d:4c:7e:df:de:d1:7b:fe:90:0e:b2:a1:
3a:1c:40:ae:4f:63:8a:71:29:67:fe:15:1d:20:14:
83:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8A:95:A8:52:14:9E:7F:2F:0E:53:61:54:F8:7E:57:8B:30:80:E6
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/h4qVqFIUnn8vDlNhVPh-V4swgOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.40.0/24
185.182.65.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ac:a3:bd:b4:c4:0a:4d:8b:50:68:3d:5b:b1:45:1a:9c:1c:
1a:ee:32:9a:98:87:8d:cc:c8:31:e8:ad:68:a7:aa:f0:97:35:
97:17:0c:b6:08:ea:e7:41:2f:41:06:08:f2:c3:b8:1f:16:7b:
0e:a7:48:bc:1f:b9:ce:53:43:91:55:9d:3a:a9:be:e5:c2:6c:
96:bf:fb:ee:8b:52:1f:51:7a:9f:d9:98:be:fd:c6:f5:47:42:
88:a7:ff:fe:4f:e5:b3:72:99:1f:c6:6f:00:ef:76:7b:2d:68:
76:9d:b6:8f:8e:67:2a:3c:d9:7b:1e:63:e9:25:96:cc:fd:32:
23:f7:55:3d:a0:e4:a5:b2:5a:67:be:cf:e6:b6:2c:ba:09:60:
6d:1a:de:ac:d3:52:62:0c:0d:fb:4c:4a:a2:1c:d9:97:73:78:
bc:b8:a4:63:cc:df:c4:17:c3:92:f7:89:fb:8e:dd:87:e9:2c:
dc:a9:95:80:d8:f7:fe:d8:70:2d:af:67:2a:dc:c6:b9:87:67:
11:4d:6a:07:f1:58:8f:9a:f1:a4:e3:39:dc:e5:70:f8:8b:ee:
04:51:21:6e:8a:27:7b:92:d7:9d:9b:f1:04:01:dc:cb:a5:38:
f9:83:0e:85:b8:ea:da:c6:8e:25:13:39:11:ea:69:fa:e1:c0:
17:41:da:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org