Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/hUUx3LVSh3___w8l-RxFkvBb2Ys.roa
File: hUUx3LVSh3___w8l-RxFkvBb2Ys.roa (raw, json)
Hash identifier: f7kJ9OB1gZnrjXur7LGoubsSSleGlC1yORoAlGT70W4=
Subject key identifier: 85:45:31:DC:B5:52:87:7F:FF:FF:0F:25:F9:1C:45:92:F0:5B:D9:8B
Certificate issuer: /CN=e634616edbd60154fa3dac77ea90dbd7c68a132d
Certificate serial: 01856C413EF574AAA1677C8A8EB8A3D7B8CF
Authority key identifier: E6:34:61:6E:DB:D6:01:54:FA:3D:AC:77:EA:90:DB:D7:C6:8A:13:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jRhbtvWAVT6Pax36pDb18aKEy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/hUUx3LVSh3___w8l-RxFkvBb2Ys.roa
Signing time: Sun 01 Jan 2023 07:34:53 +0000
ROA not before: Sun 01 Jan 2023 07:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 195.245.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:3e:f5:74:aa:a1:67:7c:8a:8e:b8:a3:d7:b8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e634616edbd60154fa3dac77ea90dbd7c68a132d
Validity
Not Before: Jan 1 07:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=854531dcb552877fffff0f25f91c4592f05bd98b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a9:81:f5:f7:4b:7a:23:fe:09:1c:8c:6a:37:
a4:88:12:eb:c4:45:6c:27:24:41:39:38:38:3f:b2:
7b:07:d9:f8:29:51:f0:43:0f:9c:48:1f:8a:18:a5:
fe:88:8f:6e:a5:9f:88:f4:19:90:92:35:fb:1c:c7:
e1:7e:54:d1:aa:bf:81:c9:c0:3b:d9:9a:f5:af:0f:
12:4a:a8:e4:8f:0b:a0:08:5f:2f:ec:21:2c:29:e6:
12:4b:70:6d:a4:26:27:1f:f8:56:54:a2:67:73:e5:
59:17:05:74:d4:36:96:62:f9:b9:d2:f4:23:56:6e:
34:29:c7:9e:3c:36:6d:78:84:43:53:f0:ab:b3:41:
25:6e:b8:24:6f:1e:40:11:bc:3e:9d:89:c3:72:ad:
31:8c:ab:3f:62:fb:1d:74:8b:80:c2:40:e6:45:29:
59:40:a1:69:aa:85:e7:9f:66:e1:a4:68:22:2c:0e:
bc:8c:7c:fd:eb:93:23:a0:16:ba:2d:69:0b:1f:5d:
b7:dd:1e:de:1a:8c:40:bb:59:70:16:dc:cd:86:36:
56:24:25:05:0c:ab:35:36:d7:60:36:39:d1:0c:47:
e3:1a:0c:22:c5:bf:9b:a7:b0:e6:a0:a9:00:17:ea:
cc:7a:62:3d:6b:d7:6e:81:dd:7f:f4:12:e0:8b:75:
24:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:45:31:DC:B5:52:87:7F:FF:FF:0F:25:F9:1C:45:92:F0:5B:D9:8B
X509v3 Authority Key Identifier:
keyid:E6:34:61:6E:DB:D6:01:54:FA:3D:AC:77:EA:90:DB:D7:C6:8A:13:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jRhbtvWAVT6Pax36pDb18aKEy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/hUUx3LVSh3___w8l-RxFkvBb2Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/f29268-2c6a-4e9d-aa2d-d99231e46457/1/5jRhbtvWAVT6Pax36pDb18aKEy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.85.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ea:ff:20:01:2b:0b:34:d7:4c:02:3c:2b:92:c0:13:12:50:
d7:83:95:84:b3:04:aa:e2:86:a1:b1:79:1f:34:d1:53:64:78:
1c:9b:21:72:e4:55:12:23:9d:06:87:e0:81:04:c2:66:1d:3a:
20:e0:e0:90:d7:b4:f4:e7:90:43:02:f7:58:cb:6e:af:60:d8:
89:7c:b5:a9:99:1e:85:73:63:cc:51:fc:17:4c:58:16:40:02:
0a:8a:a9:56:4b:3c:00:6b:df:75:1c:4a:de:f8:fc:d5:46:8e:
40:e3:e3:a4:65:14:1b:14:67:35:85:d1:a3:23:21:ba:f0:20:
a0:c3:4e:90:79:d8:b1:ec:0a:e8:b4:37:ac:16:23:2e:50:b0:
92:21:a8:87:1f:52:1a:45:80:2d:a6:1c:28:6c:2a:b5:af:14:
1f:20:db:30:c4:40:b8:37:9b:f9:f6:9d:c3:72:11:4f:5f:8a:
51:c8:dc:2f:2e:f3:30:19:45:99:d5:97:1c:2f:b2:eb:f2:0d:
39:df:73:1b:11:46:50:24:b6:11:10:9f:cf:0b:fa:5e:65:15:
65:86:a5:5d:e9:02:a7:33:91:ed:84:77:09:c2:7c:7a:7c:82:
6e:e6:f0:39:4a:e0:f6:ad:6d:f9:4d:f7:4d:19:69:29:66:b3:
7f:0b:fd:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:01 2024 by rpki-client on console-ams.rpki-client.org