Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/eFhqHxJUvmzeA5upUWKVjbo2tQQ.roa
File: eFhqHxJUvmzeA5upUWKVjbo2tQQ.roa (raw, json)
Hash identifier: T9XqK7omxgvhn6GKgMND+ZhoGyBqr1nsRbX/3pTYqJQ=
Subject key identifier: 78:58:6A:1F:12:54:BE:6C:DE:03:9B:A9:51:62:95:8D:BA:36:B5:04
Certificate issuer: /CN=3085a82d9ffde0a4c7f8f72e31c30a8f09a0f1d8
Certificate serial: 0188D21B2A65C1A5E40C4A5658B6A3FD4EB2
Authority key identifier: 30:85:A8:2D:9F:FD:E0:A4:C7:F8:F7:2E:31:C3:0A:8F:09:A0:F1:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MIWoLZ_94KTH-PcuMcMKjwmg8dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/eFhqHxJUvmzeA5upUWKVjbo2tQQ.roa
Signing time: Mon 19 Jun 2023 05:22:55 +0000
ROA not before: Mon 19 Jun 2023 05:22:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2
IP address blocks: 195.62.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 06:43:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:1b:2a:65:c1:a5:e4:0c:4a:56:58:b6:a3:fd:4e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3085a82d9ffde0a4c7f8f72e31c30a8f09a0f1d8
Validity
Not Before: Jun 19 05:22:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78586a1f1254be6cde039ba95162958dba36b504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:38:8d:35:4e:5b:8a:96:a4:5a:b5:86:a0:c8:
73:90:7e:e8:8e:80:74:54:bf:51:4b:0f:db:2a:a5:
5a:37:78:69:1b:1e:66:97:e6:ce:90:59:bc:54:8c:
52:a8:e9:93:fd:8b:43:cc:1f:3b:ee:6c:c1:1e:75:
c4:93:01:be:58:bd:c0:ec:f6:64:00:cc:6e:2c:f2:
b6:2e:f3:dd:34:bf:91:ab:1f:5f:6d:46:1c:8c:40:
12:29:93:3b:f6:9e:f5:6c:c4:1d:f7:e8:81:9a:a9:
3a:64:4f:29:97:63:87:a1:5d:9e:43:01:f0:49:9a:
e5:ea:b0:93:ec:42:9b:6b:82:61:41:d9:c5:05:84:
b0:35:6f:d3:f3:18:e8:a3:3f:eb:5a:9a:70:bb:3c:
40:ba:ed:64:2c:fd:8b:02:7d:e4:09:2c:c2:9b:a5:
36:a7:a1:09:04:29:e9:76:a4:83:ec:80:65:1b:23:
60:1d:b8:4f:e6:16:21:cb:36:6f:c1:e0:64:5c:a7:
f4:4d:89:a3:f6:e9:29:56:b0:89:13:41:38:ac:e4:
dd:dc:1f:33:7f:a6:cc:4d:92:6b:e0:37:d9:02:f4:
42:7d:69:37:02:fb:f4:71:b9:01:36:40:d4:bb:80:
b3:fd:cf:49:ff:18:8b:a4:3d:50:87:22:c3:1e:d8:
52:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:58:6A:1F:12:54:BE:6C:DE:03:9B:A9:51:62:95:8D:BA:36:B5:04
X509v3 Authority Key Identifier:
keyid:30:85:A8:2D:9F:FD:E0:A4:C7:F8:F7:2E:31:C3:0A:8F:09:A0:F1:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MIWoLZ_94KTH-PcuMcMKjwmg8dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/eFhqHxJUvmzeA5upUWKVjbo2tQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2c9b83-8cec-47a5-b40c-4a70b00e8556/1/MIWoLZ_94KTH-PcuMcMKjwmg8dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.62.88.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:eb:99:d8:2d:42:d8:a8:f4:ec:e2:20:a4:68:15:74:20:56:
26:2f:ea:e8:19:b0:a8:a0:55:ba:d0:19:20:4d:8b:09:de:43:
4b:69:ca:a1:a7:b5:04:b9:aa:48:28:a2:85:89:64:6d:d9:64:
e8:f9:77:02:8f:f5:ba:21:59:ca:34:d0:23:91:14:26:75:08:
00:bd:b9:2c:77:5d:af:81:ca:92:10:83:c5:ee:f7:60:45:45:
22:91:60:ba:dd:69:14:95:a1:ff:ca:ba:53:26:5a:9e:15:61:
48:9b:0a:82:42:98:19:65:80:72:d3:7b:9f:69:67:ae:6e:b7:
22:a4:8e:7b:f2:d8:25:1a:27:dc:bc:90:fd:88:b3:05:ae:1b:
c1:eb:be:40:b2:01:b0:e0:99:e9:e3:4d:7f:12:f7:6f:c6:bc:
a6:97:ee:a8:0f:d8:17:de:74:00:24:d1:b3:d7:15:7b:18:04:
dc:a8:80:93:d7:dd:53:2d:a3:0d:79:fc:86:9e:84:8a:19:57:
60:7a:38:c0:8a:1b:e6:8b:d0:e7:eb:4d:98:a5:69:73:5a:37:
79:ca:da:ee:54:8f:78:41:ee:b7:39:2f:1d:1c:16:af:a9:20:
5b:d2:1a:04:43:38:7a:7c:8b:ed:d7:0c:64:0c:09:a7:22:5b:
24:65:e4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:06 2024 by rpki-client on console-ams.rpki-client.org