Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/jhEkcXCY0Z-Lj79oZSphra8SbYU.roa
File: jhEkcXCY0Z-Lj79oZSphra8SbYU.roa (raw, json)
Hash identifier: i/wYQvLJyCBvx5LgK6b9SfE/FbhH6P2CT5mMJKrutrM=
Subject key identifier: 8E:11:24:71:70:98:D1:9F:8B:8F:BF:68:65:2A:61:AD:AF:12:6D:85
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 0187FF589AA50317F9197D7D3F0523892F5A
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/jhEkcXCY0Z-Lj79oZSphra8SbYU.roa
Signing time: Tue 09 May 2023 07:10:09 +0000
ROA not before: Tue 09 May 2023 07:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 194.44.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:58:9a:a5:03:17:f9:19:7d:7d:3f:05:23:89:2f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: May 9 07:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e1124717098d19f8b8fbf68652a61adaf126d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f9:0e:9d:fc:0c:70:5c:fb:34:7c:cc:07:5a:
5a:eb:9c:90:a4:8f:a4:0b:56:21:ff:8b:05:48:40:
01:33:56:3f:22:84:15:be:e3:1f:eb:1c:d3:cf:32:
dd:44:ff:96:59:dc:30:e1:51:ac:2b:36:3f:8a:8b:
6f:1a:c7:1e:c8:b6:8d:e0:ff:84:f5:09:7f:fe:d1:
1e:ea:a7:b1:e0:c5:77:ee:e2:18:a9:e9:b0:f9:b6:
43:12:1c:4f:43:79:33:fd:fe:43:ef:ea:e8:48:28:
db:92:e4:57:a2:15:5b:b3:36:b6:64:0f:0d:66:cb:
d6:d0:d1:10:8f:3a:6c:45:ee:bc:0e:f7:02:67:e3:
c0:34:41:90:2e:48:d4:04:19:a3:be:e0:f7:1f:ce:
3d:09:e4:74:22:36:09:77:18:3b:ea:93:04:25:4e:
49:61:32:d5:14:42:fc:97:25:c6:81:5c:fd:85:e9:
f3:36:ce:f8:ad:85:28:eb:01:ae:71:f9:a8:2b:7a:
ef:4b:98:fa:8d:53:e5:f0:99:f5:29:7c:c6:19:96:
72:3d:e4:05:3a:06:39:4a:e4:aa:61:3f:d3:a7:2f:
ee:15:5f:3c:8d:35:86:22:d2:11:99:ac:87:5a:9d:
79:ff:b2:0b:52:aa:d5:c2:46:d1:e7:7c:e0:94:95:
ce:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:11:24:71:70:98:D1:9F:8B:8F:BF:68:65:2A:61:AD:AF:12:6D:85
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/jhEkcXCY0Z-Lj79oZSphra8SbYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.44.235.0/24
Signature Algorithm: sha256WithRSAEncryption
49:88:91:77:5a:83:53:0d:1d:48:ea:26:07:83:c3:a7:9c:8e:
b6:7e:3c:cf:ef:51:17:31:36:9a:83:66:3e:aa:06:7f:32:ae:
e9:49:95:cd:fe:10:94:93:38:41:ee:6e:6c:b8:52:d1:d1:9d:
21:0e:9f:72:4d:bd:1a:2f:0b:2f:f0:69:df:5e:2e:c0:3d:be:
ce:e2:4e:2c:79:dc:41:95:3c:3c:90:10:e7:ba:c3:b6:b5:09:
30:d4:94:86:a7:c8:3d:e2:64:5f:dc:bc:62:ca:91:67:67:89:
c4:70:33:5e:4c:c1:47:19:96:ad:03:b2:60:c8:ee:1a:aa:46:
54:c2:ac:b5:e1:a9:0c:78:c0:18:85:83:2b:7a:d0:ff:18:4a:
03:1b:7c:da:0d:49:8d:c2:29:1e:f1:3b:c5:4c:e7:be:e1:58:
f7:d7:39:b1:ca:7c:aa:fe:f6:f6:58:5b:24:fb:45:87:ea:7f:
7f:b5:80:cb:c5:8b:fc:62:39:ae:e7:a8:28:aa:01:75:05:b0:
25:f5:e8:f9:43:3a:a4:70:4f:d6:c5:c7:c4:7c:76:96:c6:bd:
31:8c:48:bc:f2:53:10:97:41:93:a0:2c:65:35:e4:12:9f:81:
ce:81:d1:87:28:dc:18:eb:08:46:01:c8:37:68:7a:a5:91:04:
c1:b8:2b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org