Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/hTW-4AFmME_Kz-kP8W5kffaZggY.roa
File: hTW-4AFmME_Kz-kP8W5kffaZggY.roa (raw, json)
Hash identifier: OmxxZpAzmcOKwp51oh7DDQUChZaBviTWkq4D3I2F560=
Subject key identifier: 85:35:BE:E0:01:66:30:4F:CA:CF:E9:0F:F1:6E:64:7D:F6:99:82:06
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 018964895A15CA7CD398A7F4AC6514DE0D40
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/hTW-4AFmME_Kz-kP8W5kffaZggY.roa
Signing time: Mon 17 Jul 2023 15:47:50 +0000
ROA not before: Mon 17 Jul 2023 15:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 194.50.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:89:5a:15:ca:7c:d3:98:a7:f4:ac:65:14:de:0d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jul 17 15:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8535bee00166304fcacfe90ff16e647df6998206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9b:12:46:99:f5:f8:87:0c:96:12:42:8a:80:
65:3c:6b:87:fe:55:50:86:98:58:d3:af:a9:70:aa:
98:67:aa:8c:b3:e3:59:ea:45:fc:c6:d2:ec:81:b9:
96:a9:c7:4e:07:95:69:0c:64:1f:4f:73:ff:fc:c0:
91:99:f3:9f:33:ad:88:be:96:68:85:5b:68:13:18:
3c:f4:57:4a:de:21:6f:48:91:b1:a2:bd:42:ec:5d:
3b:74:2c:10:b7:eb:8b:0b:db:df:b5:69:19:72:d9:
ac:f2:00:85:a3:ae:e6:16:64:09:91:1e:c0:f5:8e:
31:df:5d:a0:d0:24:5e:c6:d9:a4:3e:54:28:91:48:
70:37:e7:81:8c:1e:0e:e6:ab:07:20:2b:80:77:9f:
45:87:4a:cf:0a:21:b5:d6:74:32:99:c6:05:39:82:
54:8e:57:9e:09:f3:96:0b:56:57:c7:42:70:4f:30:
09:fb:52:53:7b:b0:e4:f7:cc:fb:98:9b:20:f3:5b:
f0:3d:8e:1a:8c:ff:29:2a:d3:dc:f4:a6:a8:7f:a7:
19:5f:8b:e1:24:5b:8d:88:0a:3c:67:9b:f7:74:f0:
50:87:98:db:d5:38:dc:fe:3e:5f:ea:15:46:c1:00:
41:91:9c:ef:40:be:5d:7c:6e:72:34:c0:ed:41:64:
3a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:35:BE:E0:01:66:30:4F:CA:CF:E9:0F:F1:6E:64:7D:F6:99:82:06
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/hTW-4AFmME_Kz-kP8W5kffaZggY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.73.0/24
Signature Algorithm: sha256WithRSAEncryption
43:8b:47:66:9c:47:10:51:6e:21:f0:be:a9:86:25:7f:38:d8:
90:71:9b:f1:9f:40:63:52:67:48:c5:1e:fa:5c:4b:9d:96:50:
85:8b:77:82:4f:9f:71:6f:94:38:a8:0c:e4:1c:d4:ea:36:e0:
e7:0d:f4:6a:7c:c2:61:9b:be:13:da:fe:1e:86:fb:04:54:57:
c6:50:3f:c7:ed:ef:62:34:62:57:9b:2a:4c:64:4a:32:7d:c9:
9a:ff:ce:b2:0e:07:72:c1:05:ec:fb:1d:85:24:43:a2:b2:13:
31:fa:69:49:36:1c:50:cb:bb:39:bb:57:40:ab:ed:a9:90:c9:
4f:f4:49:a5:14:3c:60:0a:5c:b1:43:6c:cf:90:65:bd:65:0f:
cd:ba:b1:c3:d4:2d:fa:40:0b:c3:ab:ed:96:bd:dd:e1:d9:aa:
94:50:3b:96:9f:36:3d:0c:9a:21:28:34:a1:d9:90:9c:31:f6:
64:18:c6:0d:89:17:5a:ac:43:46:3b:5d:d9:c5:b1:e8:d2:b0:
7d:1d:65:b7:ac:21:d8:4a:0d:44:80:b7:b8:99:23:bc:fc:3c:
46:0e:0b:26:90:08:89:b5:e4:dd:15:7f:2d:51:22:e5:b0:09:
c0:42:ed:75:33:6a:83:ae:92:b7:89:92:65:c9:6f:df:e4:1f:
b3:b6:43:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:59 2024 by rpki-client on console-fra.rpki-client.org