Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/HDzlFI73ODPjVvLxRDv5f2jnIJA.roa
File: HDzlFI73ODPjVvLxRDv5f2jnIJA.roa (raw, json)
Hash identifier: bRnMQ3AAxjmy7hCN6xAOa7H+btJOf0zkLqAPdq+ae3o=
Subject key identifier: 1C:3C:E5:14:8E:F7:38:33:E3:56:F2:F1:44:3B:F9:7F:68:E7:20:90
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 01879E1D14B74BD98FDA817D47B27A87C884
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/HDzlFI73ODPjVvLxRDv5f2jnIJA.roa
Signing time: Thu 20 Apr 2023 10:01:58 +0000
ROA not before: Thu 20 Apr 2023 10:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198862
IP address blocks: 194.40.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Dec 2023 15:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:1d:14:b7:4b:d9:8f:da:81:7d:47:b2:7a:87:c8:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Apr 20 10:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c3ce5148ef73833e356f2f1443bf97f68e72090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a3:c8:c0:5f:87:1e:86:6a:89:da:c6:97:8b:
9e:57:fb:72:85:13:5e:52:3e:21:67:0e:c8:66:eb:
d6:5b:88:86:06:e3:75:37:93:8a:e7:2c:9c:cf:13:
20:29:9a:36:7c:a2:1d:30:2f:d9:56:a7:7e:2c:01:
ad:f4:c2:4e:12:bf:c6:63:58:33:16:93:68:ea:7a:
ad:4c:f6:ae:1c:a6:e3:5b:b7:02:a9:c4:8c:64:53:
07:26:04:48:fc:0c:5c:72:64:34:f9:93:16:60:7c:
6f:4e:39:64:6d:cf:68:7b:e0:d0:ae:62:51:73:35:
aa:c5:03:e0:fc:4e:57:cd:31:b9:4c:34:da:63:a4:
9b:27:24:60:f9:48:fc:fb:2a:4b:12:35:4d:f6:8f:
b2:dc:58:09:6b:cd:22:3f:76:5d:59:40:f3:ed:26:
1e:40:77:b8:4d:9e:94:bc:c4:88:ac:8a:f7:ac:4a:
10:16:fe:db:7f:41:30:50:52:55:60:2c:b6:31:2a:
16:1f:06:8d:52:51:df:fc:64:d4:b9:46:8f:f4:9e:
1a:c1:f3:d9:04:bf:01:a2:32:19:1f:3c:d8:1e:4b:
5e:b6:fd:93:7a:a6:5d:30:98:be:58:fd:02:5c:86:
55:f7:c9:13:2c:a9:4c:af:3e:cb:f9:2e:88:33:82:
1f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3C:E5:14:8E:F7:38:33:E3:56:F2:F1:44:3B:F9:7F:68:E7:20:90
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/HDzlFI73ODPjVvLxRDv5f2jnIJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.40.242.0/24
Signature Algorithm: sha256WithRSAEncryption
75:26:08:2e:ab:75:e3:01:b2:bd:57:33:d6:11:92:75:aa:29:
96:b1:7a:c8:aa:89:44:8b:b9:78:af:35:db:57:c4:33:02:c5:
2b:6d:d9:6c:8c:89:ce:8e:36:cf:03:11:80:c3:df:a1:8a:ce:
5d:a7:18:fe:3a:8e:00:51:99:4b:df:6c:a1:88:3a:c8:38:58:
3d:5e:5e:1f:1a:8c:7b:2e:88:21:1e:dc:b8:1f:29:1e:54:03:
44:36:4e:51:f0:47:7a:12:28:dd:4c:e5:7c:f9:42:6b:1c:2c:
a7:f6:0a:82:27:7a:91:d9:e3:0f:9e:88:b3:1b:25:8e:c1:88:
f0:29:8a:64:ab:85:ab:b2:28:fa:eb:9c:70:23:94:3b:ce:8c:
b0:70:d8:10:68:bb:9f:23:85:28:ec:93:43:d1:c8:29:d9:ef:
63:e2:7e:50:dc:d2:93:ff:c1:be:04:f1:e9:75:b1:0b:1f:d7:
17:ad:22:ae:95:4f:68:26:5c:be:79:9a:69:c4:a9:b5:ef:ac:
6a:b8:bb:46:db:c9:99:3b:97:70:55:fa:24:8e:e1:9b:96:fb:
1f:df:2d:ca:f6:c9:35:93:fe:c0:e6:c1:f0:3b:05:b5:bc:84:
70:83:cc:ed:03:90:33:19:c9:b1:f9:eb:12:eb:0e:87:0a:d3:
70:36:45:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:08 2024 by rpki-client on console-fra.rpki-client.org