Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/HuOAt0GhPfcZxgol2uCpoHYinW8.roa
File: HuOAt0GhPfcZxgol2uCpoHYinW8.roa (raw, json)
Hash identifier: 6rU8bZj/ZBrsuVoeDNmcFy3boL1YjeB8v3+uOq2xNh0=
Subject key identifier: 1E:E3:80:B7:41:A1:3D:F7:19:C6:0A:25:DA:E0:A9:A0:76:22:9D:6F
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0189F8E9535C8A7AB60974EB78F2EA53E976
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/HuOAt0GhPfcZxgol2uCpoHYinW8.roa
Signing time: Tue 15 Aug 2023 11:16:28 +0000
ROA not before: Tue 15 Aug 2023 11:16:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198711
IP address blocks: 195.88.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 10:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f8:e9:53:5c:8a:7a:b6:09:74:eb:78:f2:ea:53:e9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 15 11:16:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ee380b741a13df719c60a25dae0a9a076229d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:9d:6e:4f:43:42:27:ce:63:90:24:9d:28:
ff:c6:da:df:68:f3:35:9a:b7:14:be:62:eb:09:63:
5f:ca:ca:fe:5d:e8:7e:16:ef:e5:f6:9e:b6:52:f1:
3e:8d:90:e1:dd:8b:62:c1:a7:4e:63:bf:f6:b7:6b:
e2:27:de:5f:a5:47:81:3c:ed:6c:10:01:5f:14:9a:
7d:9d:f0:16:24:b2:1e:c8:59:41:3f:e1:f4:9b:ab:
d3:3d:30:40:cc:ad:23:ae:d1:fd:34:69:d1:5c:7c:
9c:d9:5d:b8:a3:eb:32:b1:35:69:3f:eb:c1:e3:35:
03:9b:3f:0b:5e:5e:9f:40:1b:b1:e6:5b:16:97:5a:
05:5a:35:51:63:46:23:05:2e:23:cd:8b:b5:81:e4:
f2:35:0d:5c:ca:95:1a:26:0f:dc:34:e2:69:54:2b:
88:91:6f:7b:a1:e6:52:c3:26:25:1e:58:75:06:a7:
09:9c:ba:aa:a4:7a:6a:b7:89:26:40:f7:d0:89:f3:
b7:03:b6:19:97:d0:f2:14:05:9b:ea:98:7d:51:40:
ca:43:09:8c:8d:eb:ae:f0:06:2c:fa:16:32:32:d0:
01:39:db:6e:bf:ca:0b:1d:ab:75:e9:4a:e6:1c:a1:
a8:f0:71:f7:05:e7:d4:16:2b:5d:d3:ee:3c:31:44:
94:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E3:80:B7:41:A1:3D:F7:19:C6:0A:25:DA:E0:A9:A0:76:22:9D:6F
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/HuOAt0GhPfcZxgol2uCpoHYinW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.227.0/24
Signature Algorithm: sha256WithRSAEncryption
50:33:cd:29:a3:0f:21:2c:4d:f6:d7:cd:59:7e:cb:72:e0:f8:
39:cd:90:a4:cd:48:e4:88:e3:aa:a5:5a:da:23:72:30:66:46:
b4:43:c1:ce:1c:d8:bf:b7:6a:6e:a7:e2:c2:ff:92:75:c4:8f:
c0:9c:c2:86:4c:ab:4e:b0:5d:e4:57:f8:27:6b:63:33:dd:05:
59:9b:69:4a:a8:75:e4:90:54:6b:f2:f3:a2:eb:72:75:34:ff:
20:03:c3:4c:73:3c:6f:48:58:ff:b3:23:96:ea:16:f5:7f:5e:
d8:5b:47:f2:5f:da:7d:e6:05:23:40:80:a2:09:ab:0e:fc:00:
48:c8:52:f3:1e:e4:b7:3b:87:54:7f:b9:82:7e:2a:1c:c6:a2:
c3:05:b5:ed:42:a7:49:44:5b:c3:74:c5:25:12:3c:5b:45:67:
6c:7b:7e:68:0d:f5:b8:05:91:73:db:ef:07:1c:fe:f0:67:36:
19:20:a3:7c:db:6a:de:47:34:c0:dd:e4:22:2d:01:ff:87:2e:
e6:6c:3a:4d:ce:e6:70:d6:e2:b6:a5:58:d8:68:7f:b7:24:b6:
3b:01:bf:bd:4a:33:65:81:8c:93:13:70:a3:cb:3a:eb:be:5b:
26:5c:76:1e:d5:d3:09:38:77:a7:1c:64:46:86:7a:f1:76:b6:
ce:07:ac:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org