Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/tHjQ-nhBa5jlM0713EjpuoRjJMk.roa
File: tHjQ-nhBa5jlM0713EjpuoRjJMk.roa (raw, json)
Hash identifier: IciMWFRVkZWHOQZGm39WD/yzSjUBWZN+ZjSIje/BDIE=
Subject key identifier: B4:78:D0:FA:78:41:6B:98:E5:33:4E:F5:DC:48:E9:BA:84:63:24:C9
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01857039A599062C2B00C9680E1190FAB772
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/tHjQ-nhBa5jlM0713EjpuoRjJMk.roa
Signing time: Mon 02 Jan 2023 02:05:04 +0000
ROA not before: Mon 02 Jan 2023 02:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 195.180.176.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a5:99:06:2c:2b:00:c9:68:0e:11:90:fa:b7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 02:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b478d0fa78416b98e5334ef5dc48e9ba846324c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:e7:cc:1b:ea:7c:04:39:5b:e6:f3:ca:c8:
5e:0d:51:fd:b5:88:94:2a:e6:5c:73:eb:f1:14:44:
dc:8c:4e:56:8c:59:c6:8a:a9:12:b1:2d:33:fa:62:
53:19:ff:5b:21:1f:cb:73:df:d7:fd:45:cb:ab:1b:
63:92:26:14:94:79:bb:18:3a:76:a3:98:83:01:69:
3a:9e:7a:c6:a7:08:3d:43:64:90:21:a1:14:c5:84:
46:ee:57:e7:12:4d:fc:62:f7:3d:7e:77:3c:22:4c:
4f:f3:d2:87:a7:bd:4d:64:45:0f:34:77:32:d1:99:
e7:6d:0e:42:08:95:e1:09:ac:82:2f:e9:90:40:01:
64:5a:2e:5b:be:d5:fb:20:8a:fc:02:73:82:3d:d1:
34:c4:90:8f:d0:11:98:37:ae:91:19:8a:f1:6b:cf:
fe:dc:a6:31:96:3f:35:d2:14:6a:c9:40:cf:8b:32:
cc:c5:e2:8c:45:c5:07:bd:c0:b8:f1:8d:dd:c5:15:
18:14:13:94:2c:04:fb:0a:5d:ea:71:6b:9a:68:6e:
e0:09:a0:dc:f7:b9:b8:b9:29:c6:86:20:8a:3e:79:
f1:90:c1:9e:9c:81:d7:05:ac:4d:e6:5e:35:05:90:
23:59:7f:ed:06:b7:18:60:0f:66:e0:cc:01:3c:55:
1c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:78:D0:FA:78:41:6B:98:E5:33:4E:F5:DC:48:E9:BA:84:63:24:C9
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/tHjQ-nhBa5jlM0713EjpuoRjJMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.176.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b3:33:8f:e4:1f:16:ba:ed:a3:76:63:53:3f:be:7e:fc:17:
9e:c0:62:2b:d0:c8:a8:30:1c:4f:bc:d3:d8:a8:17:f6:91:17:
78:a9:48:db:bf:26:00:15:cd:16:10:10:0f:b0:9e:f6:5d:9d:
49:5a:f7:95:a4:9c:23:4a:79:92:29:c1:fe:9b:95:22:4e:f9:
3d:78:d3:06:84:b2:a6:0d:5d:3f:60:a7:41:a4:7f:6d:b0:16:
33:63:bb:8c:f4:41:7a:f5:52:26:7c:4d:64:97:9d:fc:83:9d:
35:ae:b3:0c:d8:8b:13:e5:38:3e:91:ed:90:29:28:d0:55:3d:
fc:9c:35:3b:27:ec:aa:aa:ab:00:01:6d:cb:7a:57:58:95:0b:
3b:fe:07:ab:74:2c:1a:31:c2:7e:07:5a:4e:83:5d:81:28:1c:
19:31:45:6c:c5:45:26:9b:3e:6e:5d:2f:8f:56:51:99:65:c4:
29:5c:70:a0:97:47:8e:1e:b3:04:01:98:57:fb:a1:8f:36:59:
94:8c:7e:18:f9:e0:e0:65:da:ea:b0:c5:94:a3:5b:cd:8a:b6:
09:ab:c8:2e:9d:d6:98:37:e4:31:7f:31:a0:1b:dd:97:0f:0c:
77:86:e4:16:0b:0d:ae:08:8b:8d:65:a4:47:7c:7b:21:97:4c:
03:3e:e4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:12 2024 by rpki-client on console-fra.rpki-client.org