Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/H0KAF4n734eWx1NO-FoeExjZQZY.roa
File: H0KAF4n734eWx1NO-FoeExjZQZY.roa (raw, json)
Hash identifier: g3PK83L49DHMxP7GncjYs55UlEwEuxpB3H4iTtIfv6M=
Subject key identifier: 1F:42:80:17:89:FB:DF:87:96:C7:53:4E:F8:5A:1E:13:18:D9:41:96
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018717DC02465A19EE8241C486071622C98B
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/H0KAF4n734eWx1NO-FoeExjZQZY.roa
Signing time: Sat 25 Mar 2023 08:21:47 +0000
ROA not before: Sat 25 Mar 2023 08:21:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 192.94.58.0/24 maxlen: 24
193.150.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 09:49:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:17:dc:02:46:5a:19:ee:82:41:c4:86:07:16:22:c9:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Mar 25 08:21:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f42801789fbdf8796c7534ef85a1e1318d94196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:61:f6:5c:13:b1:8e:5e:10:02:c2:86:2d:41:
6c:e2:1d:13:cb:5f:c9:0a:a9:40:de:e3:a2:14:1a:
84:f0:28:e5:f0:df:e2:0c:c6:bd:66:e1:9c:94:b2:
30:77:04:fc:ec:bd:08:02:17:f3:32:fa:45:4c:12:
ed:a8:d7:da:7f:e3:95:98:7e:7d:35:80:a1:ee:13:
82:f5:19:54:cc:01:97:6d:c5:1e:15:b7:8d:81:08:
5d:79:3b:d8:50:71:2f:47:63:ab:e9:e1:be:e1:3e:
b4:33:e6:6f:dc:85:33:6c:07:3f:c7:77:86:0e:39:
83:64:17:d1:5a:05:04:1b:1a:ad:57:fc:38:70:3e:
95:be:61:e8:59:bd:20:ae:f3:09:be:85:61:81:d4:
5b:51:5e:4c:d6:b3:21:8e:0a:3d:28:f4:2e:76:50:
ad:0e:31:9f:09:01:7c:70:e6:7c:22:aa:a2:0a:53:
dd:9c:fe:3a:f3:d6:4e:c8:b5:ce:3a:52:bd:b0:3b:
63:be:03:e7:43:fa:d5:0a:de:6e:81:8e:57:cb:dc:
84:a8:f5:bd:15:f4:31:95:4e:f8:bf:a0:09:6c:0b:
9f:8b:b0:c0:7c:e0:6f:25:6b:83:5d:fd:f2:93:2e:
d5:81:39:e6:c6:27:84:7c:d1:f7:b5:7d:b0:6c:6b:
98:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:42:80:17:89:FB:DF:87:96:C7:53:4E:F8:5A:1E:13:18:D9:41:96
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/H0KAF4n734eWx1NO-FoeExjZQZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.94.58.0/24
193.150.188.0/22
Signature Algorithm: sha256WithRSAEncryption
41:40:5b:19:7a:a7:85:9e:9a:9b:eb:0d:08:b1:4c:a7:30:4a:
30:7d:8b:f7:bd:d5:0a:6b:bf:f0:4d:7b:51:c7:90:59:29:43:
1a:cf:3a:6e:0b:a9:84:d9:31:3f:b5:af:9b:e9:fe:c1:2e:dc:
73:1a:be:67:48:89:ec:96:86:0d:4f:3b:e6:25:a4:d2:d2:a1:
4f:f3:0b:9c:75:3a:c8:d2:4b:d7:f3:bc:d7:bd:c2:8c:10:b7:
d1:1a:87:11:23:79:cf:ab:e7:82:95:6d:3a:87:e1:cc:83:2c:
9a:41:47:3a:1d:ad:3e:98:f0:c0:33:0c:96:1c:fc:07:ef:ca:
ca:ef:9f:0d:7e:98:8b:bb:b1:0c:af:ce:e3:a7:3b:80:0b:4f:
8e:0f:f4:27:91:56:bc:01:55:0a:c4:6a:43:55:ed:ed:0b:f8:
92:4c:7c:84:4d:b2:eb:a0:39:92:1b:29:71:71:95:64:7a:cc:
cb:df:96:f4:38:b0:ba:90:39:05:35:d8:92:77:f8:2e:88:c0:
06:58:8f:e8:33:c9:27:05:2f:b0:17:99:a2:cf:e7:cc:8d:cc:
fe:6f:36:f7:89:0e:54:76:b5:1d:ad:5c:9f:c3:9e:18:9f:06:
44:5f:dc:ec:ed:9d:4a:53:03:78:04:bf:8a:3c:79:f9:3a:95:
70:0b:02:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org