Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/d22d65-b6e9-4ba6-8019-75237996c06c/1/hC4kECcvyS2aRQ7N97rVuU4r1eY.roa
File: hC4kECcvyS2aRQ7N97rVuU4r1eY.roa (raw, json)
Hash identifier: NraJkYY2a+Pku8vdSgghBPIWO2OwexnHwCPTQxQ8Ojc=
Subject key identifier: 84:2E:24:10:27:2F:C9:2D:9A:45:0E:CD:F7:BA:D5:B9:4E:2B:D5:E6
Certificate issuer: /CN=da1e212597b3ae009c016dce182db544917871c6
Certificate serial: 018571275A96967014C09A71D5FF7B61D147
Authority key identifier: DA:1E:21:25:97:B3:AE:00:9C:01:6D:CE:18:2D:B5:44:91:78:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2h4hJZezrgCcAW3OGC21RJF4ccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/d22d65-b6e9-4ba6-8019-75237996c06c/1/hC4kECcvyS2aRQ7N97rVuU4r1eY.roa
Signing time: Mon 02 Jan 2023 06:24:42 +0000
ROA not before: Mon 02 Jan 2023 06:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 185.94.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:5a:96:96:70:14:c0:9a:71:d5:ff:7b:61:d1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1e212597b3ae009c016dce182db544917871c6
Validity
Not Before: Jan 2 06:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=842e2410272fc92d9a450ecdf7bad5b94e2bd5e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3f:74:fa:0e:36:e7:b4:00:8d:12:16:2e:42:
fb:a7:87:d7:56:5c:c9:9a:85:33:31:ae:17:e4:74:
6f:61:62:67:ee:70:87:48:5b:04:76:51:0d:8b:81:
ca:d2:b0:0e:63:57:8b:f8:1a:db:f4:20:29:fe:b0:
89:4f:29:a0:1f:ec:75:3f:8e:bd:f7:15:cb:56:c1:
01:1e:b5:d5:5d:f1:ef:46:fa:4c:b6:41:c2:c0:d4:
06:dc:da:a9:1b:a4:40:d4:41:cc:13:85:da:c9:2b:
26:ac:1d:43:0c:bb:a1:e6:3f:49:a4:87:fa:78:50:
ad:fe:c6:1c:de:67:ac:38:b8:4c:03:f5:0b:df:36:
4a:f6:da:10:de:d1:3f:78:08:7a:2f:f2:7d:8b:45:
69:dd:85:c2:9e:a2:66:e1:3c:1e:cf:1d:d5:60:72:
55:92:22:ad:26:ee:43:87:6e:ac:33:33:4d:97:47:
cc:de:ad:74:45:5b:1e:0f:8f:ff:3d:96:c1:cd:da:
a6:84:f9:88:b0:50:c2:b5:00:47:57:65:f2:8e:dc:
a6:6c:17:97:75:5a:9f:97:18:e9:82:f6:47:f8:ba:
99:ff:b1:14:6e:03:13:c6:7a:f0:36:4f:f0:3f:38:
44:3e:12:83:88:94:65:bd:02:88:99:d8:d5:bb:79:
b3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2E:24:10:27:2F:C9:2D:9A:45:0E:CD:F7:BA:D5:B9:4E:2B:D5:E6
X509v3 Authority Key Identifier:
keyid:DA:1E:21:25:97:B3:AE:00:9C:01:6D:CE:18:2D:B5:44:91:78:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2h4hJZezrgCcAW3OGC21RJF4ccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/d22d65-b6e9-4ba6-8019-75237996c06c/1/hC4kECcvyS2aRQ7N97rVuU4r1eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/d22d65-b6e9-4ba6-8019-75237996c06c/1/2h4hJZezrgCcAW3OGC21RJF4ccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.65.0/24
Signature Algorithm: sha256WithRSAEncryption
00:af:aa:1b:7c:cd:79:18:aa:e5:f4:2c:66:d0:fb:01:8b:3a:
c6:e6:ab:e2:fa:a2:2d:54:27:47:7e:91:8a:67:d8:b6:a9:0e:
3f:e8:de:dd:dd:35:48:da:11:ca:66:ce:6f:4a:43:9a:b3:01:
31:b5:e1:08:30:78:72:85:b0:48:87:eb:d9:b5:91:10:40:2d:
ea:4e:4b:69:34:97:d6:21:55:ad:23:90:d5:ef:a7:55:54:a3:
e7:54:a1:ff:50:6f:f1:e6:b8:3f:0a:0d:a5:8a:2a:42:1c:55:
79:f6:55:34:92:3f:2d:3b:5c:10:84:0b:7f:32:b0:58:73:22:
a1:ad:30:12:d8:c7:20:01:61:64:60:9d:d1:ea:ee:1d:be:cd:
f9:ce:b9:d1:7e:bd:19:09:27:44:88:20:5a:62:e1:8d:03:32:
fd:bd:dc:a6:e4:8e:74:52:63:13:06:27:35:15:f4:b1:25:8e:
68:a8:7b:6d:d2:97:41:82:67:93:28:a2:6f:40:0e:f7:dd:1f:
da:e7:0b:dc:1b:b9:3e:cf:df:91:88:48:c5:ba:41:bc:1c:fe:
b2:5d:20:dc:c8:cd:60:91:7a:e1:d0:6a:70:9b:0d:84:0b:60:
fb:ce:f8:af:8a:36:20:2f:3e:81:b4:5e:7d:18:ec:47:be:cc:
34:08:ed:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:00 2024 by rpki-client on console-ams.rpki-client.org