Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/I9hXVRQPIHkOAYAMDsVlUzOUWqY.roa
File: I9hXVRQPIHkOAYAMDsVlUzOUWqY.roa (raw, json)
Hash identifier: h1kWvYOsyQY0kybGMQ+fRcIOBPvczcuhRHra2hqPfk4=
Subject key identifier: 23:D8:57:55:14:0F:20:79:0E:01:80:0C:0E:C5:65:53:33:94:5A:A6
Certificate issuer: /CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Certificate serial: 0190DAC5DF05CAC020E6F9243F509B6657D7
Authority key identifier: B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/I9hXVRQPIHkOAYAMDsVlUzOUWqY.roa
Signing time: Mon 22 Jul 2024 14:08:39 +0000
ROA not before: Mon 22 Jul 2024 14:08:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200019
IP address blocks: 46.253.5.0/24 maxlen: 24
95.169.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 10:29:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:c5:df:05:ca:c0:20:e6:f9:24:3f:50:9b:66:57:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Validity
Not Before: Jul 22 14:08:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23d85755140f20790e01800c0ec5655333945aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b5:d7:0c:e5:dd:4f:12:3c:73:11:94:0a:9e:
85:4b:de:b4:74:2a:79:b7:26:41:86:d1:79:d9:34:
71:dd:10:ea:93:5e:b5:ea:55:97:d5:d3:64:be:01:
70:61:29:c9:91:e8:32:87:1d:75:b5:4c:48:5d:07:
ab:ca:c3:18:01:f1:f1:a8:8f:d8:62:e3:b8:bc:8e:
4c:38:74:29:f1:a7:65:5c:ac:80:66:9c:06:6f:48:
a4:64:20:d5:b0:6e:90:61:96:14:2e:32:fd:0f:27:
55:41:e7:fa:b6:fc:0b:f7:ae:94:f1:5e:ed:bb:c1:
25:b0:48:61:ce:18:94:d8:ce:cb:8a:56:60:60:2f:
62:fd:6d:43:da:e4:ca:4f:f0:b0:da:67:f0:b5:a4:
27:d2:e0:5c:f8:3d:b6:9c:31:23:a5:6f:83:30:03:
f6:7d:e5:8c:4d:ea:bd:e0:28:b5:1e:d6:9d:eb:fe:
fb:c4:96:c2:ed:ee:73:50:80:25:a7:ff:f0:80:5c:
67:93:f4:db:d5:ba:6e:fb:2a:23:26:1a:de:2d:4e:
2e:15:94:75:53:65:40:dd:fe:af:ac:39:1c:cc:55:
b6:e4:11:6b:bc:56:46:7a:23:1b:ef:8d:d5:1c:cb:
34:ee:6a:d7:43:b6:aa:0a:b6:76:e8:f4:b1:5b:ea:
45:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D8:57:55:14:0F:20:79:0E:01:80:0C:0E:C5:65:53:33:94:5A:A6
X509v3 Authority Key Identifier:
keyid:B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/I9hXVRQPIHkOAYAMDsVlUzOUWqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.5.0/24
95.169.203.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:f3:8e:37:54:4a:d5:53:07:68:86:d2:be:c2:c4:60:56:9f:
7e:67:8b:da:28:49:2f:a2:15:5e:a5:75:36:4d:fc:e0:be:06:
f7:5c:73:e2:3a:c7:a5:17:e8:24:a0:37:cf:5e:ab:27:b2:91:
ca:47:d7:7b:ae:47:b5:ca:84:58:09:2b:10:76:34:bd:51:db:
75:d8:c1:25:e4:7b:68:77:c2:6e:fa:f8:1d:70:31:61:a2:17:
2d:d1:3a:09:9b:f0:97:04:1f:b8:20:f9:09:b8:dd:f5:ea:aa:
db:ad:f1:8d:7d:20:80:c6:66:5d:f3:3e:08:5c:00:02:a1:40:
dd:ab:b8:52:b7:23:95:ae:4f:c9:4c:5b:e1:18:37:61:ef:1a:
86:d7:d7:48:35:c2:f6:2a:34:79:91:36:75:bb:16:a8:36:8b:
45:0f:d3:47:b1:7d:4c:2d:de:7e:48:2d:1e:b1:01:04:66:53:
eb:3f:dd:d6:55:67:bf:42:ad:9a:88:04:c8:cb:bd:f5:a0:be:
7f:a4:ca:57:1d:fa:cb:f7:9c:92:3e:c8:70:24:8d:e3:2c:1b:
95:b7:32:ab:98:71:34:7d:f6:f1:62:6f:91:a2:55:bf:0b:e8:
3c:d9:b4:6d:fb:ff:d8:21:75:e6:0b:01:83:4b:96:92:e7:44:
d4:f5:25:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 13:20:18 2024 by rpki-client on console-ams.rpki-client.org