Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/mCZHVoR21pb2FgfxGzPS67leNRE.roa
File: mCZHVoR21pb2FgfxGzPS67leNRE.roa (raw, json)
Hash identifier: 1va1hKWsJUO2yBjBgFaF80z59QiB7Nv+aN/+vtqgLT8=
Subject key identifier: 98:26:47:56:84:76:D6:96:F6:16:07:F1:1B:33:D2:EB:B9:5E:35:11
Certificate issuer: /CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Certificate serial: 0185738FEADAF9EBAE2BC873F9CE33668931
Authority key identifier: 84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/mCZHVoR21pb2FgfxGzPS67leNRE.roa
Signing time: Mon 02 Jan 2023 17:38:09 +0000
ROA not before: Mon 02 Jan 2023 17:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50370
IP address blocks: 195.114.24.0/23 maxlen: 24
2001:67c:6a4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:ea:da:f9:eb:ae:2b:c8:73:f9:ce:33:66:89:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Validity
Not Before: Jan 2 17:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=982647568476d696f61607f11b33d2ebb95e3511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:32:ac:6c:f3:c4:3e:ca:01:e4:ce:fd:09:34:
87:bc:49:97:1d:00:0d:b7:18:f5:6d:c6:45:d4:46:
bc:e2:29:88:fc:26:97:5b:08:99:92:e8:c6:50:f3:
e1:2c:5e:a4:74:d7:e8:55:e7:76:45:88:8a:9a:04:
77:ae:13:b5:9b:f9:bf:f6:41:8c:70:94:bc:9d:9a:
ba:56:03:59:ca:7d:67:bb:00:3e:b7:6b:60:29:92:
95:e0:50:e1:8f:5e:53:34:46:6c:6c:51:f0:92:27:
7d:f5:8b:09:12:e0:56:fe:66:65:5d:67:a6:d1:d0:
c1:d4:dd:32:d0:40:07:21:30:dd:7f:84:b9:9a:9a:
57:67:41:bb:33:5a:5f:17:9f:17:a9:54:1a:f9:92:
f0:32:15:a6:8e:bf:6b:1d:9a:73:56:c3:a3:93:99:
5e:97:bd:ed:dd:f2:fe:2e:15:dc:eb:df:73:97:27:
19:1d:2c:a0:98:39:c3:07:14:1e:e1:4b:df:b3:09:
d0:6e:00:93:fc:09:5b:c9:13:a5:da:be:03:3d:5d:
ff:5d:ce:7f:00:d8:78:e3:90:ae:14:5d:a8:a1:20:
43:c5:e8:7c:cb:f0:19:a5:b9:34:6a:a7:66:dd:87:
da:b4:f8:7c:9f:28:a9:d6:ae:98:65:0c:1f:6b:14:
42:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:26:47:56:84:76:D6:96:F6:16:07:F1:1B:33:D2:EB:B9:5E:35:11
X509v3 Authority Key Identifier:
keyid:84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/mCZHVoR21pb2FgfxGzPS67leNRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.24.0/23
IPv6:
2001:67c:6a4::/48
Signature Algorithm: sha256WithRSAEncryption
a3:cf:35:d8:9f:6b:63:34:ac:b1:8e:bc:e0:43:9e:39:7f:ae:
1a:56:83:69:50:f3:17:22:fa:f4:55:1d:52:39:ea:fe:eb:ac:
f4:26:3d:87:ea:3e:af:3a:f9:8f:95:71:b6:2e:7c:f4:4e:6c:
d3:15:d3:63:68:d2:82:01:fc:b5:13:55:9e:93:d7:2f:62:4b:
95:a4:d0:9c:0f:33:56:db:f6:cb:51:62:a0:07:0a:f6:fe:64:
df:04:30:62:b4:3c:96:3b:a4:81:97:81:32:7c:ab:20:5d:6a:
ea:e4:27:bd:6f:42:ce:a0:15:22:f7:a3:ed:1f:d7:2b:df:f0:
c4:3a:35:2d:cf:c3:c6:1a:c1:67:84:a5:3a:db:d5:a0:b6:8c:
63:71:21:9a:80:33:0d:95:da:79:1f:0c:8b:c1:c0:50:50:de:
97:a7:e3:75:ac:25:ee:23:7b:fd:fa:27:81:bc:2c:fa:14:7b:
08:a0:4d:90:a4:0d:f4:6b:20:c7:3f:f6:af:e3:fa:26:23:88:
62:ec:dd:82:02:66:64:ba:f6:ba:02:3f:c1:06:9f:10:49:ce:
3e:61:e3:ad:0d:de:d4:b5:11:9f:36:ef:79:fb:2d:7e:57:53:
95:a8:e3:b1:50:a9:e2:59:57:f5:5b:00:1a:6e:08:e2:f7:17:
ec:9e:c9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:12 2024 by rpki-client on console-ams.rpki-client.org