Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/9df811-07dc-4fdf-9118-77fd4d1e5b26/1/HZv_RJUyroX8r7637i43gsGFzZI.roa
File: HZv_RJUyroX8r7637i43gsGFzZI.roa (raw, json)
Hash identifier: SGEtZqxvDOwXR9J6iaTlS/Ra9LPKQm1lfZmMHx2HDy8=
Subject key identifier: 1D:9B:FF:44:95:32:AE:85:FC:AF:BE:B7:EE:2E:37:82:C1:85:CD:92
Certificate issuer: /CN=ff7276c4d8cfafc04c26f85fb34fd9ece4769695
Certificate serial: 01856C9CA20199A045950C0D15AC0F320D81
Authority key identifier: FF:72:76:C4:D8:CF:AF:C0:4C:26:F8:5F:B3:4F:D9:EC:E4:76:96:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_3J2xNjPr8BMJvhfs0_Z7OR2lpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/9df811-07dc-4fdf-9118-77fd4d1e5b26/1/HZv_RJUyroX8r7637i43gsGFzZI.roa
Signing time: Sun 01 Jan 2023 09:14:42 +0000
ROA not before: Sun 01 Jan 2023 09:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42876
IP address blocks: 194.60.243.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:a2:01:99:a0:45:95:0c:0d:15:ac:0f:32:0d:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7276c4d8cfafc04c26f85fb34fd9ece4769695
Validity
Not Before: Jan 1 09:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d9bff449532ae85fcafbeb7ee2e3782c185cd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bc:ca:1b:8d:63:bd:0b:3a:4b:9b:07:37:9e:
a5:8a:21:cd:8f:43:9d:6e:ef:9b:3b:ca:bf:b2:16:
f3:a6:c4:08:f4:a3:95:7e:c1:61:35:d8:9c:f3:9d:
2d:8b:47:70:2d:49:23:63:3e:7e:fd:55:52:58:7b:
52:b0:4c:f2:38:27:71:bb:a3:1c:6a:24:7f:8a:bc:
23:4c:3b:c3:b1:ee:b6:6d:dc:0a:49:ad:26:8f:d0:
a7:f9:a4:f2:58:d9:9e:07:7d:22:6d:3d:68:13:3b:
ec:91:28:33:91:85:91:72:02:39:82:ca:6a:8e:57:
fa:26:ae:47:33:72:39:c1:d5:9e:fa:50:74:62:ca:
5f:88:72:ee:07:9a:61:7d:8e:59:18:f5:48:55:b0:
b2:11:c5:a4:6c:69:76:08:4b:67:9a:f6:bb:13:62:
09:dd:f6:be:fb:a8:c3:1f:be:d3:e3:35:fa:fe:46:
8b:57:39:0f:4a:b6:54:c2:24:69:af:f6:20:f2:e7:
da:49:77:8d:cd:48:e1:07:7c:8f:e4:e4:69:96:45:
f1:c8:3a:ca:6f:c5:d6:d4:2e:39:8f:3e:65:41:29:
0b:c4:2b:55:39:b5:80:e9:79:97:be:cc:c0:23:2e:
4f:06:3d:28:ed:66:b2:1c:1c:1b:d7:40:8c:40:82:
05:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:9B:FF:44:95:32:AE:85:FC:AF:BE:B7:EE:2E:37:82:C1:85:CD:92
X509v3 Authority Key Identifier:
keyid:FF:72:76:C4:D8:CF:AF:C0:4C:26:F8:5F:B3:4F:D9:EC:E4:76:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_3J2xNjPr8BMJvhfs0_Z7OR2lpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/9df811-07dc-4fdf-9118-77fd4d1e5b26/1/HZv_RJUyroX8r7637i43gsGFzZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/9df811-07dc-4fdf-9118-77fd4d1e5b26/1/_3J2xNjPr8BMJvhfs0_Z7OR2lpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.243.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:36:31:fd:6f:f1:62:09:c4:eb:af:2e:71:c1:ce:5f:18:e7:
b5:04:5f:dd:ba:30:f2:54:7d:c9:23:80:4a:fb:43:ae:0f:16:
53:64:a9:1b:c8:1d:2a:a0:e9:94:0d:52:4c:98:b9:1e:37:07:
37:b8:7a:ae:7b:a7:75:54:bd:71:6f:ea:c7:a0:fb:33:30:33:
db:19:09:2c:b8:22:a7:3c:fc:ef:45:b4:6b:ac:34:6e:09:e8:
a2:90:d6:d7:e2:d0:a4:be:26:03:7b:b3:c7:ee:d9:9c:69:68:
79:f4:08:b8:27:db:d7:f2:ef:8f:69:df:3f:ee:1d:39:db:85:
61:9d:d1:13:2c:91:e4:bc:df:4f:df:2a:73:7e:78:a2:7b:ba:
42:43:c9:25:bd:b6:eb:13:bd:d9:35:b6:90:5d:ff:e1:5a:4d:
48:c4:36:f7:96:e1:dd:88:a7:3a:a3:b8:31:df:f4:93:32:e1:
1a:ae:78:03:c5:00:74:55:38:9c:68:21:7e:70:1f:ba:c0:cb:
1c:2f:98:a8:c1:ff:d9:80:d8:e7:7a:bf:3e:e4:20:71:9e:a4:
58:9a:4b:26:97:33:04:ae:0a:27:6c:e0:6a:dc:1e:ff:70:d0:
9b:b1:b8:58:6c:76:30:f6:15:39:3e:c2:29:48:0b:e6:78:65:
f9:35:2b:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:23 2024 by rpki-client on console-fra.rpki-client.org