Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/h4ft1glwCte6ecgwdiAXzFR-hvc.roa
File: h4ft1glwCte6ecgwdiAXzFR-hvc.roa (raw, json)
Hash identifier: SY5dhvPUiF335+OYzGo0mjOyT3lV9dN49Y4J8/IUq40=
Subject key identifier: 87:87:ED:D6:09:70:0A:D7:BA:79:C8:30:76:20:17:CC:54:7E:86:F7
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9F9DB6674369BD7629DAE12775F89
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/h4ft1glwCte6ecgwdiAXzFR-hvc.roa
Signing time: Mon 02 Jan 2023 09:04:51 +0000
ROA not before: Mon 02 Jan 2023 09:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212161
IP address blocks: 2.188.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f9:db:66:74:36:9b:d7:62:9d:ae:12:77:5f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8787edd609700ad7ba79c830762017cc547e86f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4d:ba:28:03:d3:f9:9b:05:2f:77:75:0d:6a:
28:51:60:e1:4f:62:1c:57:ea:00:c8:8c:e9:54:30:
7f:d9:cc:24:12:3b:55:79:39:a9:4c:82:44:bc:ff:
95:3d:15:6e:3c:31:ec:fe:33:27:bf:40:04:5e:c5:
b3:b0:80:9a:02:34:e2:50:02:bb:08:3c:23:ed:a9:
de:bb:ef:dc:6d:83:34:08:04:12:ce:52:b0:d3:2c:
95:e9:a1:f5:b2:a1:2e:9f:be:ac:a9:55:3b:d2:9b:
14:93:90:ef:5b:84:f7:cf:eb:7d:b4:00:81:b3:39:
9b:a7:77:ac:78:79:42:30:bd:3f:74:0c:81:a4:13:
07:b6:cd:7d:de:de:25:a6:98:f3:7c:2a:e4:ba:5d:
7c:84:c2:16:aa:2e:d0:ab:1a:b6:c4:74:da:cc:92:
79:fa:3f:ad:d7:2b:5c:7c:e4:0e:5c:62:20:e8:a4:
ca:ad:a0:19:e0:34:6c:ff:3a:ec:57:c9:7c:78:42:
d7:78:74:ff:e8:02:59:08:ce:31:d5:27:75:65:57:
b8:71:3f:b6:3b:f3:28:96:cb:4c:03:6d:82:59:80:
34:97:a8:7b:cc:56:55:78:b5:fd:bd:0d:7b:7f:ed:
20:41:ac:08:3a:c2:c3:0f:e9:2c:3a:6f:bc:a7:a1:
02:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:87:ED:D6:09:70:0A:D7:BA:79:C8:30:76:20:17:CC:54:7E:86:F7
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/h4ft1glwCte6ecgwdiAXzFR-hvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.229.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:c9:dd:6d:bf:58:5a:64:8d:22:90:2e:b8:95:2f:a4:ed:db:
e1:ba:ae:11:eb:05:25:2f:3f:0b:0e:11:91:de:a0:04:2f:39:
ac:6a:59:95:42:dd:ee:fc:42:5d:a2:01:21:4c:ef:79:8a:22:
d1:f5:22:1e:bc:2c:48:c5:8b:37:8c:04:fc:fd:7f:97:1b:c2:
7e:15:7a:fc:3c:0d:81:59:7b:5d:64:c8:af:cf:94:17:6e:0c:
e2:91:2d:98:a0:b4:cd:a1:05:a6:be:38:d0:23:14:02:23:04:
ec:83:11:2d:c0:0f:73:33:4d:62:1b:51:5e:a1:dd:bf:ec:46:
02:bb:e3:23:94:c6:45:cd:6d:bd:61:64:5e:89:f3:ef:82:9d:
3c:20:87:3f:c5:cb:92:52:66:b7:26:8a:b8:f6:4b:58:b4:42:
5e:ee:fd:cd:d5:b2:7d:a6:c2:54:3e:8d:a0:24:78:ca:da:06:
85:a2:f6:9b:58:9e:7f:6d:80:d0:84:02:4b:e1:eb:f2:94:e3:
24:e4:57:ec:28:d0:b3:97:42:f6:3c:ee:a6:07:5b:34:c9:0d:
2d:20:ca:b0:7a:f8:47:c5:48:0c:de:93:cd:37:76:14:4a:fd:
bc:15:9c:1e:b9:b7:02:c2:65:be:26:f2:b4:73:e2:1b:9e:31:
61:4d:7a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org