Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/3HkO0VK_T0K7K5ysYs4Y29f7Ns8.roa
File: 3HkO0VK_T0K7K5ysYs4Y29f7Ns8.roa (raw, json)
Hash identifier: L9bGgN+mYrFDCVOBgY1aAafPdflfMeqbzVluJYQzZE0=
Subject key identifier: DC:79:0E:D1:52:BF:4F:42:BB:2B:9C:AC:62:CE:18:DB:D7:FB:36:CF
Certificate issuer: /CN=3ad734cf90c773428806b968209515b914831a9d
Certificate serial: 019145659553C5F4AF4516E287C580C6D203
Authority key identifier: 3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/3HkO0VK_T0K7K5ysYs4Y29f7Ns8.roa
Signing time: Mon 12 Aug 2024 07:02:50 +0000
ROA not before: Mon 12 Aug 2024 07:02:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.95.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 10:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:65:95:53:c5:f4:af:45:16:e2:87:c5:80:c6:d2:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad734cf90c773428806b968209515b914831a9d
Validity
Not Before: Aug 12 07:02:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc790ed152bf4f42bb2b9cac62ce18dbd7fb36cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:94:fd:70:bb:11:84:4e:bd:f3:a0:7d:60:2a:
4e:27:8d:08:bb:ae:96:ec:1c:c7:8e:64:36:4e:56:
bb:5e:25:c6:21:27:2e:b4:4d:bd:1c:fd:c2:ae:6d:
b2:d2:29:8a:c2:a4:e3:1c:4d:97:68:71:21:e2:c7:
52:26:47:4d:8e:e7:25:56:1f:3b:2c:27:0b:8b:78:
8c:db:35:87:9a:aa:5d:5e:f1:bf:53:a5:22:14:32:
dd:19:06:7a:be:61:3e:a5:55:25:fb:3c:cf:4e:0e:
96:9a:ef:5d:c4:b1:b7:78:ab:bc:6c:dc:8d:c1:71:
a2:fa:ee:2b:58:b3:b9:6e:34:2a:52:dd:b3:57:76:
1d:99:6e:b4:89:cf:03:96:9f:d0:b3:ea:14:a4:ae:
ef:00:77:c8:b2:d0:65:ce:54:70:27:d4:e5:c1:b5:
b8:cd:af:e9:91:7b:35:dd:e2:ad:5f:53:79:09:9a:
bc:ef:01:fc:91:62:34:95:08:7d:fd:f5:99:ef:4e:
24:4f:e6:77:91:c3:69:0e:00:01:bb:0e:03:f2:00:
6e:f0:d2:97:d0:1d:1d:e5:d8:73:d3:57:57:23:68:
b9:03:e9:5f:7e:8e:33:57:6f:86:d4:35:f0:78:8a:
ee:6b:5d:85:4e:6f:43:19:02:b4:a8:2f:20:3f:75:
f6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:79:0E:D1:52:BF:4F:42:BB:2B:9C:AC:62:CE:18:DB:D7:FB:36:CF
X509v3 Authority Key Identifier:
keyid:3A:D7:34:CF:90:C7:73:42:88:06:B9:68:20:95:15:B9:14:83:1A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otc0z5DHc0KIBrloIJUVuRSDGp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/3HkO0VK_T0K7K5ysYs4Y29f7Ns8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ebf381-00c8-480d-a66c-76a1d4d83197/1/Otc0z5DHc0KIBrloIJUVuRSDGp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.69.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b5:8d:1c:a3:8c:36:85:59:6e:5e:12:68:fd:a5:5d:f3:13:
dc:29:30:d0:58:69:96:d1:91:c5:22:a4:11:11:54:d4:7f:06:
4f:60:15:4f:10:34:6b:d8:ba:c7:81:9f:c6:21:02:bc:a4:bb:
24:71:77:a0:20:fb:65:ce:cb:23:10:95:7b:d1:a1:09:64:a9:
86:01:07:8c:f6:63:0a:d5:2a:47:57:cc:5e:9e:e2:11:39:40:
c0:d3:17:38:b8:2a:65:13:ca:b4:08:2f:d9:91:42:88:95:61:
5d:da:b8:37:07:68:d5:d9:b3:cb:fd:55:61:dc:1b:0e:c5:76:
f4:24:f9:57:2c:c8:c1:5c:e5:83:22:93:b1:e2:99:f0:00:86:
92:36:3c:46:39:5f:5a:97:7a:14:22:e5:82:a5:cc:78:fa:8a:
ca:6b:8e:d5:ed:40:5d:8d:a1:f1:32:3e:03:68:a0:8e:3d:01:
0c:22:77:e0:95:7b:e4:5f:2c:2b:b0:74:2e:58:ca:5f:92:09:
45:53:32:07:67:3d:b8:37:b5:d7:46:5a:9c:23:07:27:c7:ad:
2c:15:2e:44:64:25:4d:92:5b:23:1f:d1:5c:9b:b3:76:5b:03:
a5:3a:df:d9:5b:10:b9:74:65:90:da:c3:c8:e6:f3:e0:c9:32:
25:e8:1e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 12:42:42 2024 by rpki-client on console-ams.rpki-client.org