Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6e615f-5fd7-45b6-8acb-76999bf9999f/1/HA7FOe5T5A4FqfdwK3m7t8btkU0.roa
File: HA7FOe5T5A4FqfdwK3m7t8btkU0.roa (raw, json)
Hash identifier: OWn9mPyBXmHAdkjtWqdenF9Iom4TuFCMbkTRqPHp1Sg=
Subject key identifier: 1C:0E:C5:39:EE:53:E4:0E:05:A9:F7:70:2B:79:BB:B7:C6:ED:91:4D
Certificate issuer: /CN=468c267a6474fcb7cc49cf325d0e9dcc5fe8d20d
Certificate serial: 0185728369413E86C438EE867CA28D0C05C0
Authority key identifier: 46:8C:26:7A:64:74:FC:B7:CC:49:CF:32:5D:0E:9D:CC:5F:E8:D2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RowmemR0_LfMSc8yXQ6dzF_o0g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6e615f-5fd7-45b6-8acb-76999bf9999f/1/HA7FOe5T5A4FqfdwK3m7t8btkU0.roa
Signing time: Mon 02 Jan 2023 12:44:52 +0000
ROA not before: Mon 02 Jan 2023 12:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210051
IP address blocks: 195.245.84.0/24 maxlen: 24
2a0d:c5c0::/32 maxlen: 32
2a09:a280::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:69:41:3e:86:c4:38:ee:86:7c:a2:8d:0c:05:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468c267a6474fcb7cc49cf325d0e9dcc5fe8d20d
Validity
Not Before: Jan 2 12:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c0ec539ee53e40e05a9f7702b79bbb7c6ed914d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:13:36:8c:75:b1:df:5c:d1:30:a8:4c:4a:b0:
0c:4f:6b:b7:68:cd:71:fe:18:43:5b:ea:40:c1:c5:
12:b6:4e:da:25:6e:8e:85:b2:4b:d9:58:fe:2c:7e:
30:35:5a:a4:89:9a:2d:c4:e0:3b:f1:d4:97:56:b5:
19:cb:65:7d:a1:0b:e3:b8:72:fc:63:50:2d:27:b7:
1e:ec:ad:80:8d:19:66:d1:88:50:e6:47:02:bf:80:
ad:92:0e:57:02:ae:5a:34:eb:f9:fd:cc:43:25:98:
d0:ab:32:ae:d2:1b:b6:21:1f:41:5a:4a:81:76:8c:
fd:ea:03:9e:a3:11:b4:42:bc:d7:87:bf:1f:4a:87:
b4:69:06:ca:61:c1:ca:c7:2d:99:03:76:1b:cb:7a:
b5:2a:9e:96:0a:81:2a:53:ad:67:d9:f3:61:5b:1e:
72:36:cc:88:a3:a0:c2:b3:c3:0d:92:f0:39:c7:60:
fd:f4:bb:d2:cf:ae:71:49:16:18:8e:d9:f6:d6:da:
c0:f9:7c:ff:6c:3a:60:1e:64:05:f4:de:0c:f2:96:
98:3c:8c:9f:6a:dc:3e:30:ed:62:41:6a:72:9b:ea:
d3:9d:6b:26:43:11:a8:0e:81:21:cc:52:59:66:b7:
b8:a9:68:b2:c2:0b:89:f9:8a:09:32:dd:48:3c:41:
7f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0E:C5:39:EE:53:E4:0E:05:A9:F7:70:2B:79:BB:B7:C6:ED:91:4D
X509v3 Authority Key Identifier:
keyid:46:8C:26:7A:64:74:FC:B7:CC:49:CF:32:5D:0E:9D:CC:5F:E8:D2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RowmemR0_LfMSc8yXQ6dzF_o0g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6e615f-5fd7-45b6-8acb-76999bf9999f/1/HA7FOe5T5A4FqfdwK3m7t8btkU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6e615f-5fd7-45b6-8acb-76999bf9999f/1/RowmemR0_LfMSc8yXQ6dzF_o0g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.84.0/24
IPv6:
2a09:a280::/29
2a0d:c5c0::/32
Signature Algorithm: sha256WithRSAEncryption
19:cc:d7:59:19:1a:f9:95:e5:57:f6:4d:70:3a:15:bc:d7:4d:
cb:c4:98:27:39:88:ea:0c:d4:cb:6a:73:62:58:80:5f:9e:e1:
5b:1a:87:4f:69:ec:4d:07:ef:23:dd:4f:62:5c:c7:c0:3c:a3:
04:fd:c8:66:06:4e:7c:9f:54:96:86:be:c2:31:6a:aa:ae:3f:
d2:cf:c4:51:94:42:59:61:38:14:bb:f7:8d:cf:5c:b2:3c:07:
cf:a7:5c:bf:39:cc:c3:70:f1:a9:85:08:d5:bb:d2:a6:df:a9:
e9:0d:84:6d:83:bf:6f:c4:80:c5:6e:80:0b:d7:fc:db:99:a5:
af:16:6f:1d:45:b5:9b:22:68:8b:cb:2c:6a:53:f7:47:e6:1a:
50:d4:19:1f:02:cb:56:47:37:5b:44:eb:16:c7:ef:47:d1:f8:
3e:5a:82:d6:3f:5f:ce:fe:85:5d:85:29:a7:3f:44:93:f3:98:
b7:fd:51:ec:1b:7d:a7:b3:63:6d:72:0c:f4:a1:14:d9:ef:4c:
6f:35:a5:15:eb:37:13:49:d1:94:d1:78:22:16:3f:38:32:93:
c4:e2:b5:5b:f8:fa:42:3b:76:7d:a0:5f:bb:e5:d0:c0:f1:e2:
61:bc:ba:f7:6f:94:6c:74:0c:9c:45:52:15:a9:30:a7:6d:2b:
5d:1f:8b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:42 2024 by rpki-client on console-ams.rpki-client.org