Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/HaCIdtrNwD5HLGJfUtw1qamfGCY.roa
File: HaCIdtrNwD5HLGJfUtw1qamfGCY.roa (raw, json)
Hash identifier: veh/brRB/8jCsRKxGSYnkkd/78uzg3H8rSxbnHnr0tk=
Subject key identifier: 1D:A0:88:76:DA:CD:C0:3E:47:2C:62:5F:52:DC:35:A9:A9:9F:18:26
Certificate issuer: /CN=1062bc36512658a0f7d3f96bc1d8e67d9fd4918b
Certificate serial: 01856DA6620A486B40BB4EFC403FDB378171
Authority key identifier: 10:62:BC:36:51:26:58:A0:F7:D3:F9:6B:C1:D8:E6:7D:9F:D4:91:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EGK8NlEmWKD30_lrwdjmfZ_UkYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/HaCIdtrNwD5HLGJfUtw1qamfGCY.roa
Signing time: Sun 01 Jan 2023 14:04:58 +0000
ROA not before: Sun 01 Jan 2023 14:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29551
IP address blocks: 195.245.86.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:62:0a:48:6b:40:bb:4e:fc:40:3f:db:37:81:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1062bc36512658a0f7d3f96bc1d8e67d9fd4918b
Validity
Not Before: Jan 1 14:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1da08876dacdc03e472c625f52dc35a9a99f1826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f9:e5:6b:f6:81:ef:25:03:f1:a9:f9:12:ae:
00:11:ff:56:61:ed:5f:3d:a5:29:06:d4:4f:15:ee:
ee:64:ae:36:05:8f:a6:ec:2b:52:d3:90:f8:63:46:
2f:51:2d:f6:0e:05:b2:5a:c0:01:7e:5c:a3:fd:77:
52:80:14:83:59:33:b1:b6:8e:1c:7c:16:7f:31:85:
a4:e8:ee:0d:f7:3b:4d:ad:67:e6:20:15:8b:6f:30:
16:0d:b0:09:23:ff:34:96:f6:46:80:1f:b3:36:f1:
27:3f:ad:bc:a2:30:af:78:9b:95:5c:85:7c:b4:3f:
15:99:09:6a:03:ae:b3:db:df:1a:a7:5d:08:fe:07:
d0:02:8e:54:ff:48:c4:0e:f0:c1:8a:d1:04:fb:43:
e8:51:6c:39:be:a2:b6:8c:9c:4b:66:97:6c:ac:4d:
bf:29:9a:64:27:3f:ef:4e:d2:93:58:e7:e1:8a:61:
6e:22:ef:16:f7:46:70:bf:f6:d1:d0:8d:88:c1:99:
02:09:42:e9:56:e0:62:54:be:a9:bb:55:90:62:38:
52:5e:1d:ae:7e:7f:9e:b1:f0:1a:3e:60:b6:cb:f2:
da:42:d7:4b:78:be:49:69:54:a8:fe:81:98:36:24:
52:7f:08:00:76:7c:d1:f9:9b:8d:e5:21:79:9d:8e:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A0:88:76:DA:CD:C0:3E:47:2C:62:5F:52:DC:35:A9:A9:9F:18:26
X509v3 Authority Key Identifier:
keyid:10:62:BC:36:51:26:58:A0:F7:D3:F9:6B:C1:D8:E6:7D:9F:D4:91:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EGK8NlEmWKD30_lrwdjmfZ_UkYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/HaCIdtrNwD5HLGJfUtw1qamfGCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/669ebf-ee7f-4eb7-8486-95ad92ac8698/1/EGK8NlEmWKD30_lrwdjmfZ_UkYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.86.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:45:92:ed:25:52:ac:ab:5c:6d:93:4c:b2:16:da:ab:85:a6:
8f:ac:3b:6c:40:2c:8f:d6:6b:69:69:3b:d5:9b:20:ed:a6:94:
9e:25:45:02:e4:19:e6:9c:1a:4d:1c:20:32:ca:e8:07:15:de:
ae:91:f6:e1:3f:24:0c:ca:e7:16:42:e3:95:d3:fc:fe:38:b9:
64:57:a4:0f:a8:03:0c:49:a5:36:6e:e7:fc:64:b6:d4:dc:d5:
ad:29:0b:6e:a7:1b:7f:33:39:28:00:16:e3:57:f4:1d:ed:fd:
29:6e:ff:1f:a6:26:5c:4f:04:df:d7:c7:7c:c5:d8:f3:2e:ab:
87:94:d6:1a:66:fd:f0:1c:66:90:a8:45:d3:78:00:11:43:69:
87:c0:95:83:72:ec:c3:72:c7:93:99:23:b1:ef:ca:0f:b8:38:
87:52:00:fb:2d:6b:94:3a:51:41:c6:e2:42:51:cb:47:1b:aa:
a7:e5:73:f3:26:94:84:7e:6b:74:07:48:6c:78:05:08:86:fe:
26:25:a2:66:11:11:21:42:c7:65:fe:68:e2:bc:68:ce:aa:10:
17:e1:cc:3a:81:2b:88:c6:73:ac:d8:84:99:3c:d2:b5:51:12:
99:8c:6c:e1:c8:84:fb:02:03:c0:4e:4f:ef:67:18:b1:66:41:
7d:4d:f4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:04 2024 by rpki-client on console-ams.rpki-client.org