Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/9HPXFGfUwvQfu3EJ7JhezWB4B8I.roa
File: 9HPXFGfUwvQfu3EJ7JhezWB4B8I.roa (raw, json)
Hash identifier: r17m7mHqcyUpsDNr4wXRNEGpFX/8WQwNvyTwtVlO4RQ=
Subject key identifier: F4:73:D7:14:67:D4:C2:F4:1F:BB:71:09:EC:98:5E:CD:60:78:07:C2
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 01856C4A4D56656B9A5C9D1B4C2B774FBEA9
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/9HPXFGfUwvQfu3EJ7JhezWB4B8I.roa
Signing time: Sun 01 Jan 2023 07:44:46 +0000
ROA not before: Sun 01 Jan 2023 07:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201723
IP address blocks: 185.54.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:4d:56:65:6b:9a:5c:9d:1b:4c:2b:77:4f:be:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Jan 1 07:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f473d71467d4c2f41fbb7109ec985ecd607807c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:df:74:dc:e6:87:a8:0d:4f:0c:4e:1e:cc:d9:
aa:4d:15:6e:00:96:38:b8:25:2e:59:94:37:06:ac:
9c:cf:e3:83:b2:63:d6:3a:3d:95:d5:0b:ef:4a:c1:
25:2b:cf:e9:24:f3:b1:ca:57:8b:c6:b7:76:50:35:
89:dd:53:29:f5:00:7e:de:ad:24:92:3d:a6:fb:c8:
b0:03:93:9a:cb:cb:46:8e:a7:8b:02:6e:66:b7:e4:
ab:f9:a3:09:31:2e:e1:fa:d9:7e:27:8f:10:b8:5d:
fa:01:3e:18:5c:31:ad:07:77:5e:ef:9c:4d:fa:ec:
ad:d4:7b:4d:0a:d1:33:d7:db:54:3a:fc:38:46:eb:
2e:9b:70:0b:90:66:b5:d9:9b:a2:f4:b4:c4:36:17:
2d:aa:1a:88:55:a6:68:7e:32:fc:75:fd:8c:c5:9b:
39:08:d5:cf:44:ed:48:f4:d7:de:9e:fc:55:45:24:
6f:5f:4b:ec:40:69:d3:63:70:8d:bf:b2:f7:f3:56:
d1:15:6e:df:f2:44:c1:8b:b0:4d:2f:d8:91:c7:5c:
70:3e:f6:dd:fa:af:53:5b:24:d2:a1:58:18:67:b0:
4e:b1:61:e8:6b:73:13:df:32:ff:2b:1d:e8:ff:98:
80:45:9d:f8:74:19:16:b7:e2:55:9d:fe:a7:3a:19:
95:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:73:D7:14:67:D4:C2:F4:1F:BB:71:09:EC:98:5E:CD:60:78:07:C2
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/9HPXFGfUwvQfu3EJ7JhezWB4B8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.95.0/24
Signature Algorithm: sha256WithRSAEncryption
33:e9:f2:7e:87:70:f2:6a:4a:d6:4c:6b:11:5d:8a:d3:6c:7e:
f0:ca:10:ad:c3:81:a0:85:9c:12:38:c3:de:ee:98:c0:b3:a0:
98:c1:6b:33:6f:11:4f:34:bd:d9:ce:e4:fc:3a:b8:75:6d:db:
0e:b5:80:16:29:77:d7:ac:af:82:51:90:ef:bb:e8:84:3c:f4:
e6:2a:e5:64:bf:59:fd:90:bd:3a:6e:35:40:56:aa:5f:a3:c6:
8e:da:31:97:13:ee:f1:71:1d:72:c4:e9:b7:34:7c:94:0d:d8:
81:e3:c3:49:2b:bd:e6:0d:4d:56:42:e1:07:23:62:cf:e0:17:
05:63:5e:74:6a:3b:67:2c:a4:12:c3:96:41:81:01:a1:ff:f2:
8b:30:63:a7:72:47:b0:16:ea:0c:21:20:94:79:00:e6:d1:14:
29:bf:fe:48:d5:f1:04:98:7a:68:0b:e7:37:64:eb:53:88:d1:
c8:89:52:a9:c2:8c:7e:a4:f5:4e:9f:83:50:69:4a:af:a4:d4:
94:84:5e:67:78:f9:80:11:e8:d0:5b:a6:cf:09:a8:c0:f1:3f:
17:1f:70:7e:00:8d:57:ad:07:fe:38:72:df:57:f2:2d:94:64:
3e:e5:cf:0f:9f:de:bb:60:09:1d:5f:eb:32:81:cc:8b:cc:f4:
f0:65:ce:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:49 2024 by rpki-client on console-fra.rpki-client.org