Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/hAUR04He3YhhFlhHQMuDaA5C954.roa
File: hAUR04He3YhhFlhHQMuDaA5C954.roa (raw, json)
Hash identifier: nU0KIf/g1adjGK35IhjCz4MsYMvpCojL5hbrhzgAdRE=
Subject key identifier: 84:05:11:D3:81:DE:DD:88:61:16:58:47:40:CB:83:68:0E:42:F7:9E
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 019122306DD0DA75DB1A3FD32D469D1923C6
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/hAUR04He3YhhFlhHQMuDaA5C954.roa
Signing time: Mon 05 Aug 2024 10:58:04 +0000
ROA not before: Mon 05 Aug 2024 10:58:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 64.137.9.0/24 maxlen: 24
64.137.54.0/24 maxlen: 24
64.137.110.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 29 Oct 2024 17:11:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:22:30:6d:d0:da:75:db:1a:3f:d3:2d:46:9d:19:23:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Aug 5 10:58:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=840511d381dedd886116584740cb83680e42f79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c7:a4:b3:61:57:48:2e:d0:0e:a8:58:38:e5:
da:38:b8:63:f6:54:a9:de:58:09:30:da:12:ff:e8:
2c:cb:2f:1d:1f:2c:2b:a2:f7:2a:24:03:3c:ab:20:
28:f6:44:29:4f:c7:60:00:ff:96:11:f1:fc:67:4e:
b5:f2:3b:4e:28:27:c1:12:41:b8:e7:e8:c4:71:69:
15:7e:c3:67:85:0f:cf:53:a0:7c:69:67:89:c6:e9:
92:60:68:57:ae:57:c2:29:7c:e8:a0:1c:e5:5a:25:
e6:e4:04:80:dd:43:31:33:96:9c:93:bd:db:28:e4:
1f:26:8a:df:fe:56:87:fa:8c:6a:29:f7:5e:db:78:
73:f9:76:1c:f4:e4:a0:a6:6f:1c:1c:c6:c8:0f:b5:
30:7c:30:8e:1c:0a:48:d8:81:a9:a2:67:39:c7:24:
07:c7:8b:af:4b:c4:15:fe:e9:3e:3d:43:fd:c8:83:
ab:54:b1:a7:da:f5:16:04:b5:55:dd:f5:d3:61:0f:
36:c7:18:f5:b2:c6:cc:5b:d1:41:de:f6:ad:9d:17:
b1:8c:ea:94:44:e4:5e:ff:ad:3f:8c:d9:aa:aa:e7:
33:c0:1a:a2:b5:bd:21:0e:3f:72:27:a0:8c:46:fe:
20:32:c7:d9:67:ab:e1:2c:ce:a7:de:31:d3:f8:05:
f0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:05:11:D3:81:DE:DD:88:61:16:58:47:40:CB:83:68:0E:42:F7:9E
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/hAUR04He3YhhFlhHQMuDaA5C954.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.137.9.0/24
64.137.54.0/24
64.137.110.0/23
Signature Algorithm: sha256WithRSAEncryption
46:d4:20:dd:62:ab:99:ad:2a:2b:e9:78:be:42:44:ae:ab:e3:
da:c7:64:b4:d4:69:c9:7e:55:ea:85:9b:3e:ab:8b:4e:46:a3:
c2:b8:9d:c1:e0:ec:ef:71:00:45:e8:4b:22:8a:dc:7c:94:c6:
8a:a8:4b:be:ed:c3:74:08:50:7d:99:b0:cb:cf:ab:e2:52:3d:
79:53:c9:03:90:00:2d:49:fe:4b:58:2b:c6:15:e2:f9:38:0a:
41:3d:03:42:45:8b:35:f1:b2:e9:1e:ff:2d:0f:fe:30:9d:55:
12:38:c6:77:7f:cc:41:aa:c4:18:4b:62:b0:5e:6c:43:00:b0:
ae:60:db:c0:22:7d:9e:3c:41:8b:66:5b:e0:2e:c8:2a:d9:6d:
fe:ff:aa:13:04:03:bc:df:de:55:ba:85:84:8d:95:08:40:9b:
e5:f9:3e:52:d2:b7:1b:c0:9b:12:b2:4d:ab:05:06:43:0b:8b:
b2:79:bf:7e:1b:0a:fc:63:1a:d7:c8:d5:5a:8d:c5:6d:94:8c:
66:3c:e4:6a:b1:8b:af:98:66:93:2b:f0:db:46:93:a9:85:0e:
38:57:28:54:48:84:b5:60:78:d3:08:36:3f:b8:ea:40:29:0d:
a0:bc:f0:7b:95:83:80:e8:db:c0:ef:32:25:46:2a:54:19:81:
18:ce:48:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 19:20:08 2024 by rpki-client on console-fra.rpki-client.org