Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e287d9-9c3b-4121-92b6-a1d9e754c12e/1/hmEts7X14mUS7eSAy6j-l_R3t4U.roa
File: hmEts7X14mUS7eSAy6j-l_R3t4U.roa (raw, json)
Hash identifier: qShi8giLhUWCUZO3R2P8g0l9D5ZXKhMwCylRZUoY0UQ=
Subject key identifier: 86:61:2D:B3:B5:F5:E2:65:12:ED:E4:80:CB:A8:FE:97:F4:77:B7:85
Certificate issuer: /CN=54272ff3172973c869a52212bf7ce801e1f8e783
Certificate serial: 0185738FB44D34C0401278A0AAF2934898F2
Authority key identifier: 54:27:2F:F3:17:29:73:C8:69:A5:22:12:BF:7C:E8:01:E1:F8:E7:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VCcv8xcpc8hppSISv3zoAeH454M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e287d9-9c3b-4121-92b6-a1d9e754c12e/1/hmEts7X14mUS7eSAy6j-l_R3t4U.roa
Signing time: Mon 02 Jan 2023 17:37:55 +0000
ROA not before: Mon 02 Jan 2023 17:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47986
IP address blocks: 94.124.48.0/24 maxlen: 24
94.124.49.0/24 maxlen: 24
94.124.50.0/24 maxlen: 24
94.124.51.0/24 maxlen: 24
94.124.48.0/21 maxlen: 21
94.124.55.0/24 maxlen: 24
94.124.52.0/24 maxlen: 24
94.124.53.0/24 maxlen: 24
94.124.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:b4:4d:34:c0:40:12:78:a0:aa:f2:93:48:98:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54272ff3172973c869a52212bf7ce801e1f8e783
Validity
Not Before: Jan 2 17:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86612db3b5f5e26512ede480cba8fe97f477b785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:f0:e0:76:c5:d4:36:6c:cd:24:75:cf:97:
53:fc:b7:34:07:5c:ca:cd:ad:bf:eb:75:c1:8c:fa:
10:08:93:5f:b7:38:6d:68:bc:d1:e8:fa:47:4f:98:
0e:5e:06:52:c1:99:52:51:d8:04:7c:3a:57:f5:0f:
ca:07:4c:93:99:c2:c4:50:15:31:7f:a1:9a:b2:8a:
95:0b:6a:dd:21:b4:73:ce:b6:ea:5a:e7:52:52:58:
f4:9b:a4:28:97:c4:61:30:5a:3e:a7:9c:0f:37:73:
67:e2:b5:4d:4f:98:71:e6:7b:76:8c:83:87:5d:90:
55:dd:86:64:c7:ac:05:e5:da:e0:51:93:51:9d:ec:
72:29:6c:a4:c3:05:e6:da:73:80:53:cc:76:80:f5:
c4:27:e4:a9:05:ef:b3:9b:ae:29:0f:42:d5:23:24:
7d:d6:5a:de:00:64:63:49:e2:f5:71:1b:5d:22:c9:
6a:e6:71:e8:9e:18:f7:25:87:a8:db:da:a4:5b:a1:
aa:dc:5e:b8:1a:f8:d3:8a:6e:63:b7:7e:ef:79:8a:
b2:98:5c:ff:b1:8c:1c:7e:f6:e8:03:df:2d:1c:c6:
f6:36:3e:6f:7b:0c:6d:ca:09:db:d7:a2:2f:a8:70:
3c:12:0f:e1:fd:1b:d4:12:c9:f4:56:50:44:de:3e:
8c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:61:2D:B3:B5:F5:E2:65:12:ED:E4:80:CB:A8:FE:97:F4:77:B7:85
X509v3 Authority Key Identifier:
keyid:54:27:2F:F3:17:29:73:C8:69:A5:22:12:BF:7C:E8:01:E1:F8:E7:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VCcv8xcpc8hppSISv3zoAeH454M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e287d9-9c3b-4121-92b6-a1d9e754c12e/1/hmEts7X14mUS7eSAy6j-l_R3t4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e287d9-9c3b-4121-92b6-a1d9e754c12e/1/VCcv8xcpc8hppSISv3zoAeH454M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.48.0/21
Signature Algorithm: sha256WithRSAEncryption
30:82:80:3a:bf:1d:df:8c:a5:cb:24:4f:be:c2:47:72:4e:78:
d2:d8:11:03:9f:4f:67:a4:24:11:7b:d8:87:2f:2c:3e:fb:55:
c5:a4:33:18:0a:b0:fc:e9:04:17:57:23:44:d6:53:84:4d:39:
30:b1:ac:db:1f:2b:24:a4:15:f9:cd:56:ad:6f:24:3a:bf:b2:
c3:f8:5e:eb:d6:db:6a:7a:90:ab:ba:5f:6c:2d:e5:54:c4:20:
2d:4b:88:e5:30:9f:f4:de:1c:87:13:d7:75:74:74:b1:a8:70:
1e:3e:a4:d4:c9:b2:d0:a2:65:83:e9:76:a3:60:2b:fc:42:4a:
a2:b8:65:8e:03:b6:f0:9d:56:72:95:ac:a3:03:04:3b:cb:d9:
d9:15:c3:a4:6a:17:5d:b3:95:4c:9c:f2:4c:fe:46:6e:e6:59:
b8:50:fe:a9:be:25:67:b8:dd:23:ca:5a:3f:41:58:95:37:01:
df:b8:99:38:e1:cf:db:c4:ff:85:d8:f9:06:ea:d7:57:1e:be:
fe:de:15:1d:26:ad:80:c3:76:cd:eb:d1:3d:ef:ce:57:32:91:
f8:74:d2:54:a7:33:3b:d2:9a:7d:27:83:f0:45:3e:d4:77:4f:
38:f9:2a:b0:7a:14:30:2e:ea:28:25:2e:ec:67:77:07:0f:79:
e6:c8:4a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:07 2024 by rpki-client on console-ams.rpki-client.org