Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/hoMQ25vgbMmwzTKAZMoCer9pzGk.roa
File: hoMQ25vgbMmwzTKAZMoCer9pzGk.roa (raw, json)
Hash identifier: ia5Hob1hTkpOtl0WLd3IgK68evv/oklauGd9dVPsGvw=
Subject key identifier: 86:83:10:DB:9B:E0:6C:C9:B0:CD:32:80:64:CA:02:7A:BF:69:CC:69
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 0191D748A93ECAA7B37141437BB9603BAFD9
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/hoMQ25vgbMmwzTKAZMoCer9pzGk.roa
Signing time: Mon 09 Sep 2024 14:55:49 +0000
ROA not before: Mon 09 Sep 2024 14:55:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41122
IP address blocks: 185.195.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 13:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:48:a9:3e:ca:a7:b3:71:41:43:7b:b9:60:3b:af:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Sep 9 14:55:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=868310db9be06cc9b0cd328064ca027abf69cc69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c5:5a:1f:22:b3:fd:8b:71:99:90:52:9c:1b:
90:94:e1:5f:8c:1e:20:0d:8b:6a:c3:c2:aa:4a:11:
93:63:a6:a5:68:bc:36:e6:9b:66:2f:2b:49:3e:bc:
fb:f0:ed:94:49:59:11:1a:37:79:0e:9f:e4:18:81:
c8:15:ed:71:6b:01:75:06:f8:1c:83:10:0c:9f:41:
e8:36:e3:69:c9:52:6d:e2:2e:e5:5d:8d:6f:60:29:
56:41:af:0f:a3:bc:d5:9c:60:04:e2:8b:d2:5d:81:
26:7b:95:a1:0a:1b:e7:39:0c:12:78:0a:92:c4:92:
6b:64:71:3e:eb:0d:93:53:6e:3b:7e:c0:da:80:3c:
8a:27:2b:e8:7a:0c:5c:98:69:43:3d:57:8a:c8:af:
fb:60:e0:bc:78:0f:24:8f:77:d8:41:38:bc:16:2f:
5e:3e:4e:e2:64:8b:3b:34:ea:fa:9b:48:e0:77:ec:
ba:31:bc:cc:9e:8f:da:b5:f5:7d:84:1a:59:72:96:
f7:53:49:a5:a6:84:28:a0:81:c2:e7:fa:40:74:78:
b8:13:bc:71:e4:e1:1f:c8:1e:8f:d4:46:8a:ca:70:
1f:d2:bd:28:80:65:86:15:10:de:bc:19:bf:45:72:
bc:fa:ec:45:b5:88:43:f4:6f:32:c0:8e:80:d7:2d:
c4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:83:10:DB:9B:E0:6C:C9:B0:CD:32:80:64:CA:02:7A:BF:69:CC:69
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/hoMQ25vgbMmwzTKAZMoCer9pzGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.242.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b2:a3:25:ba:ae:26:b6:54:e2:1b:bb:99:f6:4e:26:f2:0d:
47:d9:39:5e:32:a7:9a:57:50:82:b3:9a:e0:0c:1f:7c:7b:c3:
28:98:1e:04:02:9e:d4:9c:63:49:13:46:d7:d8:53:17:4c:af:
21:35:9c:c8:77:61:e4:5e:bd:fc:e7:1d:23:b6:86:53:09:22:
b3:35:8f:ed:49:3f:aa:39:48:d3:93:57:e8:25:90:f0:15:a7:
e1:7c:22:1d:26:0b:7d:ae:82:31:bd:22:8c:95:78:c1:04:e1:
78:8d:7e:e9:1f:4f:cd:03:fb:dd:95:e9:63:59:44:34:b1:9f:
81:dc:e3:e6:82:84:a5:88:26:c3:2e:2d:3e:64:f9:ba:81:56:
9d:12:b6:4f:09:08:37:56:d6:41:c1:b9:a2:fa:e2:b1:0b:6a:
b0:f3:f9:f7:72:40:2d:06:df:97:6e:a1:ce:8e:72:5d:4e:94:
ed:36:65:76:79:0c:fa:50:8c:d7:e0:ce:9b:0a:7c:00:d7:d6:
4e:9a:f6:5f:9f:20:b2:41:5f:19:f0:c4:ec:a9:dc:25:fa:b6:
1f:e9:2b:7b:37:16:87:df:7b:0b:a2:bb:f4:02:24:2d:ba:72:
45:79:b0:ec:7e:d2:b6:b3:72:f9:6d:8e:1d:29:bb:6a:9f:0e:
29:e0:df:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 17:28:41 2024 by rpki-client on console-fra.rpki-client.org