Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a5ce7e-7d1d-48ef-8f36-0b740a36a8ee/1/HmSDIJdRpWMo8keT5dKNtaMghJs.roa
File: HmSDIJdRpWMo8keT5dKNtaMghJs.roa (raw, json)
Hash identifier: /MMqopyQET/Q6+VmUKoFv5RiuPEBjt0JgHIs/yIg56E=
Subject key identifier: 1E:64:83:20:97:51:A5:63:28:F2:47:93:E5:D2:8D:B5:A3:20:84:9B
Certificate issuer: /CN=72c6460b4fb1ef46bc7457ff0cf463bdc4e03fa9
Certificate serial: 0187D7BD5A7C609A698BCA953DEF56F79000
Authority key identifier: 72:C6:46:0B:4F:B1:EF:46:BC:74:57:FF:0C:F4:63:BD:C4:E0:3F:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csZGC0-x70a8dFf_DPRjvcTgP6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a5ce7e-7d1d-48ef-8f36-0b740a36a8ee/1/HmSDIJdRpWMo8keT5dKNtaMghJs.roa
Signing time: Mon 01 May 2023 14:35:23 +0000
ROA not before: Mon 01 May 2023 14:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199160
IP address blocks: 185.81.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d7:bd:5a:7c:60:9a:69:8b:ca:95:3d:ef:56:f7:90:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72c6460b4fb1ef46bc7457ff0cf463bdc4e03fa9
Validity
Not Before: May 1 14:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e6483209751a56328f24793e5d28db5a320849b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9f:41:15:59:f1:6b:2e:42:44:13:8b:00:f3:
0f:6c:5e:70:dd:c1:4c:11:25:59:96:40:c2:ff:8e:
2f:17:79:39:bb:fc:cb:36:66:74:3f:89:d8:13:d1:
21:dd:e8:f1:4f:0c:8a:a8:2b:f3:ee:36:1e:e0:25:
5b:fc:5e:a9:2d:f6:bd:80:ca:e1:eb:47:1f:6d:d3:
13:d3:49:97:26:73:64:82:eb:fb:9c:68:ed:44:28:
d8:a8:e1:96:c0:d9:9c:b4:d4:93:8d:76:e1:fe:cf:
72:00:98:4f:06:49:65:2f:8d:8e:30:38:b1:54:7c:
00:fe:70:76:8c:cc:45:73:4f:f0:0d:b5:3b:57:6f:
c4:35:52:35:4f:87:47:c9:4c:69:45:bf:10:18:b8:
80:31:61:60:ec:71:a3:05:54:31:4d:7f:fd:36:bc:
50:1e:33:71:c0:d0:7d:19:13:dc:fa:89:f9:e2:77:
86:df:88:d6:9b:b8:eb:1b:8c:c6:d3:c9:f6:8f:ca:
80:9c:55:20:d4:d0:17:92:c9:ec:db:1f:11:d0:3a:
73:cb:af:8b:29:9c:38:4a:46:9f:e9:2c:15:85:ea:
b9:94:b2:32:88:01:db:50:e7:8b:21:cb:2d:4e:71:
66:45:69:10:b9:3d:18:70:ed:1f:97:32:a2:19:ad:
91:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:64:83:20:97:51:A5:63:28:F2:47:93:E5:D2:8D:B5:A3:20:84:9B
X509v3 Authority Key Identifier:
keyid:72:C6:46:0B:4F:B1:EF:46:BC:74:57:FF:0C:F4:63:BD:C4:E0:3F:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csZGC0-x70a8dFf_DPRjvcTgP6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a5ce7e-7d1d-48ef-8f36-0b740a36a8ee/1/HmSDIJdRpWMo8keT5dKNtaMghJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a5ce7e-7d1d-48ef-8f36-0b740a36a8ee/1/csZGC0-x70a8dFf_DPRjvcTgP6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:4e:fb:de:da:39:73:b0:b9:5e:2e:00:41:77:7d:62:fb:66:
23:d4:a9:9b:45:30:a2:73:d9:0a:45:2e:0a:77:2b:a7:f7:bd:
79:e6:3f:55:99:39:34:1a:5a:b1:fe:aa:af:10:a1:46:94:ba:
12:e4:29:a1:5e:90:d4:98:f1:2f:5b:b0:90:8e:a7:1b:01:3d:
25:40:17:41:df:33:5a:02:4b:a9:2f:7d:7d:59:a7:c7:6c:32:
d1:8b:e4:4e:ab:e6:59:f8:e4:bc:78:20:5f:5b:6a:38:37:fc:
bc:d5:51:d3:2f:4d:b5:36:33:aa:19:b2:8f:cd:ec:3f:9d:b4:
ff:cd:55:22:9f:a1:0c:87:d5:74:cd:4c:75:af:04:b0:ac:e6:
5a:f9:48:d9:a5:28:40:67:7e:9c:43:f0:dc:59:df:4f:39:6f:
cf:db:c7:ec:79:15:64:1f:30:c0:80:08:90:65:a8:49:e3:c6:
5d:b3:71:d1:9d:31:c9:58:04:9b:72:36:5b:9a:35:ff:d1:2f:
18:c6:d6:b3:1a:7c:8b:14:0d:d2:a7:5a:08:7d:b9:b7:66:83:
58:b4:b2:2b:d4:56:8c:0d:af:66:54:87:14:9c:03:d4:5f:ef:
1f:54:81:d2:1d:0c:4f:35:e4:a4:5f:9f:f4:99:56:3a:a9:41:
87:8f:02:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org