Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/30hkkx9JXvitLW7v_ufFg0iNZ-g.roa
File: 30hkkx9JXvitLW7v_ufFg0iNZ-g.roa (raw, json)
Hash identifier: 9R4GetJrkvnnq/NG399ZYeGix7Sv9gYIe61gh148YTc=
Subject key identifier: DF:48:64:93:1F:49:5E:F8:AD:2D:6E:EF:FE:E7:C5:83:48:8D:67:E8
Certificate issuer: /CN=84d60d2dc6ad82a2570e0000fdd993948bc454d8
Certificate serial: 01856E667147BBF6E3C13294AFC8FB55B5D1
Authority key identifier: 84:D6:0D:2D:C6:AD:82:A2:57:0E:00:00:FD:D9:93:94:8B:C4:54:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYNLcatgqJXDgAA_dmTlIvEVNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/30hkkx9JXvitLW7v_ufFg0iNZ-g.roa
Signing time: Sun 01 Jan 2023 17:34:45 +0000
ROA not before: Sun 01 Jan 2023 17:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.98.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:71:47:bb:f6:e3:c1:32:94:af:c8:fb:55:b5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d60d2dc6ad82a2570e0000fdd993948bc454d8
Validity
Not Before: Jan 1 17:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df4864931f495ef8ad2d6eeffee7c583488d67e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:05:60:ac:dd:b7:f5:56:f1:6e:37:5c:af:fc:
1c:62:af:4f:b1:eb:39:3d:d1:96:a3:5d:2e:15:8b:
e8:a7:cf:f9:6a:2d:0e:cc:56:42:88:03:81:b4:bd:
be:87:ba:b8:a2:51:1f:6f:35:de:d3:4e:3e:90:19:
e7:e4:00:dd:03:2e:39:41:31:77:03:21:9a:3c:b5:
64:58:fb:d6:90:11:18:be:58:84:93:1c:a1:aa:db:
a3:aa:c4:86:26:79:07:52:81:c2:ef:29:0d:27:74:
2f:dc:5b:3c:b2:19:36:72:c0:e1:06:d5:ad:fd:39:
4c:2e:06:7c:54:49:84:1e:3b:2a:5b:1f:22:52:84:
6c:a0:fb:ec:5d:55:87:f8:99:46:93:26:88:16:74:
1a:11:c1:11:57:02:32:7c:63:c6:32:40:9e:8e:c5:
65:03:e5:54:92:70:eb:33:f8:ec:94:53:79:e1:32:
83:a6:80:c7:5c:54:25:1a:9f:3e:ac:99:36:16:3a:
55:e9:91:dc:b0:0c:1f:55:22:48:02:91:c8:d9:7e:
1e:1d:cd:cf:cc:9c:2a:0d:8d:d5:38:f8:09:03:eb:
cb:07:24:12:d8:f4:37:1e:a0:8e:4e:f2:b6:ea:fa:
86:38:ad:d2:15:0e:aa:0f:8d:24:ad:0b:ee:a8:05:
88:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:48:64:93:1F:49:5E:F8:AD:2D:6E:EF:FE:E7:C5:83:48:8D:67:E8
X509v3 Authority Key Identifier:
keyid:84:D6:0D:2D:C6:AD:82:A2:57:0E:00:00:FD:D9:93:94:8B:C4:54:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYNLcatgqJXDgAA_dmTlIvEVNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/30hkkx9JXvitLW7v_ufFg0iNZ-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/hNYNLcatgqJXDgAA_dmTlIvEVNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.159.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:b6:80:1f:da:9e:1d:fc:a2:9a:b1:1a:80:b4:38:79:9e:cf:
34:cb:58:a0:10:74:5a:a3:11:9c:0e:fd:e0:f1:a1:24:ab:65:
2b:92:7c:f7:d6:b6:69:06:2e:46:27:92:4c:ef:fe:18:61:40:
e3:c4:21:cc:cd:a8:6d:6d:91:10:83:8a:f2:a7:c4:dd:1f:86:
fc:24:50:b7:88:48:18:72:44:bc:ce:e0:85:8f:df:27:f5:8b:
2c:d5:c2:95:6d:cf:f3:77:5d:3a:8f:ca:bd:25:48:08:71:33:
7d:89:e6:5e:1f:4c:5c:c6:12:8b:b0:c3:f0:b3:06:47:eb:d9:
30:64:f7:b5:d7:a0:e8:45:28:d3:34:21:5c:98:84:13:76:4d:
b9:20:54:2a:37:97:51:d3:61:4b:eb:22:be:4b:3a:d7:6d:87:
cb:7d:8a:00:56:ac:6f:e1:e6:5b:07:04:dd:f2:7a:e9:7d:cc:
d4:c5:96:3e:e9:88:80:4d:af:e0:ee:2c:32:fd:42:bf:68:de:
e8:81:f9:67:50:64:f1:fd:f9:45:8c:53:f3:94:1a:a0:b8:79:
9c:68:b3:4b:99:78:ef:49:4a:04:4d:47:87:13:c4:1a:5c:09:
25:0a:f9:97:92:52:70:c3:0f:3f:b6:53:dd:c5:2c:a0:74:7b:
e5:91:2a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:20 2024 by rpki-client on console-fra.rpki-client.org