Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/IHpApVaSuHa3nHfpR-XaTtvBsOA.roa
File: IHpApVaSuHa3nHfpR-XaTtvBsOA.roa (raw, json)
Hash identifier: 9p9AuUVTv2x44aOgghDUWs7I6NFRBTjdHGCYU7dJbzk=
Subject key identifier: 20:7A:40:A5:56:92:B8:76:B7:9C:77:E9:47:E5:DA:4E:DB:C1:B0:E0
Certificate issuer: /CN=46ba3f80039b9e784cfb24bf2c7ddb24e1900a76
Certificate serial: 0188BEF3BA7CFDA844C46A5064E6DCB39450
Authority key identifier: 46:BA:3F:80:03:9B:9E:78:4C:FB:24:BF:2C:7D:DB:24:E1:90:0A:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rro_gAObnnhM-yS_LH3bJOGQCnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/IHpApVaSuHa3nHfpR-XaTtvBsOA.roa
Signing time: Thu 15 Jun 2023 12:07:03 +0000
ROA not before: Thu 15 Jun 2023 12:07:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201512
IP address blocks: 185.62.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Sep 2023 06:19:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:f3:ba:7c:fd:a8:44:c4:6a:50:64:e6:dc:b3:94:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ba3f80039b9e784cfb24bf2c7ddb24e1900a76
Validity
Not Before: Jun 15 12:07:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=207a40a55692b876b79c77e947e5da4edbc1b0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:53:32:bd:9b:ed:cc:49:e7:2c:48:ef:d8:2d:
72:e1:b7:45:5f:01:5d:e9:85:8f:a1:f0:41:a7:33:
bd:b9:3c:1b:ee:d4:44:8c:78:06:23:64:62:75:fb:
23:59:e7:70:06:f6:84:f7:0d:06:56:4c:80:38:c0:
6d:6e:37:d4:32:da:e0:2e:a4:01:47:36:b9:c8:a5:
99:af:58:54:3e:7e:f5:96:89:42:45:98:19:3e:2e:
67:00:4b:3b:b1:54:07:65:1c:12:05:53:49:b3:af:
39:8a:22:f1:95:fa:e1:23:10:2d:8e:a5:5d:b7:64:
07:9b:8e:91:3a:99:96:8d:85:15:c6:71:83:33:88:
64:e4:36:2e:bd:e0:0d:be:d8:2b:13:57:37:71:f2:
95:9b:2a:b8:0d:9a:1a:dd:43:be:6c:fe:e9:aa:be:
00:f9:ea:a9:92:45:be:6a:b9:3f:c3:b9:30:5f:46:
24:46:88:eb:eb:af:7b:6a:0c:fe:51:89:78:8e:db:
ff:3c:87:e4:63:1e:d4:62:1a:03:50:93:f8:de:1d:
f8:02:a6:3d:ad:79:82:bb:df:31:45:a5:17:57:f7:
ac:39:a1:16:3e:45:3e:c2:c3:39:f6:94:31:0c:74:
37:17:d3:40:1e:a7:1e:7a:bb:49:03:af:df:42:d8:
98:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7A:40:A5:56:92:B8:76:B7:9C:77:E9:47:E5:DA:4E:DB:C1:B0:E0
X509v3 Authority Key Identifier:
keyid:46:BA:3F:80:03:9B:9E:78:4C:FB:24:BF:2C:7D:DB:24:E1:90:0A:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rro_gAObnnhM-yS_LH3bJOGQCnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/IHpApVaSuHa3nHfpR-XaTtvBsOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/cfa2ae-e524-4bd0-875b-89ace38220fb/1/Rro_gAObnnhM-yS_LH3bJOGQCnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.62.202.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:0a:40:4c:db:e4:f3:a0:9b:92:66:f9:a1:08:3c:82:09:d9:
ed:38:fc:67:c8:d0:b5:5b:54:35:73:78:c7:19:65:ab:89:56:
7d:2c:10:1b:bc:46:70:23:6b:95:f3:fd:dc:97:bf:d5:0f:45:
ba:49:c7:1e:0a:73:48:4d:71:4e:35:87:cd:37:b3:17:d1:2c:
19:3c:a1:94:48:bb:36:31:56:bc:86:c9:58:28:4b:1b:29:eb:
b3:90:52:f9:27:a0:95:31:22:29:65:40:8a:23:62:fb:ca:8b:
1d:ac:a3:d6:1c:50:dc:d8:dc:24:e5:e7:92:3e:0f:e4:8e:f3:
16:9d:9b:a1:f7:cd:6d:f0:2f:c4:58:f4:f3:f4:b5:c7:8e:ac:
76:e0:2e:71:ce:83:7b:96:1e:0c:ad:39:30:5f:f6:8f:af:b2:
6d:f5:9e:a2:c7:f8:92:c6:dd:ce:8e:da:42:5b:6e:28:11:48:
29:a8:90:50:37:85:60:84:4f:dc:5c:84:3d:c6:7f:88:79:72:
4b:ac:94:e4:42:a6:34:0b:67:cb:ff:51:08:ab:66:dd:da:5d:
71:f9:f2:28:3f:3a:6b:e2:e1:64:d3:ca:29:b0:62:ec:ef:10:
a1:d6:53:6d:99:8d:6b:20:03:15:83:1c:34:53:75:37:64:82:
93:c4:59:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:32 2024 by rpki-client on console-fra.rpki-client.org