Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/rvHKQzMuM76y75cRA34MUmRbhdQ.roa
File: rvHKQzMuM76y75cRA34MUmRbhdQ.roa (raw, json)
Hash identifier: rihJTV8KG+g5AssJUtZjYjbWQNq4muP9WsgbLuhNqjc=
Subject key identifier: AE:F1:CA:43:33:2E:33:BE:B2:EF:97:11:03:7E:0C:52:64:5B:85:D4
Certificate issuer: /CN=aa6745519323d8c2d93c1b107bf85f61933c71ca
Certificate serial: 018EE5EBC4BD8CF65D5A2B0648CBC3B4D2BB
Authority key identifier: AA:67:45:51:93:23:D8:C2:D9:3C:1B:10:7B:F8:5F:61:93:3C:71:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmdFUZMj2MLZPBsQe_hfYZM8cco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/rvHKQzMuM76y75cRA34MUmRbhdQ.roa
Signing time: Tue 16 Apr 2024 08:00:17 +0000
ROA not before: Tue 16 Apr 2024 08:00:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 195.95.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 17:04:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e5:eb:c4:bd:8c:f6:5d:5a:2b:06:48:cb:c3:b4:d2:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa6745519323d8c2d93c1b107bf85f61933c71ca
Validity
Not Before: Apr 16 08:00:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aef1ca43332e33beb2ef9711037e0c52645b85d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e7:6b:c1:99:fc:73:cc:8a:79:e3:b3:10:64:
fd:16:e8:8e:97:98:b0:1b:0f:05:60:30:12:fb:8b:
b0:32:ed:43:bd:99:28:f5:2d:46:ac:ed:a7:73:be:
bf:b9:0f:b4:bb:6b:5d:b8:eb:af:dd:e8:bc:fa:76:
17:39:4a:1a:0e:a8:cd:7e:50:67:bd:62:b2:3d:4d:
57:9e:13:22:ed:be:59:96:9b:27:28:26:95:90:e7:
8b:34:70:de:65:75:d2:8d:99:4a:f0:f1:23:93:24:
3a:a8:84:9c:02:18:4a:d4:a6:68:56:b0:d5:76:31:
6b:97:3b:36:4e:48:cb:a0:71:dd:e4:88:74:9e:29:
41:60:6a:d8:f5:a8:9d:fd:06:36:62:6b:48:12:c5:
6c:2c:b9:c4:56:5a:bf:07:53:50:09:a9:a7:4f:37:
82:56:bc:46:47:a1:cc:18:4c:28:fe:24:6a:3b:22:
ac:f1:7f:76:58:c3:0b:a3:97:83:a8:0e:b6:40:5d:
43:06:08:9f:ad:fa:db:df:55:a0:10:67:26:fc:6a:
97:1f:79:e5:10:1b:4d:43:63:f9:16:72:8f:9d:8b:
fa:9c:2f:1a:f4:54:06:f5:c7:de:fd:2c:de:7e:ab:
79:6a:cc:bd:40:ba:9f:c5:25:fd:ac:ce:67:4d:44:
90:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F1:CA:43:33:2E:33:BE:B2:EF:97:11:03:7E:0C:52:64:5B:85:D4
X509v3 Authority Key Identifier:
keyid:AA:67:45:51:93:23:D8:C2:D9:3C:1B:10:7B:F8:5F:61:93:3C:71:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmdFUZMj2MLZPBsQe_hfYZM8cco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/rvHKQzMuM76y75cRA34MUmRbhdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/af18c4-c044-4485-8ef0-d7812a338183/1/qmdFUZMj2MLZPBsQe_hfYZM8cco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.144.0/24
Signature Algorithm: sha256WithRSAEncryption
66:8e:40:e7:ab:18:84:5e:c0:63:46:45:28:be:ca:1c:ee:9f:
d5:35:6f:d0:61:88:47:9e:bd:37:52:8d:dd:dc:d4:ca:85:4e:
73:19:5f:4b:a4:8f:cf:18:83:90:6b:7e:a8:04:05:61:16:46:
d9:7a:b5:43:54:48:72:8b:52:84:5b:6c:db:f8:c3:3d:51:69:
dd:3a:89:44:27:dc:84:0a:e0:82:0a:f3:49:30:3a:c1:a7:05:
83:c8:3e:fc:29:61:37:d5:cf:32:2a:01:08:4a:19:d7:a1:ac:
e0:11:54:ea:79:b4:99:70:2b:68:c9:c7:57:e2:73:e9:36:3b:
7b:3f:86:44:e2:fa:51:be:4f:2d:fc:92:e0:b6:18:a0:0f:39:
70:a2:af:b5:46:e6:4b:02:5f:97:2c:d3:09:d3:03:48:b1:d2:
4e:96:c7:38:f4:9f:44:c5:d9:3b:4d:28:eb:3f:97:b9:f2:61:
37:15:64:f8:a6:bf:73:12:6e:b0:bc:b3:58:4a:b7:0f:15:86:
7e:65:70:dd:8e:06:5e:fa:2c:c9:7a:18:83:1c:3b:c4:69:e2:
dd:80:c7:fc:db:11:8b:8c:da:94:a9:d0:da:ad:15:3e:12:fa:
7e:a0:de:d3:53:96:f7:46:17:c8:dc:11:a6:5f:01:5a:30:79:
a3:39:ac:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:02 2024 by rpki-client on console-fra.rpki-client.org