Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/CEgnTz-HP31srZWan4J46WA609I.roa
File: CEgnTz-HP31srZWan4J46WA609I.roa (raw, json)
Hash identifier: r4YKo80HwbNw12GiU8LXDZz783Ktfj0xiTl5JgLTJLs=
Subject key identifier: 08:48:27:4F:3F:87:3F:7D:6C:AD:95:9A:9F:82:78:E9:60:3A:D3:D2
Certificate issuer: /CN=30c45fc3147102824f9d2d547766a809aeaf245a
Certificate serial: 018993B2F6E66364E1956F8F165D0B17F2B3
Authority key identifier: 30:C4:5F:C3:14:71:02:82:4F:9D:2D:54:77:66:A8:09:AE:AF:24:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/CEgnTz-HP31srZWan4J46WA609I.roa
Signing time: Wed 26 Jul 2023 19:35:26 +0000
ROA not before: Wed 26 Jul 2023 19:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58350
IP address blocks: 176.115.0.0/19 maxlen: 19
2001:678:258::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:93:b2:f6:e6:63:64:e1:95:6f:8f:16:5d:0b:17:f2:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c45fc3147102824f9d2d547766a809aeaf245a
Validity
Not Before: Jul 26 19:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0848274f3f873f7d6cad959a9f8278e9603ad3d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e5:b2:14:76:d0:91:15:5f:a3:a5:f2:a9:c3:
86:e1:ac:1f:ad:42:36:03:10:b6:30:98:d5:06:45:
5e:22:f0:d3:60:30:76:84:0a:d6:70:b5:3f:8f:1c:
5c:fc:34:75:4a:7c:24:b8:7a:f6:dd:8b:cd:08:3c:
ad:4b:79:cc:70:3d:e6:2e:5b:6d:75:52:d4:94:fb:
e5:55:d8:83:a7:ce:4f:52:96:6a:8a:0a:f4:86:b0:
84:b0:48:ef:dc:47:a9:ab:d0:a8:6f:d5:f8:67:35:
4f:7a:3d:9b:5a:54:b3:6a:78:d9:3f:26:c7:19:d2:
38:bd:0f:43:c7:59:44:f8:10:b4:02:cd:3a:b4:aa:
d2:15:8c:51:f7:00:ff:58:a1:bf:95:ad:8e:ff:9d:
8c:b2:f0:83:bb:d4:30:6a:a8:2b:46:9f:54:e9:0b:
c9:47:60:f8:b5:57:db:3f:ec:db:6a:19:87:8a:ab:
b7:3e:9e:c4:9a:7a:e4:ac:5f:24:4a:38:b9:ae:09:
9b:41:64:66:c5:5f:88:03:ff:f1:f5:24:88:69:91:
30:9e:a1:13:fb:af:ce:b8:b9:56:85:7f:c7:6f:45:
b4:a8:3e:86:48:a4:ea:19:c2:32:06:86:6f:b3:40:
4c:f9:f3:21:b2:93:17:20:b9:6a:4b:20:21:74:c7:
e5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:48:27:4F:3F:87:3F:7D:6C:AD:95:9A:9F:82:78:E9:60:3A:D3:D2
X509v3 Authority Key Identifier:
keyid:30:C4:5F:C3:14:71:02:82:4F:9D:2D:54:77:66:A8:09:AE:AF:24:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/CEgnTz-HP31srZWan4J46WA609I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/22ad4c-0b05-474d-919f-3b540a6bc3dc/1/MMRfwxRxAoJPnS1Ud2aoCa6vJFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.115.0.0/19
IPv6:
2001:678:258::/48
Signature Algorithm: sha256WithRSAEncryption
82:df:56:43:f7:30:66:42:a8:d4:99:05:a9:83:cd:1c:18:16:
94:7e:25:53:41:20:74:f2:92:fe:23:44:20:1f:69:ad:d7:ad:
f0:bc:c3:37:9b:07:85:9a:0a:70:5b:f2:7c:5d:3d:48:92:1e:
d2:8d:d7:87:77:4a:a2:ce:aa:4f:0e:ac:e6:fe:2c:f4:28:92:
45:a3:1f:45:d2:69:68:6b:3b:fd:11:0f:f1:b9:c3:15:3c:be:
cb:4a:b3:4b:fe:e3:b2:5d:ad:0e:fb:23:b7:6b:59:86:74:f9:
bb:44:22:ba:06:d9:ba:08:da:a5:32:c7:7c:46:e6:a3:8e:0f:
13:c0:1d:87:a9:cd:22:63:1b:db:7f:d1:bd:9d:63:fc:1a:c1:
3a:91:ba:5b:98:95:92:72:3b:f4:b0:13:b9:10:76:38:b3:77:
61:db:fd:eb:8a:a2:10:bc:df:1e:c8:af:f3:a1:13:f1:f3:93:
d8:35:84:85:79:f4:6a:40:0e:b9:23:8f:3b:25:9e:5d:36:f6:
90:4a:16:d6:64:d3:8e:dd:1c:2f:8d:8c:9c:50:f0:31:2b:e1:
4d:c9:a5:bd:af:59:6a:08:01:9c:e8:ee:55:08:a0:b4:9c:a7:
1e:93:12:71:3e:7c:3c:e5:59:08:fa:02:ca:eb:86:40:99:a4:
83:db:31:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:10 2024 by rpki-client on console-fra.rpki-client.org