Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/3hJtRwckF7HLyq_7P8_Tmk_ViSc.roa
File: 3hJtRwckF7HLyq_7P8_Tmk_ViSc.roa (raw, json)
Hash identifier: 9uqzhuBJkdE6SRryi6bglE/ydVGWK7+qvpZ6w/0QTu4=
Subject key identifier: DE:12:6D:47:07:24:17:B1:CB:CA:AF:FB:3F:CF:D3:9A:4F:D5:89:27
Certificate issuer: /CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Certificate serial: 018C8D1822AE4E11BE6E82AAAE4FD6F5DE73
Authority key identifier: 79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/3hJtRwckF7HLyq_7P8_Tmk_ViSc.roa
Signing time: Thu 21 Dec 2023 15:56:58 +0000
ROA not before: Thu 21 Dec 2023 15:56:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400909
IP address blocks: 194.59.9.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8d:18:22:ae:4e:11:be:6e:82:aa:ae:4f:d6:f5:de:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Validity
Not Before: Dec 21 15:56:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de126d47072417b1cbcaaffb3fcfd39a4fd58927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a7:bf:b9:91:56:e2:09:57:58:9f:18:21:d8:
58:25:22:9c:38:db:6b:5c:e8:01:7e:17:c6:99:4e:
9f:14:ca:e4:d4:6c:56:80:96:39:dd:65:d9:29:a3:
2f:c9:23:b1:a0:cc:e9:30:9f:16:e1:e5:fe:05:25:
83:52:92:c6:d7:a3:86:c5:49:c5:ff:48:71:e2:ad:
c5:25:b2:be:1a:68:f7:a1:33:22:7f:c2:2f:32:60:
7e:45:82:0b:48:bd:dc:af:e7:52:cd:74:ad:14:4d:
49:8a:f6:74:24:a5:4f:80:17:0c:58:2c:81:6c:8b:
de:32:19:37:28:a0:aa:2e:5a:64:89:eb:89:d5:bf:
77:3a:c0:c3:65:a4:fe:47:e2:bf:d2:38:a9:ec:0d:
53:5c:5c:da:3b:0f:75:9d:92:4e:cf:44:06:0d:71:
12:c3:32:32:6c:a9:27:0c:18:a8:56:8f:91:b2:3b:
23:4f:a7:0b:a5:8d:37:da:f1:06:e8:03:02:4d:72:
0c:c6:63:e8:8f:e5:b3:91:e0:ba:4c:c2:8d:83:7b:
84:c2:24:51:0d:a4:ec:63:51:5d:6c:7a:bd:f6:0e:
3e:16:df:9f:17:c0:9e:6e:c8:10:88:2c:09:56:97:
75:d0:17:97:8f:a0:f0:b7:38:52:e1:b3:15:4f:b4:
ee:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:12:6D:47:07:24:17:B1:CB:CA:AF:FB:3F:CF:D3:9A:4F:D5:89:27
X509v3 Authority Key Identifier:
keyid:79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/3hJtRwckF7HLyq_7P8_Tmk_ViSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/eQZczx6-VVs3UnF-WVwnW8rQC04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.9.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7b:a7:43:14:31:73:c3:cc:94:94:72:89:ec:2d:6c:63:80:
d2:db:fe:cc:e5:24:6a:6c:57:35:08:99:d5:cb:e0:06:d3:eb:
fe:cf:e0:10:90:32:89:02:19:a7:26:3b:f9:54:75:b0:ff:6b:
cf:23:11:32:7b:29:ae:67:a6:63:d6:43:d5:fe:1e:f7:1d:b9:
ff:23:89:46:00:7d:c9:91:46:75:0f:ac:ab:b3:9b:92:83:0e:
4b:3e:7f:e0:e6:c0:86:6a:92:0e:20:6d:7c:bb:a3:98:1f:ca:
5e:7e:44:5f:af:56:50:e0:42:6b:6f:45:61:7f:4c:ae:e0:24:
e0:56:cf:b0:d9:ab:63:70:c2:e6:54:7b:7d:85:03:57:db:bc:
2a:07:7d:95:e5:0e:dd:bc:16:3b:a1:e2:82:5f:b5:18:d3:75:
68:1a:4b:46:76:83:c3:00:19:ed:0d:35:30:e6:31:d2:e8:80:
05:07:f9:d5:59:25:cf:66:64:db:82:44:1f:f0:96:62:25:38:
a1:0a:2b:e9:45:f2:0f:fa:cc:91:16:34:1b:25:e1:b0:c9:f7:
7a:f0:7b:38:01:0c:53:9e:d3:ef:87:53:cd:c7:25:28:f1:80:
52:3a:dd:07:84:90:3a:56:0d:17:6c:55:05:38:c2:08:ef:e8:
08:ed:1b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:25 2024 by rpki-client on console-fra.rpki-client.org