Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/D38s_HSfSZqiidz-fe68rqePAHc.roa
File: D38s_HSfSZqiidz-fe68rqePAHc.roa (raw, json)
Hash identifier: YUlIUL33k/vRHNeIhK02wV8u2WEcS2Ryq0vXDkSPpMc=
Subject key identifier: 0F:7F:2C:FC:74:9F:49:9A:A2:89:DC:FE:7D:EE:BC:AE:A7:8F:00:77
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65D09E5F27D0A7000F856E6058D7B
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/D38s_HSfSZqiidz-fe68rqePAHc.roa
Signing time: Sun 01 Jan 2023 10:35:14 +0000
ROA not before: Sun 01 Jan 2023 10:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50302
IP address blocks: 212.5.134.0/23 maxlen: 23
62.73.102.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5d:09:e5:f2:7d:0a:70:00:f8:56:e6:05:8d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f7f2cfc749f499aa289dcfe7deebcaea78f0077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a7:04:26:a4:68:a3:63:6c:eb:73:b8:ad:e0:
a2:02:bf:5f:09:70:1d:78:1b:b5:e8:2e:8c:5b:0b:
6d:e4:c4:c6:22:54:d7:be:fd:92:01:7a:ba:a1:18:
02:2f:a6:a7:3f:03:58:5d:4f:fd:a8:27:91:d9:8a:
f2:e4:ad:67:49:5e:c5:e6:44:fb:c7:4a:41:1e:0f:
f5:ec:78:86:62:d5:07:e0:24:e6:b1:a7:79:9a:18:
b5:c9:2c:4d:7c:d9:7b:e4:8b:25:c5:84:6f:19:21:
42:03:b4:e7:01:40:bf:3e:14:54:f0:1a:3c:50:49:
a8:b7:09:c4:c8:83:22:67:16:2a:53:5c:7a:ad:45:
ca:33:13:1d:e2:46:95:dc:2b:86:bc:88:c4:1a:49:
76:34:9e:08:a3:e4:99:64:b5:cd:6f:1b:88:e7:09:
49:fc:50:70:48:53:96:c7:99:5f:3a:b5:e2:41:ef:
9b:df:e5:43:94:d8:90:d7:d9:aa:db:1a:63:1e:a2:
a0:40:24:7e:b3:5a:24:31:c3:7c:c4:d6:e5:4d:bc:
ce:b7:14:80:1a:74:dc:7c:b4:b9:a5:41:86:05:ec:
6f:72:a7:66:0a:9c:ac:e0:b4:5a:60:82:91:70:9f:
19:bf:8f:8c:ec:0b:87:84:13:2f:40:6c:93:3a:00:
22:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7F:2C:FC:74:9F:49:9A:A2:89:DC:FE:7D:EE:BC:AE:A7:8F:00:77
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/D38s_HSfSZqiidz-fe68rqePAHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.102.0/23
212.5.134.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:6c:93:85:1c:3c:39:90:55:61:38:6f:36:76:f9:8c:22:ab:
e6:bf:3a:66:c8:0d:c3:10:ab:c6:63:da:cb:fe:91:4a:d3:65:
0d:e2:e4:30:c8:7f:25:fe:23:c0:a5:b5:ca:e8:f6:c8:c1:d4:
9f:96:03:51:29:1f:01:cc:4f:1b:a7:ef:48:78:3a:fe:bd:a4:
2d:bd:5a:5d:18:5c:ab:b4:3e:46:37:2a:46:8f:5b:fb:36:e6:
ea:0d:20:f5:66:b6:7f:0f:e1:4c:c5:23:17:64:35:13:8f:94:
5d:d7:ef:a6:99:31:86:4c:6f:7a:10:d5:e9:3e:09:59:ab:c4:
42:84:d3:46:c8:96:d9:37:0e:3a:64:ed:46:36:a5:72:56:98:
d9:21:19:2b:04:fe:37:4f:61:86:bd:d1:27:ca:23:8d:c0:c6:
8c:f1:4f:10:17:21:b8:8e:86:6d:47:4e:a7:16:d3:70:c2:54:
f7:d2:1e:8c:84:37:7b:93:1e:27:17:e5:14:d4:2c:a6:14:b9:
93:30:27:84:ad:a2:3e:1b:de:85:33:bf:5a:e6:84:6d:5d:ac:
28:fe:d8:13:b0:c0:36:19:59:b7:ee:b3:a8:cc:5e:27:5d:de:
67:0f:eb:2d:ec:6e:d6:70:53:ef:a6:32:02:6b:93:4e:61:76:
ac:e6:d3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org