Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/GHohaZ6qQHXebmxSLUPTnfYmkH4.roa
File: GHohaZ6qQHXebmxSLUPTnfYmkH4.roa (raw, json)
Hash identifier: 7AVxkcbvsizdbMhqKuZ1Q0LZ8izbAd/QOE8haKkJG+Q=
Subject key identifier: 18:7A:21:69:9E:AA:40:75:DE:6E:6C:52:2D:43:D3:9D:F6:26:90:7E
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018CC9BCB6B62F50C8590873B86111266E76
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/GHohaZ6qQHXebmxSLUPTnfYmkH4.roa
Signing time: Tue 02 Jan 2024 10:33:57 +0000
ROA not before: Tue 02 Jan 2024 10:33:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8659
IP address blocks: 195.55.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:b6:b6:2f:50:c8:59:08:73:b8:61:11:26:6e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 2 10:33:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=187a21699eaa4075de6e6c522d43d39df626907e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:db:3a:2e:7a:d1:98:d9:ff:e8:b9:5d:94:e3:
92:fa:56:23:47:32:ac:58:e2:81:21:11:46:4c:3e:
47:8d:7b:b4:02:57:96:45:fb:04:2d:6c:92:f3:8d:
9a:0e:af:86:12:df:5e:cf:5d:8c:56:6c:1e:a3:13:
fc:8c:15:74:b6:70:f7:2a:bd:74:1d:2f:7f:37:ad:
dc:d9:d7:cf:d5:48:76:76:b3:8a:5c:a6:9b:e8:24:
d5:91:90:c6:37:ed:b8:65:0f:11:d9:84:26:f3:e1:
c6:f5:5b:a1:7e:2d:9e:52:34:93:9d:b5:3b:ed:c4:
ee:6e:71:5d:f4:29:f0:2f:e4:4e:dd:1c:8b:bc:b9:
20:6a:5c:26:e7:c5:b1:be:58:fa:af:27:63:99:c9:
25:c2:31:15:18:0e:3a:24:86:cb:6c:52:e0:8e:39:
98:8f:f9:47:44:d4:86:2b:82:58:4f:e5:39:1b:74:
1e:2e:d1:eb:17:61:a5:88:e1:38:e3:7a:bc:62:c8:
2e:46:c8:fd:64:c8:c9:97:fa:1a:94:af:f4:e6:b5:
ba:47:d0:b2:15:f5:64:08:d3:73:d6:7d:8c:0e:8a:
77:68:8a:b8:c4:b0:a2:c0:bc:75:2b:9d:d2:c7:87:
a7:89:9c:03:3f:2b:10:8a:46:1d:56:0d:18:16:18:
25:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7A:21:69:9E:AA:40:75:DE:6E:6C:52:2D:43:D3:9D:F6:26:90:7E
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/GHohaZ6qQHXebmxSLUPTnfYmkH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.55.64.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ae:79:70:79:ba:e1:f8:97:53:b1:58:5e:c4:8f:0e:c6:b2:
de:54:ac:02:e4:dc:d3:8d:68:0e:76:ac:ef:ec:2d:30:ea:0e:
a7:bd:c6:ea:37:38:eb:93:5d:1a:2d:3d:9e:93:fe:0c:0a:32:
8d:75:74:40:9c:d7:87:0a:d4:1f:db:3a:41:a1:6f:3d:a9:15:
21:76:ed:07:e9:3e:8e:56:e4:b2:97:0d:bd:7e:76:0e:24:60:
61:b7:38:d1:13:c7:0a:23:de:96:6a:6a:a0:e6:05:6d:29:a1:
28:12:7f:aa:ad:42:fd:43:29:65:eb:43:84:ed:98:64:84:1f:
1f:42:f5:34:ab:ba:0d:68:92:ef:42:97:53:f4:58:66:70:a6:
aa:c5:ed:27:3f:4b:b6:25:47:7b:4f:ba:b7:e3:32:c5:44:7c:
d6:58:74:10:1e:1e:42:ae:8a:50:98:91:90:b7:e8:cd:de:5d:
74:1e:b8:79:70:2c:82:57:e9:a1:3f:9d:51:f2:2a:c7:f6:08:
53:3c:86:b5:48:ef:47:ee:45:ff:e0:79:db:24:e6:fc:f4:02:
28:bc:9b:9a:b2:8a:e5:08:71:b3:b3:59:0b:e0:d0:ba:6c:73:
d7:fa:e1:dc:48:96:05:26:69:0c:41:8d:6d:7d:8a:63:ad:d7:
48:4d:f2:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:03 2025 by rpki-client