Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kHROT3vSDQC-mry45zRkU-LNdVQ.roa
File: kHROT3vSDQC-mry45zRkU-LNdVQ.roa (raw, json)
Hash identifier: ge0zK0jae+7sr3AH71uOp8cL6L3pjrh0a99D1tXWK0k=
Subject key identifier: 90:74:4E:4F:7B:D2:0D:00:BE:9A:BC:B8:E7:34:64:53:E2:CD:75:54
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018E20662CFF0BFC52F4F57CD7A420AF90BB
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kHROT3vSDQC-mry45zRkU-LNdVQ.roa
Signing time: Fri 08 Mar 2024 23:29:10 +0000
ROA not before: Fri 08 Mar 2024 23:29:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 94.241.162.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Mar 2024 07:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:20:66:2c:ff:0b:fc:52:f4:f5:7c:d7:a4:20:af:90:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 8 23:29:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90744e4f7bd20d00be9abcb8e7346453e2cd7554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:55:ed:db:bd:64:1c:2e:1d:26:f8:cc:b3:8e:
a6:fc:64:9c:0b:28:3d:56:df:6b:66:f6:02:95:ce:
1e:5f:db:88:50:5c:1e:40:40:f6:32:2e:e9:a2:bc:
3d:84:e3:38:c4:2e:6d:72:ca:30:31:f0:dd:8f:2c:
67:13:59:bd:7f:5d:b8:0c:fd:72:a9:83:60:57:78:
22:5c:fd:16:98:94:a7:cf:43:5b:70:83:ba:0e:f1:
02:5e:89:ca:6a:58:2f:3f:4a:ee:cd:6d:e4:cc:44:
87:02:bb:5d:42:09:80:13:f7:63:84:eb:4f:49:ca:
d8:c8:8b:10:90:ca:43:19:e4:c0:40:6e:49:e0:4c:
d2:ec:b4:14:63:56:8a:32:fa:51:ea:42:d2:59:03:
0f:8c:df:5e:85:da:7d:51:88:9f:ed:f4:6b:d2:6c:
96:ba:fa:8d:15:28:fd:a5:d3:57:43:ed:30:1e:cc:
f8:46:3f:f8:08:0c:84:9e:fa:6b:c3:f1:43:e2:06:
4c:ac:a2:32:4b:f8:d6:c0:fc:6a:55:7e:8f:37:38:
b4:e0:f1:5c:55:e8:1b:30:37:c3:3a:2c:dc:58:1a:
54:9b:78:b4:c4:f7:50:8d:a1:6c:8f:2a:30:ef:6e:
bc:65:a0:8b:61:b0:2c:b2:b0:55:01:ad:17:ae:cc:
ed:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:74:4E:4F:7B:D2:0D:00:BE:9A:BC:B8:E7:34:64:53:E2:CD:75:54
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/kHROT3vSDQC-mry45zRkU-LNdVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.162.0/23
Signature Algorithm: sha256WithRSAEncryption
08:c3:f3:ce:e9:9c:10:4c:03:8f:49:26:63:d4:67:22:f9:cc:
ee:1b:35:8c:10:d3:62:0f:ef:a2:4c:5d:b4:46:d0:a6:36:dd:
2d:d1:db:9f:8b:d5:cb:22:3c:69:57:66:39:d2:b0:98:c9:95:
50:7c:eb:c0:dc:eb:45:a3:47:3f:d3:dd:25:98:7a:bd:84:37:
ea:ac:d1:a4:11:ef:4a:94:dc:80:d3:63:c7:b1:fd:7a:2d:74:
ff:71:08:84:31:5d:2d:80:4b:8c:2d:02:59:9b:18:6a:87:bb:
9b:b9:af:38:e5:0e:c6:ad:71:99:df:1a:6a:c1:6f:bf:de:2e:
0e:57:34:96:98:cb:de:48:9c:d8:c8:66:5f:e4:db:fa:4d:af:
d4:9f:fa:06:f8:00:0e:76:90:9b:4a:5c:3b:4c:ad:d1:de:95:
60:18:f3:0f:78:8b:9a:d2:94:53:1b:49:a0:e6:af:ae:df:3f:
b2:6e:1e:0b:dd:8f:88:fe:72:96:e0:65:28:d8:1d:02:89:79:
f1:b7:1e:c0:ed:c1:e3:ff:52:95:23:e2:6b:8e:64:80:4e:1f:
c0:62:b9:07:84:72:de:21:a5:9e:b9:83:cd:1d:a4:20:a4:de:
14:da:ac:e8:8c:70:0a:00:fa:2d:ca:95:08:f2:37:13:d0:b5:
18:4b:6f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org