Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/hH9yb5meQWqJJ235Uo2KvCKSROM.roa
File: hH9yb5meQWqJJ235Uo2KvCKSROM.roa (raw, json)
Hash identifier: iL50zVEjOrvBgrEncDZ+2Uz/Ytkc402/1sUrsWOMvlQ=
Subject key identifier: 84:7F:72:6F:99:9E:41:6A:89:27:6D:F9:52:8D:8A:BC:22:92:44:E3
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018573F193F3E10167A476E3D4AEEE48A692
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/hH9yb5meQWqJJ235Uo2KvCKSROM.roa
Signing time: Mon 02 Jan 2023 19:24:49 +0000
ROA not before: Mon 02 Jan 2023 19:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34417
IP address blocks: 87.110.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:93:f3:e1:01:67:a4:76:e3:d4:ae:ee:48:a6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 19:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=847f726f999e416a89276df9528d8abc229244e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:31:24:5a:06:a7:a7:3c:08:54:cf:82:8f:29:
fa:e5:18:d2:98:36:15:01:83:e9:c4:38:66:8f:c3:
d0:be:50:e2:46:5d:22:3a:85:e0:96:17:c3:45:d3:
d9:fb:dc:d1:92:4f:46:f7:d8:d5:fa:e3:98:40:0e:
a1:35:22:e1:a2:b3:ca:41:a9:21:ab:da:1e:b6:b2:
4c:e0:e5:18:11:d7:61:0c:10:28:e3:21:61:84:3b:
ab:92:6e:89:84:9e:be:ac:8f:b1:af:e2:8c:e2:87:
d2:b7:19:88:6e:b6:1a:55:c9:33:5b:33:46:a2:07:
a0:67:e7:87:36:72:aa:b6:73:ae:6f:74:62:4a:fb:
29:36:f0:20:4a:e4:24:b4:89:0f:29:f5:c8:97:e1:
a8:95:e1:d6:c2:f5:b6:90:06:52:3e:b2:52:4e:1e:
3c:9c:30:39:46:eb:71:f6:c8:0b:ca:85:50:f9:4c:
6b:75:3c:fd:9a:fe:53:25:61:9f:15:38:9c:27:bf:
73:9c:27:cc:3f:d3:b7:2f:43:8c:5e:7f:21:71:89:
c6:36:5b:89:23:b4:cb:71:cb:c1:e7:6d:b1:38:49:
b9:e2:e2:59:bf:e8:94:a1:e1:03:3c:1b:e6:bf:04:
59:40:da:a0:44:b9:36:33:4b:7f:d1:6d:86:3e:d8:
21:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7F:72:6F:99:9E:41:6A:89:27:6D:F9:52:8D:8A:BC:22:92:44:E3
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/hH9yb5meQWqJJ235Uo2KvCKSROM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.110.248.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ce:fb:bb:7f:65:71:2a:85:55:f0:b8:d4:a3:5a:d2:37:52:
e0:7c:8c:40:2b:ae:39:0d:3c:d4:ed:51:d2:d2:39:1c:66:3d:
a0:87:0c:9e:ef:a3:c9:6f:49:22:96:2c:6a:af:f6:2f:04:69:
cc:62:08:10:04:54:a8:a4:dd:30:fb:51:3a:04:70:ea:44:3a:
39:c6:79:d8:e1:1e:99:bd:c0:6d:02:bc:95:c3:5a:c7:9f:00:
90:ae:dc:04:02:f0:a8:19:57:a7:fd:72:af:41:9a:ba:ca:46:
97:f3:f5:a2:0f:f5:b0:49:f0:2e:f5:62:f9:41:fc:28:36:c7:
93:b2:5e:1c:72:df:93:25:c4:f2:84:67:6e:5c:22:ff:c4:39:
f1:35:a3:e0:63:99:3f:6f:eb:56:1f:09:41:cf:e6:e2:ab:2c:
90:1c:00:c9:82:02:84:2a:0c:b9:59:cc:7e:31:45:12:2b:31:
92:8f:95:59:ad:b4:c5:e3:7d:6c:f5:70:d1:e2:97:5c:65:3d:
62:7f:26:61:27:fb:17:7e:77:d4:3b:b0:db:84:b1:8e:2e:1a:
d1:36:44:e1:83:93:ae:69:8f:92:80:5e:ca:e7:d7:17:30:8f:
34:f6:3f:92:82:0d:82:c0:d5:24:d8:de:6c:7d:2f:09:bc:5c:
71:a0:88:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org