Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/H9smgDPOTpVYyF5xaM8chRFVRjU.roa
File: H9smgDPOTpVYyF5xaM8chRFVRjU.roa (raw, json)
Hash identifier: tYgxOppebYQYZC+AH6B77Q12j0FTwVBxepsizQX7Wn8=
Subject key identifier: 1F:DB:26:80:33:CE:4E:95:58:C8:5E:71:68:CF:1C:85:11:55:46:35
Certificate issuer: /CN=e69f2b69f4a95a521e18fb33e6793f467e031bc1
Certificate serial: 018C5E29CA95B1E895F4653DFB7025FA12B5
Authority key identifier: E6:9F:2B:69:F4:A9:5A:52:1E:18:FB:33:E6:79:3F:46:7E:03:1B:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p8rafSpWlIeGPsz5nk_Rn4DG8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/H9smgDPOTpVYyF5xaM8chRFVRjU.roa
Signing time: Tue 12 Dec 2023 13:14:06 +0000
ROA not before: Tue 12 Dec 2023 13:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216332
IP address blocks: 94.142.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:29:ca:95:b1:e8:95:f4:65:3d:fb:70:25:fa:12:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69f2b69f4a95a521e18fb33e6793f467e031bc1
Validity
Not Before: Dec 12 13:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fdb268033ce4e9558c85e7168cf1c8511554635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3a:4e:5b:df:8d:37:f1:da:55:83:89:3d:ac:
f8:26:d1:a2:51:10:ca:ff:6f:37:a5:2f:e1:97:2f:
72:a9:30:d3:d4:ea:d1:e1:a6:ce:59:ff:30:df:91:
95:78:50:a0:1e:ba:6b:e6:a1:33:0e:4e:31:1a:f1:
ec:2a:01:f4:33:aa:87:68:f3:d0:74:6d:e1:18:a9:
48:d6:86:3f:2a:7b:81:e5:f0:dc:6d:2b:a5:eb:ac:
e9:02:24:a5:e7:2a:6e:06:0d:df:02:e3:85:38:e5:
30:86:28:b4:a2:88:91:fe:61:67:28:87:52:90:c7:
0d:d2:81:2b:74:0b:f1:b8:d0:11:76:95:06:3f:04:
b0:53:3c:84:cd:bb:42:06:e2:26:7d:9f:9d:c7:27:
53:50:d4:cb:39:46:a9:df:a0:7e:a0:7b:77:e5:07:
7f:60:aa:a2:9d:0b:ef:10:e4:67:75:be:4e:a1:ab:
85:6d:7a:03:39:61:d2:35:75:e4:2f:03:99:6f:b6:
d2:e3:ac:c2:73:95:a3:3c:f8:1a:05:f0:5d:17:84:
a6:3e:5e:cf:fd:d4:d1:d3:e1:ab:9a:93:de:8f:1a:
ee:65:0f:35:92:96:54:97:f3:5a:fe:35:62:a3:f9:
49:6b:1c:2d:5a:7c:52:5a:f7:16:61:02:c7:13:d6:
9b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DB:26:80:33:CE:4E:95:58:C8:5E:71:68:CF:1C:85:11:55:46:35
X509v3 Authority Key Identifier:
keyid:E6:9F:2B:69:F4:A9:5A:52:1E:18:FB:33:E6:79:3F:46:7E:03:1B:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p8rafSpWlIeGPsz5nk_Rn4DG8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/H9smgDPOTpVYyF5xaM8chRFVRjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/37eab0-7f53-4b62-b5d4-78006e078171/1/5p8rafSpWlIeGPsz5nk_Rn4DG8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.250.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:3e:0f:e3:3a:a8:35:1e:6c:3f:ed:07:d5:09:34:c3:eb:da:
24:30:48:ae:51:9d:80:48:72:ea:89:92:2e:59:6b:ac:9d:21:
08:21:57:90:13:0c:8f:03:13:3f:c6:e5:13:0b:f7:b6:8c:32:
7e:ea:be:25:bd:1e:48:8f:ef:dc:d4:39:44:27:25:ee:d9:63:
62:b9:a0:e6:73:fc:7d:e4:cd:52:3e:16:36:d8:20:ed:9f:49:
fe:f3:bc:7b:31:c6:9e:9e:ee:67:a6:04:4e:be:0e:65:28:ce:
3c:f0:13:1e:88:2a:9f:91:85:bc:7b:8d:9f:b2:68:02:3f:2c:
cb:ca:d5:c9:36:b5:6b:56:47:9e:38:37:ea:3a:a6:50:8c:cd:
8d:43:f0:35:57:21:52:7c:51:9a:8f:21:2d:22:23:c2:b0:d1:
0c:d6:d9:ee:6b:99:d3:9f:a4:d9:a7:46:03:29:24:df:50:88:
ea:13:ed:29:77:bb:6b:a7:5f:14:cf:54:98:99:77:10:da:12:
27:d1:bf:4c:14:3c:ee:ec:41:59:94:d9:21:40:d0:2b:0a:20:
f3:14:98:b0:15:4e:0a:d9:bc:25:5b:44:f7:d0:75:48:3d:5b:
d1:af:84:fa:dc:e9:a0:a8:39:c8:81:cd:f8:25:7f:9e:9f:c9:
d6:3f:e1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:54 2024 by rpki-client on console-fra.rpki-client.org