Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/hRCrngjPNMLahOcGduiE10y7qMM.roa
File: hRCrngjPNMLahOcGduiE10y7qMM.roa (raw, json)
Hash identifier: cHdoIQplSYf25/+wGaV3sI2waYzp7M2pC9T49AGtOWg=
Subject key identifier: 85:10:AB:9E:08:CF:34:C2:DA:84:E7:06:76:E8:84:D7:4C:BB:A8:C3
Certificate issuer: /CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e
Certificate serial: 0185720C75E1330AC533617783BB7132A139
Authority key identifier: 0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/hRCrngjPNMLahOcGduiE10y7qMM.roa
Signing time: Mon 02 Jan 2023 10:34:57 +0000
ROA not before: Mon 02 Jan 2023 10:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210289
IP address blocks: 195.177.230.0/24 maxlen: 24
195.178.104.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 28 Feb 2023 18:25:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:75:e1:33:0a:c5:33:61:77:83:bb:71:32:a1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e
Validity
Not Before: Jan 2 10:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8510ab9e08cf34c2da84e70676e884d74cbba8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a5:b9:f4:ad:65:79:bc:0f:e4:78:6b:a5:ba:
e2:65:d0:c3:4e:83:1f:2e:a2:f3:62:ae:e6:70:69:
a1:50:4c:20:bc:29:a0:86:51:57:5c:f7:51:78:a8:
d2:97:a8:aa:03:ad:5e:ca:f0:a0:9a:97:e3:71:58:
03:24:fe:60:e3:b8:5a:9f:ad:34:39:80:ed:bf:4e:
f6:ab:0d:42:0f:ad:f6:b6:c0:e2:e6:b2:ae:6f:5e:
91:9c:34:8d:9d:7d:ae:93:50:9c:58:4f:d6:92:7c:
7b:e7:81:c3:7e:70:5d:6d:2b:93:13:27:b1:57:29:
42:ac:7c:06:ef:e2:97:12:24:d3:a3:18:5c:8d:9e:
e3:87:fc:ce:b5:c7:90:58:e8:93:8f:44:d9:21:39:
d8:93:28:5e:38:85:36:0b:4c:c6:0a:85:d6:4d:bd:
ba:e0:44:81:3a:31:5c:a7:fa:49:06:e8:cf:53:fe:
3e:3f:ce:1c:c1:cd:db:4f:36:a0:34:c6:d7:09:0a:
ab:75:42:e1:0e:93:3a:15:85:c1:64:b0:ba:ba:28:
9f:aa:a6:30:1c:b8:ec:9f:2a:47:72:cc:c4:9b:ab:
b8:7f:d5:b5:be:19:b1:fd:ad:2f:1a:7c:4d:04:93:
63:6d:ec:99:ae:58:2e:d6:14:0c:59:11:6b:67:b3:
16:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:10:AB:9E:08:CF:34:C2:DA:84:E7:06:76:E8:84:D7:4C:BB:A8:C3
X509v3 Authority Key Identifier:
keyid:0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/hRCrngjPNMLahOcGduiE10y7qMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.177.230.0/24
195.178.104.0/23
Signature Algorithm: sha256WithRSAEncryption
83:45:0a:ad:b6:b0:73:5d:5a:ce:ff:c4:aa:3d:bb:92:5d:36:
9c:dc:37:04:aa:30:f8:98:1b:b0:3b:a0:43:90:ea:66:5f:41:
08:be:cd:87:64:ba:d2:ef:c8:8a:3c:38:6a:b3:1a:00:4b:00:
e5:3e:f1:1b:3c:17:1e:60:e3:59:fd:dd:0c:1c:bd:26:79:98:
31:50:d1:f4:d8:d1:87:9d:0d:11:b6:53:2d:75:0f:82:d8:cb:
58:b0:a4:8a:b3:77:cc:59:63:ab:7b:0c:88:44:24:f2:55:a7:
91:dd:02:39:85:df:df:a1:29:2d:21:09:4f:5c:78:69:2e:1e:
90:a3:d8:af:78:69:5d:50:a5:eb:4d:cd:c2:83:af:8d:60:2c:
89:5b:ee:fc:2c:83:f6:bc:5d:e8:2c:4a:5a:a4:ce:23:55:73:
c0:36:83:0d:34:53:08:3d:7c:b6:ab:d6:5e:3f:ca:fe:f2:a5:
33:68:c7:3a:13:c5:09:02:3f:46:80:d5:22:27:4d:ca:b4:03:
b8:12:22:a8:a5:78:9e:24:30:95:84:c1:6c:9b:e4:e4:50:c8:
e0:c7:91:b3:fc:0c:a3:fc:50:e2:9f:c3:be:c0:4c:1f:17:fe:
51:36:42:c8:3c:ba:a9:f8:c9:f9:83:c0:31:89:65:f2:2e:77:
8f:a1:ca:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org