Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/kxC5xY6ww9e_HIATCE5XvAHn_84.roa
File: kxC5xY6ww9e_HIATCE5XvAHn_84.roa (raw, json)
Hash identifier: Z3a832Jpaf69v3mX2zpzuyeltK3mKZR47oPANlBpGkU=
Subject key identifier: 93:10:B9:C5:8E:B0:C3:D7:BF:1C:80:13:08:4E:57:BC:01:E7:FF:CE
Certificate issuer: /CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Certificate serial: 0186FE9A3FB93FC0DB250D2C649C250F14FB
Authority key identifier: 1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/kxC5xY6ww9e_HIATCE5XvAHn_84.roa
Signing time: Mon 20 Mar 2023 10:39:27 +0000
ROA not before: Mon 20 Mar 2023 10:39:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39356
IP address blocks: 164.215.106.0/24 maxlen: 24
164.215.109.0/24 maxlen: 24
164.215.110.0/24 maxlen: 24
164.215.108.0/24 maxlen: 24
185.68.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 13:40:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:9a:3f:b9:3f:c0:db:25:0d:2c:64:9c:25:0f:14:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Validity
Not Before: Mar 20 10:39:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9310b9c58eb0c3d7bf1c8013084e57bc01e7ffce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3f:06:ef:4e:77:46:39:ee:64:d5:45:3f:3f:
e9:27:f7:cb:fd:88:bb:22:e1:6f:a1:44:87:a7:cc:
65:5f:66:79:95:a4:28:f2:79:72:7c:a2:93:c0:e8:
16:bf:e3:85:32:54:ac:3d:9a:4e:d8:32:5a:74:73:
ef:27:90:c6:97:66:ed:4e:a4:e5:ec:74:00:9b:8f:
63:ef:66:89:66:90:99:af:ed:4a:9c:e0:4c:c2:e2:
b1:31:5d:f6:80:f2:08:13:b4:01:54:67:59:ca:cc:
44:21:8e:cc:9d:f6:57:51:26:b4:1f:a4:38:0e:4b:
78:c5:47:40:91:40:c3:98:b3:c7:c7:8d:ab:d0:a3:
43:1f:a8:93:dd:23:25:65:47:2b:96:a1:c5:0c:54:
5e:0b:15:23:a4:89:67:aa:99:64:9c:7f:80:26:f6:
ce:65:30:4b:29:a9:e9:ac:a4:02:b6:6a:8b:67:72:
16:df:f5:73:d8:85:80:9b:ac:df:12:fb:61:74:d7:
0e:5f:0d:51:35:9d:57:84:d7:da:e6:fa:f3:f0:d9:
ca:a2:87:27:19:9b:6b:1e:ad:8d:f0:26:f5:bb:40:
36:d0:b8:77:e7:1b:77:69:e7:2e:ee:ca:e9:0e:b0:
ee:97:df:d8:cc:dd:44:4f:d5:3f:b8:3e:1d:b0:5f:
c1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:10:B9:C5:8E:B0:C3:D7:BF:1C:80:13:08:4E:57:BC:01:E7:FF:CE
X509v3 Authority Key Identifier:
keyid:1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/kxC5xY6ww9e_HIATCE5XvAHn_84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/HWW3t7iY-q7nB2fQlxXENqg_zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.106.0/24
164.215.108.0-164.215.110.255
185.68.232.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e0:7b:e3:cb:b2:a8:70:ed:8d:fe:96:df:e2:9c:46:7c:6e:
8b:c8:b6:ea:23:a0:7e:16:94:1e:74:31:21:fe:15:b7:0e:f6:
b0:ca:f8:f4:bf:87:7d:18:f1:ce:74:3e:4f:c0:cd:a3:96:1f:
9a:0f:42:c3:e5:ee:19:f5:04:d3:b0:53:b5:1d:02:68:5a:72:
9a:5a:17:45:f7:7b:f1:48:51:6b:72:dc:5d:10:35:13:cb:91:
f1:cf:01:6d:d3:9a:8b:ea:7a:9e:69:49:e4:d5:4a:10:28:10:
f5:97:03:1c:d6:59:71:9b:28:b3:e1:55:b6:81:c5:6d:d6:f5:
c3:68:0e:8e:5f:f6:ce:2a:33:64:05:18:58:3c:0f:19:8c:4b:
93:f6:72:ca:45:16:ca:4f:8c:ae:4b:53:bc:b1:28:f5:82:ec:
c4:a3:ee:8d:6b:7e:2b:81:9b:af:f1:a7:bd:f5:01:2d:92:34:
07:81:c4:83:c0:ca:18:4f:8e:b7:80:5c:75:09:ea:d4:57:27:
2b:03:10:0a:66:1d:e7:7f:1a:ec:19:0a:e3:7c:d9:67:9c:f1:
6f:f1:b4:0f:4e:20:bf:0b:d1:8e:d7:78:65:77:35:91:c6:5a:
6f:ca:d3:04:64:5e:3d:f0:92:60:c6:fe:8a:8e:03:aa:42:3c:
1f:f2:b6:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:10 2024 by rpki-client on console-fra.rpki-client.org