Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/cmhonY-PNhND1-yhxUyNFjmIZHM.roa
File: cmhonY-PNhND1-yhxUyNFjmIZHM.roa (raw, json)
Hash identifier: ZMCrlvKGb9k4D+cV4v26jKMnXFzgsROJc2dLZpgoPhA=
Subject key identifier: 72:68:68:9D:8F:8F:36:13:43:D7:EC:A1:C5:4C:8D:16:39:88:64:73
Certificate issuer: /CN=8efc610ce7bcf479651fd9518c28894ed1eb5a84
Certificate serial: 018C1702B132A2A904DF2AECA19C1D9C00F6
Authority key identifier: 8E:FC:61:0C:E7:BC:F4:79:65:1F:D9:51:8C:28:89:4E:D1:EB:5A:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvxhDOe89HllH9lRjCiJTtHrWoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/cmhonY-PNhND1-yhxUyNFjmIZHM.roa
Signing time: Tue 28 Nov 2023 17:38:21 +0000
ROA not before: Tue 28 Nov 2023 17:38:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203701
IP address blocks: 195.54.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:17:02:b1:32:a2:a9:04:df:2a:ec:a1:9c:1d:9c:00:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8efc610ce7bcf479651fd9518c28894ed1eb5a84
Validity
Not Before: Nov 28 17:38:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7268689d8f8f361343d7eca1c54c8d1639886473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:38:d8:77:f7:2a:43:4d:60:66:1a:50:f3:da:
28:29:72:96:2b:0c:01:9f:3d:20:89:c8:e0:b7:1d:
96:e3:88:2a:9c:83:82:17:d2:28:53:46:4f:ff:63:
e7:e0:74:95:d3:07:9a:a3:c5:b5:76:09:e7:ff:1a:
42:12:03:f3:b5:f3:7b:ec:38:ae:4d:28:c4:83:52:
49:23:33:05:9e:7b:df:86:06:a5:bb:45:26:12:5e:
ac:a0:61:21:e1:b4:c4:7c:cd:3c:af:cc:e8:09:8f:
73:d0:8d:f0:9b:5d:dd:6e:b5:1f:51:bc:27:f7:aa:
6c:5d:fc:86:d3:c3:64:b3:53:6e:58:56:f6:24:3f:
2a:df:31:eb:49:1c:af:da:b4:01:75:e6:03:76:c5:
2c:e7:6b:5d:4d:62:0e:06:ca:1c:f1:f6:05:5b:bd:
df:eb:14:8d:b1:e8:9c:64:a4:ec:3f:41:5f:1d:1d:
30:f1:b1:83:11:a5:0a:3f:49:27:72:7e:28:f1:6d:
1d:b8:5a:1f:8a:99:7a:12:5f:38:37:70:e8:7a:1b:
d2:93:55:77:5a:ba:c5:59:51:67:d8:9d:73:50:c3:
f3:2d:12:83:c4:db:93:4d:ed:79:3e:8c:bf:b2:e7:
95:98:d7:89:0b:c8:ad:87:e0:5f:75:04:ea:c0:14:
83:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:68:68:9D:8F:8F:36:13:43:D7:EC:A1:C5:4C:8D:16:39:88:64:73
X509v3 Authority Key Identifier:
keyid:8E:FC:61:0C:E7:BC:F4:79:65:1F:D9:51:8C:28:89:4E:D1:EB:5A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvxhDOe89HllH9lRjCiJTtHrWoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/cmhonY-PNhND1-yhxUyNFjmIZHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/2894d7-14ee-46ab-882a-21272b87728b/1/jvxhDOe89HllH9lRjCiJTtHrWoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.54.166.0/24
Signature Algorithm: sha256WithRSAEncryption
55:30:8f:46:12:74:df:af:de:f4:4e:cd:ea:15:99:4d:cd:25:
0a:4e:2a:50:49:9d:de:bb:8d:2c:10:96:ab:42:4c:65:88:e0:
41:22:7e:1c:eb:05:55:92:12:4e:fd:7d:1b:b5:b2:bd:d7:88:
6a:78:eb:71:88:9b:e5:03:5d:6a:9c:6b:36:99:a4:9e:dc:d9:
17:63:85:19:f4:fd:93:06:91:35:3d:93:44:b0:9f:da:fc:77:
97:00:4f:22:e3:ff:19:88:38:de:5c:08:17:10:ad:52:e2:6c:
c3:ff:df:fc:b5:25:94:6b:77:76:74:37:2f:02:b3:1c:d1:c3:
e7:fe:d2:d3:f5:45:d4:64:5e:0a:17:32:74:65:06:d8:99:8e:
29:89:60:bf:40:97:4f:8c:6f:ca:5c:78:79:91:89:ea:64:49:
c2:f8:01:9c:68:76:3a:57:b5:64:14:ee:b9:6d:57:85:f7:22:
17:a6:ae:d2:fe:fd:35:2b:38:07:4d:f0:d6:08:af:0d:62:27:
a7:02:83:3e:ca:7a:df:c8:b3:5c:5f:31:e2:7a:a3:24:bc:48:
2a:fb:89:f3:7b:a0:4f:98:3d:39:ed:62:90:c7:25:dc:2a:d5:
82:e9:ee:a5:6d:b4:28:00:b2:bb:f5:f6:bb:5b:2a:68:37:be:
fe:c6:91:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:43 2024 by rpki-client on console-ams.rpki-client.org