Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/0423db-f233-4922-8024-b21110d8ffa1/1/hMpLsCzwhOJ6nB7v33lKnMU5J-c.roa
File: hMpLsCzwhOJ6nB7v33lKnMU5J-c.roa (raw, json)
Hash identifier: dfsSNzjk6lFttI6++pfhE3eeOfFZW41E3k/GPEmquTQ=
Subject key identifier: 84:CA:4B:B0:2C:F0:84:E2:7A:9C:1E:EF:DF:79:4A:9C:C5:39:27:E7
Certificate issuer: /CN=e63007614f67700b2ca76d60b4942b7a8e4b5ce4
Certificate serial: 018A5F25530F631C81A0F5AC7A392C22F195
Authority key identifier: E6:30:07:61:4F:67:70:0B:2C:A7:6D:60:B4:94:2B:7A:8E:4B:5C:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jAHYU9ncAssp21gtJQreo5LXOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/0423db-f233-4922-8024-b21110d8ffa1/1/hMpLsCzwhOJ6nB7v33lKnMU5J-c.roa
Signing time: Mon 04 Sep 2023 07:43:16 +0000
ROA not before: Mon 04 Sep 2023 07:43:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12874
IP address blocks: 194.59.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:25:53:0f:63:1c:81:a0:f5:ac:7a:39:2c:22:f1:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e63007614f67700b2ca76d60b4942b7a8e4b5ce4
Validity
Not Before: Sep 4 07:43:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84ca4bb02cf084e27a9c1eefdf794a9cc53927e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b0:dc:d2:27:1f:56:e8:12:9e:d8:9c:9c:a6:
de:80:82:f7:d5:fe:aa:bd:e4:c6:83:19:11:92:f5:
d1:8d:d1:c5:9c:6d:14:fd:27:2c:23:0f:19:0b:2b:
e9:f7:b0:9c:bb:be:a4:04:8c:ba:91:28:f8:86:fe:
2f:8e:75:68:e3:ec:0b:e1:ee:07:38:a6:6f:e8:5f:
95:bd:70:91:f3:98:27:16:10:11:d9:c9:5a:3a:b2:
39:2a:ea:45:89:57:ad:cd:a0:a5:1f:99:f8:7b:d2:
5c:c1:86:77:ea:74:0f:d1:61:3f:ad:98:1f:a1:59:
99:e8:0e:ee:c1:12:d4:29:dd:42:e4:e7:a3:e0:b9:
a0:56:7f:65:92:d3:bb:72:40:f8:b2:1e:e5:39:2a:
7f:8d:27:36:3f:3d:1a:30:7c:5e:65:e2:fd:eb:5c:
1a:78:10:ff:15:b5:30:b0:8f:15:6c:36:4a:c9:2c:
d6:98:d7:18:1b:45:3c:fb:fb:e1:1b:8a:50:a0:4d:
fa:94:06:60:14:ed:42:45:37:12:3e:64:c8:ad:6e:
79:31:0a:1d:85:26:b4:13:09:51:da:b2:9c:5f:a0:
e8:f3:0b:f1:8b:17:89:2b:6b:2e:f8:39:d4:d8:00:
35:8d:c5:16:c9:9b:59:85:ed:0a:9a:d7:3a:bf:ca:
f0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CA:4B:B0:2C:F0:84:E2:7A:9C:1E:EF:DF:79:4A:9C:C5:39:27:E7
X509v3 Authority Key Identifier:
keyid:E6:30:07:61:4F:67:70:0B:2C:A7:6D:60:B4:94:2B:7A:8E:4B:5C:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jAHYU9ncAssp21gtJQreo5LXOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0423db-f233-4922-8024-b21110d8ffa1/1/hMpLsCzwhOJ6nB7v33lKnMU5J-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/0423db-f233-4922-8024-b21110d8ffa1/1/5jAHYU9ncAssp21gtJQreo5LXOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.208.0/22
Signature Algorithm: sha256WithRSAEncryption
98:8b:ac:0d:ba:32:8e:f3:16:69:db:ea:a4:0a:eb:2d:76:a3:
e4:a9:fd:fb:ec:b1:87:38:a1:d4:f1:d5:8c:a5:ab:5b:29:40:
af:42:5d:2e:0c:7a:be:06:15:2d:08:b4:ea:87:b6:e6:0f:4f:
32:af:c3:22:8d:2f:ba:a8:f5:18:7e:d7:7e:df:8f:6e:03:5c:
93:0d:59:8e:91:3b:45:2a:51:f7:94:fc:f2:1f:11:88:42:f1:
36:99:a9:5d:05:de:4a:74:06:03:d1:7b:f2:ac:78:15:14:7e:
62:b1:46:2e:04:20:77:6d:bc:ee:ff:30:c8:d5:22:83:17:68:
0e:25:4a:a6:f3:7c:1b:75:1b:43:a7:38:ca:a3:ef:b1:c0:d3:
ae:2a:9b:56:ae:5d:77:af:05:d5:fc:6a:31:69:b4:0c:66:91:
2c:3e:70:ec:66:a0:54:1f:a3:96:c5:8d:18:78:74:a3:26:c4:
94:f8:49:12:bc:26:ce:77:05:9e:51:4d:2c:db:eb:e3:d9:09:
28:92:74:d7:09:2e:64:08:14:d4:49:11:0a:07:13:b6:53:76:
cb:94:29:3c:4e:d4:a0:13:68:eb:2c:38:cf:10:52:06:5e:67:
f3:64:23:76:c9:82:b7:1e:4d:6a:e5:12:b5:3c:22:1f:52:8a:
8d:9d:57:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:52 2024 by rpki-client on console-ams.rpki-client.org