Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/hTm8k9HRpN-IfX50oTsnlCuJ1tY.roa
File: hTm8k9HRpN-IfX50oTsnlCuJ1tY.roa (raw, json)
Hash identifier: 9MQ9u9SBN67IcNzehXPmZ314Um5RU0HsLWaPf3IZ+Kw=
Subject key identifier: 85:39:BC:93:D1:D1:A4:DF:88:7D:7E:74:A1:3B:27:94:2B:89:D6:D6
Certificate issuer: /CN=553f4bc416639a7e1b6c4f0199e02e3160a1e642
Certificate serial: 018570D53F305D714A4B8647612F06AB652B
Authority key identifier: 55:3F:4B:C4:16:63:9A:7E:1B:6C:4F:01:99:E0:2E:31:60:A1:E6:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VT9LxBZjmn4bbE8BmeAuMWCh5kI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/hTm8k9HRpN-IfX50oTsnlCuJ1tY.roa
Signing time: Mon 02 Jan 2023 04:55:01 +0000
ROA not before: Mon 02 Jan 2023 04:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60320
IP address blocks: 185.242.184.0/24 maxlen: 24
2a13:6000::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:3f:30:5d:71:4a:4b:86:47:61:2f:06:ab:65:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=553f4bc416639a7e1b6c4f0199e02e3160a1e642
Validity
Not Before: Jan 2 04:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8539bc93d1d1a4df887d7e74a13b27942b89d6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:29:41:97:c1:a2:a6:99:f6:82:de:47:1e:
f6:c3:3d:2c:f7:b1:35:71:d3:03:58:1f:fd:33:09:
7a:9c:1e:51:18:57:09:b9:f3:28:a0:99:c2:64:fa:
f2:a3:6a:ff:53:e7:ba:34:cd:1f:48:c7:a2:a0:32:
4a:e1:b7:62:9c:7e:cb:9e:44:a4:92:a8:41:86:c0:
e0:af:81:17:f2:55:b9:60:3d:45:61:f0:3c:be:fb:
c7:1a:5c:21:8f:5c:68:d4:7d:01:c5:3d:ef:1a:04:
84:56:ef:1b:d8:f7:6a:61:f0:54:09:e1:41:8a:08:
e9:c3:92:52:12:fb:73:19:83:5e:7c:f2:a4:bf:2b:
2e:3c:6a:04:57:2f:8b:a5:07:89:22:d6:77:95:30:
01:50:49:bf:15:28:a4:92:36:00:92:50:29:0e:b4:
d4:6d:f2:a1:8f:82:39:00:73:a4:62:55:2f:66:3b:
22:2d:be:e2:5e:fb:90:e0:5f:6b:6b:58:94:98:06:
15:2a:01:45:c0:ce:a2:3d:0f:43:b4:fd:be:74:21:
f6:e8:e7:de:e9:f2:2a:9e:f6:ff:f0:8c:9e:6d:bb:
e3:2a:f5:32:d1:66:b0:c3:ef:c7:c8:2f:14:ee:3a:
97:b4:02:14:d0:78:09:60:de:d7:f1:09:06:4f:d6:
b5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:39:BC:93:D1:D1:A4:DF:88:7D:7E:74:A1:3B:27:94:2B:89:D6:D6
X509v3 Authority Key Identifier:
keyid:55:3F:4B:C4:16:63:9A:7E:1B:6C:4F:01:99:E0:2E:31:60:A1:E6:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VT9LxBZjmn4bbE8BmeAuMWCh5kI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/hTm8k9HRpN-IfX50oTsnlCuJ1tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d119f6-880d-4f5b-b079-5ddafb5954ba/1/VT9LxBZjmn4bbE8BmeAuMWCh5kI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.184.0/24
IPv6:
2a13:6000::/29
Signature Algorithm: sha256WithRSAEncryption
c3:60:f7:b3:4a:9c:67:fc:aa:b0:a0:97:2f:5e:69:49:14:f4:
15:10:df:8d:4e:d3:26:c3:0c:d5:4a:ff:c5:00:93:c5:98:fe:
17:0a:c2:ab:8e:0d:9e:8d:39:a2:d6:13:02:71:fd:d0:bd:29:
a7:40:e8:4d:68:89:65:29:94:d8:0b:60:77:38:ba:06:10:40:
ad:95:f6:bd:ba:c0:82:64:dc:53:05:1d:cf:e4:20:8a:20:5c:
e4:16:34:73:e5:cd:2e:97:3d:3d:8d:5b:0d:3f:02:04:54:bb:
be:ec:f9:68:8d:d4:69:a8:a4:e9:94:58:31:bc:fd:b9:cd:2c:
34:93:d6:0d:17:26:db:ac:39:6f:8c:54:67:4b:a6:2e:08:e5:
e1:be:ab:e6:51:05:9e:74:29:ca:38:61:84:51:a5:67:34:a1:
e8:42:fb:4c:e7:9c:1a:46:e8:ff:21:dd:52:76:5f:f8:be:fb:
6f:00:b9:de:1d:e2:19:76:85:0d:72:1e:4f:44:56:01:6c:36:
62:0e:e1:c4:6d:57:87:1d:ff:3e:60:5f:0d:73:49:cb:bd:48:
b6:9f:7d:4c:e2:b1:48:43:29:a3:b9:59:24:66:08:22:84:31:
e6:01:41:e7:7b:48:7c:a0:d8:b7:ad:30:58:af:a3:eb:f6:b2:
63:78:00:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org