Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/hvYVe4yVPv5euqiGYT2Yiu1F8GY.roa
File: hvYVe4yVPv5euqiGYT2Yiu1F8GY.roa (raw, json)
Hash identifier: fFuJP/ThvmNt1iVIYybsnk1fmmTPqtZhzAyXgIm2JFg=
Subject key identifier: 86:F6:15:7B:8C:95:3E:FE:5E:BA:A8:86:61:3D:98:8A:ED:45:F0:66
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 01881ACFDA1D17F85EEFD7DB51D965F79E6C
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/hvYVe4yVPv5euqiGYT2Yiu1F8GY.roa
Signing time: Sun 14 May 2023 15:10:09 +0000
ROA not before: Sun 14 May 2023 15:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204316
IP address blocks: 194.145.115.0/24 maxlen: 24
2a12:dc40:1::/48 maxlen: 48
2a12:dc40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1a:cf:da:1d:17:f8:5e:ef:d7:db:51:d9:65:f7:9e:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: May 14 15:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86f6157b8c953efe5ebaa886613d988aed45f066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:38:f4:61:cb:30:99:63:2a:7d:36:5d:c9:72:
6e:ef:d5:49:2c:83:ec:1a:ce:4b:67:43:70:1b:64:
60:2c:cf:2f:08:13:0c:a9:2e:ab:e1:3e:dd:ec:5d:
83:a1:23:41:65:a1:e4:ba:76:c4:66:ab:97:bd:e5:
ab:02:8a:be:37:54:d1:6c:74:50:6e:3a:b6:9c:f9:
9c:12:1d:a6:3f:61:30:af:d2:c9:9f:0d:b0:51:66:
b6:3e:b4:aa:bb:45:fa:a3:02:3c:ff:63:85:2d:c8:
97:97:a2:b2:7a:d6:6c:e7:97:46:01:57:4f:07:d8:
3a:93:ba:ac:2f:f3:45:7d:a7:92:5c:e7:9a:31:b2:
e1:29:a9:d0:a0:ac:c4:d5:1c:49:34:b6:62:5b:5b:
5c:15:6d:10:e0:8f:65:52:3e:1f:86:ab:48:af:1f:
36:f4:cb:bc:fa:03:0f:35:9c:b3:b4:d1:91:10:d9:
5d:98:31:9f:0a:7a:ba:36:83:c3:c5:2e:37:5f:aa:
dc:68:96:8f:d5:1a:64:84:90:bd:02:52:8f:65:64:
82:33:1b:f9:cb:3c:50:f0:56:c3:4e:68:05:91:ba:
43:bc:32:b1:ef:aa:33:3a:75:2b:8e:86:6b:da:2d:
5e:1e:f8:25:d4:3a:e6:d9:84:4e:ab:c4:b1:b0:d5:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F6:15:7B:8C:95:3E:FE:5E:BA:A8:86:61:3D:98:8A:ED:45:F0:66
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/hvYVe4yVPv5euqiGYT2Yiu1F8GY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.115.0/24
IPv6:
2a12:dc40::/47
Signature Algorithm: sha256WithRSAEncryption
68:43:0b:53:4e:18:d3:ba:e7:93:2b:6b:5a:76:bf:b1:16:8f:
42:17:1e:b0:a4:a4:07:98:cd:7c:64:4d:6a:ba:5d:a2:35:d3:
67:0a:60:98:89:0f:5f:b7:35:ff:1a:3a:3c:f3:e3:eb:2a:c1:
2d:d1:f9:46:c5:4a:5f:d0:be:45:59:10:82:a1:6d:92:7e:df:
c5:af:c1:9d:b3:2d:29:ac:4e:16:b0:c9:22:8d:c5:07:1b:93:
e8:30:00:61:76:8d:1f:d6:b5:5a:46:1f:2e:fc:85:70:1b:47:
79:ee:fa:a0:04:05:03:c3:51:79:33:bc:20:aa:6a:c6:47:e1:
e5:23:cc:23:06:a8:db:a1:c8:32:05:5e:3b:aa:01:33:b9:92:
e7:b2:ec:2a:6d:e6:47:72:ac:38:1e:d1:f1:94:af:ef:b9:53:
20:70:64:b6:db:e3:1f:f8:5e:ad:be:6e:8f:8d:36:68:9c:22:
e7:6f:bc:f3:11:a9:0a:4c:e2:ed:03:db:1c:e4:34:da:7d:24:
26:39:20:3d:d6:13:9e:cc:66:ac:89:b6:14:fe:32:43:c9:27:
4b:e7:b5:96:8a:3a:94:9c:92:de:45:e5:22:70:37:15:b2:cf:
57:e1:27:17:24:3c:22:65:3f:11:c2:b7:6b:1f:20:d6:05:e5:
e8:0a:26:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:59 2023 by rpki-client on console.sobornost.net