Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/hwonhWkN6fmuZR86WPtWlvBSSJM.roa
File: hwonhWkN6fmuZR86WPtWlvBSSJM.roa (raw, json)
Hash identifier: jYL30H4GVljkoOtPzbBZprKYvB08YtvXaFW+DpClrFw=
Subject key identifier: 87:0A:27:85:69:0D:E9:F9:AE:65:1F:3A:58:FB:56:96:F0:52:48:93
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 018964791F8A123F90A662EE26D014DD1A4E
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/hwonhWkN6fmuZR86WPtWlvBSSJM.roa
Signing time: Mon 17 Jul 2023 15:30:06 +0000
ROA not before: Mon 17 Jul 2023 15:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 84.252.69.0/24 maxlen: 24
194.59.222.0/24 maxlen: 24
2a0f:3101::/32 maxlen: 32
2a0d:3c46::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:79:1f:8a:12:3f:90:a6:62:ee:26:d0:14:dd:1a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Jul 17 15:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=870a2785690de9f9ae651f3a58fb5696f0524893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a5:06:84:bf:7e:5e:71:2f:d1:8c:89:88:98:
ac:98:4b:16:7e:3b:9c:28:21:ca:03:97:8d:23:fa:
f9:5c:1c:04:62:93:0d:fe:2b:75:af:76:c9:76:a4:
01:84:54:1f:27:d4:0d:f8:91:95:9e:fd:01:fe:a7:
02:db:95:16:d1:e0:d2:ce:97:14:ee:cc:3b:c4:71:
b4:25:4a:cd:2d:49:12:0c:1b:b0:5e:dd:9f:54:d0:
fc:60:14:62:b9:b9:ab:7c:98:3b:e7:94:10:19:e6:
40:40:a1:20:c8:00:d7:ec:59:42:6b:50:a5:e7:c5:
55:0a:40:bc:8c:cf:77:20:e2:ef:3a:57:16:42:3f:
0f:6b:5c:dd:a6:df:e8:90:8b:58:d1:e4:90:0c:a9:
11:1b:5d:1d:5f:a5:b0:bd:7e:cf:44:06:1e:49:1a:
c0:27:01:03:64:1e:41:5d:e7:d0:f1:65:97:b6:46:
16:80:55:09:bc:14:a1:d7:27:78:59:5c:a6:b9:f2:
0a:53:b3:2e:af:0a:95:ba:b1:2b:ed:54:1f:44:a1:
65:96:9f:33:84:0a:e5:59:68:34:bb:01:5b:e9:39:
29:da:21:53:4f:34:a4:54:2e:62:41:f3:c4:2f:98:
b1:f1:1c:34:12:45:b2:5b:8d:50:a4:bb:8b:82:ae:
f6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0A:27:85:69:0D:E9:F9:AE:65:1F:3A:58:FB:56:96:F0:52:48:93
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/hwonhWkN6fmuZR86WPtWlvBSSJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.69.0/24
194.59.222.0/24
IPv6:
2a0d:3c46::/32
2a0f:3101::/32
Signature Algorithm: sha256WithRSAEncryption
02:05:9b:ca:b1:0e:e4:39:32:a2:82:56:51:37:ab:9d:0e:f5:
61:98:91:e4:c3:05:56:d0:66:57:85:43:0a:45:80:91:0e:94:
17:b5:ae:1e:19:5f:2b:f0:6d:c0:8b:9f:e9:af:ee:cc:5d:70:
82:10:50:6e:f1:a9:be:c7:62:91:99:de:3c:d9:69:57:12:ab:
9c:0b:e0:df:bd:cd:02:1a:f4:c0:96:e0:1a:f1:56:a4:5f:b4:
42:ca:3e:48:9f:b3:02:1b:9f:6f:e4:8e:e6:3c:b2:c4:ab:b6:
0f:53:44:45:c0:a6:ce:10:6a:8e:41:46:d7:7a:da:4c:2c:ca:
23:d2:8d:f2:61:bd:c7:41:86:9b:ff:77:8d:3d:d8:b8:a3:fe:
83:25:df:6f:3a:1d:aa:9a:9d:00:ac:bc:c3:fb:2b:52:79:3c:
8d:5e:bd:c4:13:6a:46:ea:de:5d:ca:b6:cd:5f:f8:30:e0:e3:
09:80:52:11:9c:54:02:f1:8f:6a:28:96:d6:16:6c:cc:43:e8:
ac:da:05:2d:e8:e9:80:e3:72:5d:0b:fb:b5:38:e0:04:80:ec:
04:1b:3d:a4:97:d6:61:46:05:47:0a:1e:07:ed:db:9b:2b:93:
65:08:c8:5c:9e:cb:79:6b:8b:30:84:8f:ed:f0:e1:1e:03:cd:
09:f9:d3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:09 2023 by rpki-client on console.sobornost.net