Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/9hjvwJRwYXFK18VJ41lHpVjA7QU.roa
File: 9hjvwJRwYXFK18VJ41lHpVjA7QU.roa (raw, json)
Hash identifier: WmgPJaQ6pY2UM8BrtFjqvlbwWK3GTkI/z4sZ5XZr/08=
Subject key identifier: F6:18:EF:C0:94:70:61:71:4A:D7:C5:49:E3:59:47:A5:58:C0:ED:05
Certificate issuer: /CN=ac9e2efcdc213ac5b1b0879d922a178b850f451f
Certificate serial: 018D9E450E17B553DF7435C78D93EB59A360
Authority key identifier: AC:9E:2E:FC:DC:21:3A:C5:B1:B0:87:9D:92:2A:17:8B:85:0F:45:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJ4u_NwhOsWxsIedkioXi4UPRR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/9hjvwJRwYXFK18VJ41lHpVjA7QU.roa
Signing time: Mon 12 Feb 2024 17:02:22 +0000
ROA not before: Mon 12 Feb 2024 17:02:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24763
IP address blocks: 193.56.124.0/24 maxlen: 24
2a00:4f40:fffe::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Mar 2024 14:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9e:45:0e:17:b5:53:df:74:35:c7:8d:93:eb:59:a3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9e2efcdc213ac5b1b0879d922a178b850f451f
Validity
Not Before: Feb 12 17:02:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f618efc0947061714ad7c549e35947a558c0ed05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d4:b9:26:00:bd:e2:46:67:2a:fc:67:43:2d:
f6:2a:95:51:b3:58:7e:3b:53:dd:33:ae:86:c8:17:
17:72:88:8c:f2:66:e3:3b:a1:e0:96:1f:fb:20:28:
ea:d2:18:9f:7c:00:2d:8e:60:d0:f0:2b:bd:56:74:
c6:0b:c0:ea:b3:32:b3:00:9f:ee:e7:b7:25:f5:94:
b4:ba:82:0c:01:20:f5:1b:cc:07:f4:f2:c9:28:8c:
58:c9:9d:5a:cb:41:30:18:28:01:f5:37:3f:ea:cc:
18:ea:a1:99:d0:a4:41:9c:05:b8:2c:5c:a9:6a:ed:
c7:cd:01:00:50:45:70:84:64:37:13:2c:56:79:fe:
7c:b0:36:24:5f:8b:ac:47:22:cf:bc:b6:c9:36:f1:
4d:40:c0:88:f0:d4:ae:da:b0:be:18:b0:38:2c:0e:
91:cb:f7:db:d5:8b:6e:d1:f5:59:31:a6:97:04:72:
95:20:3b:98:83:cc:58:de:9c:44:90:24:88:1c:a0:
9c:ad:63:e3:57:f3:93:2d:46:5e:d2:7d:1e:07:53:
1e:5f:b2:28:0a:1a:94:af:4e:9f:ae:11:0d:38:21:
8f:ee:3e:ce:03:ca:90:38:52:72:31:b0:60:03:08:
d2:77:c8:03:cf:c3:5f:f7:00:66:5c:ca:1d:c8:5f:
43:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:18:EF:C0:94:70:61:71:4A:D7:C5:49:E3:59:47:A5:58:C0:ED:05
X509v3 Authority Key Identifier:
keyid:AC:9E:2E:FC:DC:21:3A:C5:B1:B0:87:9D:92:2A:17:8B:85:0F:45:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJ4u_NwhOsWxsIedkioXi4UPRR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/9hjvwJRwYXFK18VJ41lHpVjA7QU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d1faa9-b5a3-4d49-868a-7c7bf27175c5/1/rJ4u_NwhOsWxsIedkioXi4UPRR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.124.0/24
IPv6:
2a00:4f40:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
5e:bd:e5:61:81:20:ef:2c:b7:d5:43:c6:aa:f6:b7:8d:e2:18:
a2:de:45:81:7c:eb:40:64:ed:1b:1b:78:c2:4e:d2:be:20:fd:
22:1f:03:a8:aa:6b:f9:47:b0:da:12:d8:5b:20:02:dd:68:e4:
69:ee:35:8f:66:8e:d2:d7:87:1c:8e:c6:a5:9f:08:7a:8e:dc:
f5:77:4d:26:c0:be:37:8f:5a:f4:28:48:ab:cd:b8:db:f8:3d:
df:d3:66:a3:01:9b:05:da:46:75:7a:a3:15:04:d0:ee:8b:f3:
ae:bf:44:24:83:d7:89:1a:9a:d3:e6:88:20:f6:d2:a4:b3:15:
7b:ea:ed:42:8a:72:d6:9e:b0:8c:b8:08:33:6b:d3:91:03:da:
28:0f:f7:42:40:dc:66:ec:4c:64:ee:77:f4:c8:76:ac:70:4f:
de:a4:be:e6:d6:34:05:59:b1:47:e6:61:57:bd:be:77:84:6e:
c0:5e:f4:a6:fc:80:a2:cf:05:ea:50:25:56:72:9a:29:e2:4b:
4f:ba:91:5b:5b:08:75:52:32:a9:fa:e4:cb:41:0b:80:3a:71:
0e:9f:a5:06:00:7c:52:f6:d7:e8:84:30:31:f3:c6:48:0c:0e:
3d:c7:36:3f:aa:ae:f4:cb:d6:be:bc:1d:eb:48:4f:e7:ba:ca:
ca:4b:3f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 19:22:35 2024 by rpki-client on console.sobornost.net