Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/HnHCRawQ7_aNXAsLukJkBY42b7o.roa
File: HnHCRawQ7_aNXAsLukJkBY42b7o.roa (raw, json)
Hash identifier: Q79RcL1WFXsU2QoYEoZNClL97krt9uOPqBGqST1E178=
Subject key identifier: 1E:71:C2:45:AC:10:EF:F6:8D:5C:0B:0B:BA:42:64:05:8E:36:6F:BA
Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251
Certificate serial: 01856ECB84AAE7BC72A9B20E8DAE238C90A5
Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/HnHCRawQ7_aNXAsLukJkBY42b7o.roa
Signing time: Sun 01 Jan 2023 19:25:09 +0000
ROA not before: Sun 01 Jan 2023 19:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212489
IP address blocks: 91.243.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:84:aa:e7:bc:72:a9:b2:0e:8d:ae:23:8c:90:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a69fc568894cb3985edef22216bd99974de251
Validity
Not Before: Jan 1 19:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e71c245ac10eff68d5c0b0bba4264058e366fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b3:fa:8c:cf:9c:ed:d7:74:97:c1:df:71:5c:
51:97:89:54:1b:5c:1a:31:d6:8a:f6:57:f9:ad:96:
97:7c:e2:ed:90:9e:e9:73:1a:65:fc:2a:0a:40:cf:
7e:41:7c:fa:f2:9a:ec:20:03:26:8e:a6:fd:af:f3:
65:b5:57:38:29:38:78:b1:26:39:56:62:a4:14:69:
db:15:7e:25:3c:90:32:16:99:b0:5f:00:7b:a7:72:
7b:63:3f:4d:9d:8c:60:54:6c:0e:f3:c1:50:a8:c5:
c6:5f:66:ef:45:d0:b9:ba:b7:5b:7c:93:58:1c:a9:
7d:0c:05:7a:4e:a2:62:81:e4:a6:00:ad:07:ab:fa:
20:fb:9c:36:8f:30:ae:1a:95:e3:41:9c:4e:c7:99:
79:af:35:25:c5:38:13:e5:2b:2a:98:17:5c:a4:ef:
80:2e:d2:8f:37:ed:9c:3f:78:5f:b6:df:47:e1:c8:
d0:9d:76:31:6b:6c:6e:2e:d4:ec:b7:cb:bb:51:15:
aa:13:dc:72:9e:ab:77:3f:c4:1c:cf:64:a6:59:42:
18:41:93:e8:6b:c7:df:0d:10:d5:43:16:42:ba:98:
38:05:4d:14:fa:80:fd:25:35:b2:34:d9:1c:aa:69:
65:48:45:62:49:36:ef:eb:40:47:cc:15:b9:be:0a:
e5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:71:C2:45:AC:10:EF:F6:8D:5C:0B:0B:BA:42:64:05:8E:36:6F:BA
X509v3 Authority Key Identifier:
keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/HnHCRawQ7_aNXAsLukJkBY42b7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.117.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:7f:e0:da:a0:c1:73:24:83:fa:69:20:d2:56:4b:2a:27:da:
37:fc:cf:d3:b7:80:7d:90:02:e7:2d:08:68:2b:8e:06:84:19:
64:37:7f:5b:60:73:43:fb:f7:9f:38:3f:ce:4a:d9:77:5c:25:
3b:86:22:9d:74:67:53:c9:54:bc:c0:82:79:0c:62:4f:ad:a0:
a1:6c:6b:c2:fa:d4:22:cb:d5:12:48:c8:c0:da:6b:f9:ac:65:
0a:51:61:c1:37:6f:8a:b4:db:31:f6:62:a6:74:ad:7e:6f:b7:
f3:6a:4c:ef:cf:05:48:b7:51:bf:bd:58:97:e4:ec:c3:0d:80:
d3:05:cf:38:a8:34:73:f7:11:b9:49:ca:0d:c2:c1:f8:ae:c2:
75:ed:2d:e2:93:82:fb:bb:ae:1b:4f:01:73:38:7b:13:29:4b:
f0:a2:2d:e3:24:f6:b1:d9:0c:d7:18:05:e6:4f:5d:c2:ef:d7:
75:cb:c8:a1:75:ba:0c:fc:65:ff:58:f8:b6:78:37:b2:14:b5:
c1:38:7f:2c:77:80:eb:51:2a:5f:89:76:d1:15:f1:53:f6:d0:
05:00:57:ea:b4:cd:32:68:46:6a:a0:98:73:9b:97:a1:46:91:
22:2d:48:2d:6f:4e:72:5f:07:30:67:68:f9:a6:a4:cd:20:48:
0c:69:1c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:41 2024 by rpki-client on console-fra.rpki-client.org