Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/HhGBjQoS59Mb9kX39BG4dLGVSRc.roa
File: HhGBjQoS59Mb9kX39BG4dLGVSRc.roa (raw, json)
Hash identifier: D4XKLH9xeLM9/8SFvzkd6X0hD3tWxWke+ayXI1FCKXY=
Subject key identifier: 1E:11:81:8D:0A:12:E7:D3:1B:F6:45:F7:F4:11:B8:74:B1:95:49:17
Certificate issuer: /CN=12151bf57f5316b2dd5cd8a3f798527eac14b774
Certificate serial: 0185718C3D6C0B5837FA3173284A3A37D90A
Authority key identifier: 12:15:1B:F5:7F:53:16:B2:DD:5C:D8:A3:F7:98:52:7E:AC:14:B7:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhUb9X9TFrLdXNij95hSfqwUt3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/HhGBjQoS59Mb9kX39BG4dLGVSRc.roa
Signing time: Mon 02 Jan 2023 08:14:54 +0000
ROA not before: Mon 02 Jan 2023 08:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12757
IP address blocks: 194.0.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:3d:6c:0b:58:37:fa:31:73:28:4a:3a:37:d9:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12151bf57f5316b2dd5cd8a3f798527eac14b774
Validity
Not Before: Jan 2 08:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e11818d0a12e7d31bf645f7f411b874b1954917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:60:78:21:6d:9c:4c:df:ea:a3:3a:40:d7:
33:61:b3:b1:39:8d:5e:b1:b5:aa:b0:8b:70:8e:7a:
7a:63:fb:a6:e8:c9:1d:e6:c5:d3:5e:b8:31:59:7f:
93:b7:12:7d:b5:a8:1e:6a:99:54:42:18:b9:7f:4d:
45:98:ba:f0:2b:45:36:c7:05:18:c8:e0:33:0c:18:
df:be:1a:d0:1c:b1:5b:68:f5:17:73:2c:f8:fb:06:
cd:03:6f:05:5b:10:5c:58:27:0e:00:2a:e7:0d:6e:
86:1d:1a:54:48:1c:8d:41:06:4d:9b:0f:fc:16:b0:
8d:5b:29:17:0a:0d:85:c9:a7:3c:e1:af:f1:e5:62:
d0:b7:d4:03:bb:18:87:c1:db:e9:16:07:7f:d8:00:
1e:c0:69:bd:c0:61:38:9d:29:2f:83:dc:c3:41:90:
52:8a:cc:07:6a:0f:9a:23:c1:60:ac:09:76:a3:5b:
8c:9c:64:31:36:6a:80:76:c5:04:b7:2d:2a:96:c3:
31:a8:d1:f1:f7:48:ee:3e:a8:3d:30:be:20:16:c2:
cf:c5:c2:92:d5:f4:f8:be:be:40:cd:61:16:2b:cc:
13:03:4d:bd:7f:2a:cd:e9:1c:94:53:2c:e9:0f:f0:
df:e6:ae:14:c3:fe:e6:c1:44:2e:ff:22:32:fa:90:
2b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:11:81:8D:0A:12:E7:D3:1B:F6:45:F7:F4:11:B8:74:B1:95:49:17
X509v3 Authority Key Identifier:
keyid:12:15:1B:F5:7F:53:16:B2:DD:5C:D8:A3:F7:98:52:7E:AC:14:B7:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhUb9X9TFrLdXNij95hSfqwUt3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/HhGBjQoS59Mb9kX39BG4dLGVSRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/EhUb9X9TFrLdXNij95hSfqwUt3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.51.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:5f:6d:2f:06:9e:cc:17:a6:48:df:0c:fc:5b:8f:eb:5e:9c:
19:cf:8c:9b:90:d0:91:eb:ba:d0:e5:e0:48:35:60:85:b1:09:
ba:27:08:8a:3e:24:4d:e6:69:c3:63:8f:4d:a1:a4:3c:aa:e2:
12:a7:9a:ab:89:d4:9d:5d:ae:4b:9f:6a:8a:3b:26:92:4b:d5:
87:cf:b6:62:75:54:33:84:0a:c5:70:0d:33:64:95:3e:6a:a2:
7f:d5:c1:4e:0e:78:7e:9c:a0:90:1e:f1:65:c3:94:0f:c6:9e:
a6:81:fe:0c:9d:80:b4:c1:c0:28:4d:6b:6f:29:4e:8f:b2:5e:
3e:41:18:84:a5:66:ab:6b:d4:0f:ce:f1:18:5a:3d:3b:11:83:
81:d2:3c:50:d8:55:17:d3:30:84:a4:79:9e:1f:b8:17:7b:47:
fd:15:5c:9d:ea:a7:d2:3f:60:2f:75:71:42:81:be:bd:92:b2:
f5:6d:f6:1c:23:ee:83:8e:bc:01:22:87:e3:17:77:0f:ab:3b:
6c:da:6d:61:44:bc:1a:19:a0:a1:20:81:cd:bf:39:19:64:ca:
fa:10:e6:ca:fe:8f:f7:8e:30:33:7c:48:e3:48:ea:39:f2:03:
63:24:5d:67:57:2f:ab:34:d0:ea:f6:b5:22:fa:82:b6:7e:3e:
16:ab:29:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:08 2024 by rpki-client on console-ams.rpki-client.org