Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/HmtcliQHuPd-HHlUXlyVTVY5KhA.roa
File: HmtcliQHuPd-HHlUXlyVTVY5KhA.roa (raw, json)
Hash identifier: jZ7WCM/4KC931zJorgPSGX0TmQRFjXn26uCtt52uLAg=
Subject key identifier: 1E:6B:5C:96:24:07:B8:F7:7E:1C:79:54:5E:5C:95:4D:56:39:2A:10
Certificate issuer: /CN=7367c490447f5045c02367db8d21b4e08749fa76
Certificate serial: 01892A05CD18728EEF8D0DF485028B565E62
Authority key identifier: 73:67:C4:90:44:7F:50:45:C0:23:67:DB:8D:21:B4:E0:87:49:FA:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2fEkER_UEXAI2fbjSG04IdJ-nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/HmtcliQHuPd-HHlUXlyVTVY5KhA.roa
Signing time: Thu 06 Jul 2023 07:06:10 +0000
ROA not before: Thu 06 Jul 2023 07:06:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57827
IP address blocks: 176.108.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 17 Jul 2023 02:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2a:05:cd:18:72:8e:ef:8d:0d:f4:85:02:8b:56:5e:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7367c490447f5045c02367db8d21b4e08749fa76
Validity
Not Before: Jul 6 07:06:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e6b5c962407b8f77e1c79545e5c954d56392a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d9:24:6d:9d:48:07:f2:6a:70:2c:72:16:ec:
ba:0e:40:3f:b1:c5:8c:d6:d9:3e:30:7b:9e:ac:cf:
aa:87:05:3c:c9:12:bc:57:64:e9:8f:e2:44:b0:31:
f5:32:26:f0:85:fd:43:54:cb:f9:3e:87:cf:e7:8c:
39:5a:0b:77:8d:a1:f7:f3:05:5d:92:c6:94:fe:4f:
04:6e:99:ca:7e:bf:46:e1:5a:44:e8:b2:98:ce:8e:
e9:d8:72:4a:31:4f:b9:b5:7e:67:e7:9f:78:bb:69:
a1:90:d8:42:08:42:79:30:81:44:01:cb:ad:e7:06:
33:36:7d:dc:b1:e3:93:76:ab:6b:e9:ff:31:c9:64:
77:7d:ac:c5:e0:98:de:a6:85:71:2a:13:c2:80:28:
d3:93:f5:d6:36:d9:39:b3:5e:05:68:e4:6c:e2:e7:
e8:25:d4:3b:67:06:22:d3:a4:32:9f:0d:6b:17:2f:
4b:1f:b1:7d:3f:d3:96:9d:53:8c:2a:20:7a:1d:fc:
81:d0:82:4f:3a:d2:ec:ce:ad:ca:8c:26:e9:5f:0a:
0c:ba:7c:d6:6e:83:19:d3:bb:16:a1:db:2b:d9:ea:
fe:a3:a4:d5:87:58:18:e0:61:ac:b7:eb:df:84:9e:
26:9e:e1:8f:bb:43:eb:65:b8:3e:33:5f:78:8b:0a:
6b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6B:5C:96:24:07:B8:F7:7E:1C:79:54:5E:5C:95:4D:56:39:2A:10
X509v3 Authority Key Identifier:
keyid:73:67:C4:90:44:7F:50:45:C0:23:67:DB:8D:21:B4:E0:87:49:FA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2fEkER_UEXAI2fbjSG04IdJ-nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/HmtcliQHuPd-HHlUXlyVTVY5KhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/c2fEkER_UEXAI2fbjSG04IdJ-nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.108.176.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:96:c9:03:95:18:74:68:a3:20:e5:d8:1e:d1:ab:85:6c:78:
01:31:f0:66:24:31:90:82:66:74:33:77:f8:f6:19:ae:4c:53:
d0:69:5c:c4:65:95:ac:b8:8f:5a:f7:60:a6:57:e9:b3:f1:d7:
06:de:2b:6f:67:0d:1e:70:7e:9f:35:29:c5:7e:2e:ea:3c:d5:
59:8a:5e:ae:95:2b:40:1a:36:d5:e5:c1:8c:3a:25:40:d4:fd:
89:93:ab:ea:ce:6d:98:ee:bd:44:ee:05:03:f0:0b:72:0e:ba:
98:cb:b0:3d:1d:a3:b2:54:1b:9f:68:65:ff:1e:34:47:5c:61:
fc:f7:b4:6b:37:d8:8d:c6:cd:7b:d6:76:39:26:48:1c:e1:59:
9d:11:33:01:ed:15:0c:84:ca:bb:93:1e:27:b7:a1:bf:d2:e8:
63:e3:c7:72:d3:e2:bc:62:19:a3:4b:4c:a1:6a:58:a5:b9:ae:
14:a3:fe:4e:d9:43:d2:1a:af:04:99:4c:53:87:62:ea:2f:23:
a0:b4:7f:5d:a0:6d:0d:49:51:b4:12:47:7d:8a:86:43:65:93:
69:3e:78:47:db:8d:aa:72:2f:32:3d:23:f6:34:ed:0e:a1:51:
d3:12:08:a9:d0:be:b0:d6:b7:3c:fa:ac:3f:c6:01:d6:ce:7d:
e7:de:a1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:25 2024 by rpki-client on console-fra.rpki-client.org