Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/hl-9TM1yf-64qHg8wAlEHMX5flI.roa
File: hl-9TM1yf-64qHg8wAlEHMX5flI.roa (raw, json)
Hash identifier: sNASBs0MBbu3aL83Ooqp55TGEutsA05h27SGHEPEkEg=
Subject key identifier: 86:5F:BD:4C:CD:72:7F:EE:B8:A8:78:3C:C0:09:44:1C:C5:F9:7E:52
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 01867C05725289EB7E47CAFBB79236458D0D
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/hl-9TM1yf-64qHg8wAlEHMX5flI.roa
Signing time: Thu 23 Feb 2023 02:06:17 +0000
ROA not before: Thu 23 Feb 2023 02:06:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 185.27.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 11:44:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7c:05:72:52:89:eb:7e:47:ca:fb:b7:92:36:45:8d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Feb 23 02:06:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=865fbd4ccd727feeb8a8783cc009441cc5f97e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2f:70:1e:25:44:18:6f:a0:d8:08:ac:ab:08:
5d:de:48:54:1a:38:bf:a8:e6:07:df:5d:73:29:8b:
63:1d:db:9e:d3:c3:b3:82:a1:84:eb:ad:0c:82:af:
45:2e:58:ab:40:bc:88:48:cf:c3:88:5a:0c:d7:0d:
e7:3e:67:32:6a:ee:22:7f:f9:d0:64:c1:c9:f9:27:
05:8d:cf:6a:ce:35:a1:af:e7:1b:fc:37:2a:e1:1d:
07:bc:59:a3:1a:0f:3d:bc:e7:23:8e:76:04:61:4e:
65:8a:23:55:1d:36:c7:1f:d9:50:50:f2:06:e0:42:
47:ac:8f:80:c7:89:06:82:99:ec:e1:56:89:82:b2:
e4:8b:e9:54:30:90:0f:d2:b7:ba:a2:f5:83:cf:28:
06:68:d0:d5:93:4b:02:90:37:ee:11:da:e4:79:67:
c4:24:2c:5b:24:20:28:d7:1e:3c:0f:d8:53:9c:e0:
e6:e6:bd:70:d2:1c:40:d5:01:6e:8e:48:1f:92:f6:
24:86:d5:66:e1:31:ec:97:c7:cf:17:ed:60:7a:1a:
c0:cc:a6:6c:01:0c:a9:25:b3:34:33:2e:06:90:7c:
04:ec:c3:ad:a1:10:0c:09:25:38:c6:15:c1:fa:d8:
23:0c:db:7a:8b:cb:67:dc:62:4f:1b:fc:d7:78:3b:
7e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:5F:BD:4C:CD:72:7F:EE:B8:A8:78:3C:C0:09:44:1C:C5:F9:7E:52
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/hl-9TM1yf-64qHg8wAlEHMX5flI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.228.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:01:40:1a:93:17:6c:31:69:af:a5:f5:91:0b:15:7c:fd:d0:
16:bb:20:02:4c:d5:fc:cc:24:bc:31:1b:0d:05:6b:f4:11:95:
10:d1:1b:a0:30:62:4e:79:7f:ec:7e:78:ea:c6:89:75:b0:0a:
2e:54:18:3b:93:a5:2d:34:d1:b0:40:53:74:0a:3e:05:d7:f0:
a3:47:93:bf:a4:08:8e:d5:9b:49:6a:59:ea:cf:45:19:6e:da:
07:4b:6f:ee:e7:e3:96:38:70:05:1b:77:dd:b0:b3:39:37:0e:
fa:ff:a5:39:45:19:5c:cd:bb:f0:7f:80:2a:4a:fe:0c:a2:00:
7d:74:ce:59:7d:b7:49:12:42:10:ff:1a:f5:77:37:04:a2:c8:
41:b5:08:ee:f1:74:63:4f:74:46:6f:5f:3e:aa:5b:1b:6c:ba:
f1:06:43:52:63:52:1c:98:a5:7a:ca:96:fb:ea:50:aa:70:52:
75:7f:59:a3:b0:5f:a2:5b:e9:d2:4b:b5:28:27:54:83:c2:32:
53:fb:23:95:03:e5:14:09:5b:d7:ac:1d:8c:2d:60:d3:52:4b:
a5:82:c2:39:66:f3:53:d6:2d:26:79:b5:1c:53:32:45:df:db:
e5:75:43:37:ba:56:22:19:3c:cb:b8:fc:3d:a5:47:92:96:67:
53:55:98:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org