Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/hAiLvTB72kIIEVVb7DdW-bajvtc.roa
File: hAiLvTB72kIIEVVb7DdW-bajvtc.roa (raw, json)
Hash identifier: NeIsN9EfkHLBRJ7EGr279187JeZampzNIiAxtwY+MlA=
Subject key identifier: 84:08:8B:BD:30:7B:DA:42:08:11:55:5B:EC:37:56:F9:B6:A3:BE:D7
Certificate issuer: /CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Certificate serial: 01856C6F251349BF9DAA0DC2924624CDFBE7
Authority key identifier: 96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/hAiLvTB72kIIEVVb7DdW-bajvtc.roa
Signing time: Sun 01 Jan 2023 08:25:01 +0000
ROA not before: Sun 01 Jan 2023 08:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21217
IP address blocks: 194.88.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:25:13:49:bf:9d:aa:0d:c2:92:46:24:cd:fb:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b8acfa17af93bedbefc6feb4688f98604b8aae
Validity
Not Before: Jan 1 08:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84088bbd307bda420811555bec3756f9b6a3bed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:82:3e:83:87:a4:a6:05:fb:4d:87:3f:e7:96:
a6:cd:88:bf:7b:11:6a:ae:3e:9c:66:bd:24:f8:c4:
82:5f:39:45:30:36:03:ef:f1:09:2f:cb:45:c0:69:
b0:ac:94:5d:3e:a1:9d:3e:51:2b:cb:a1:ef:1f:4b:
09:ea:9f:c9:65:58:51:4b:fd:76:e5:53:7c:fb:ea:
29:38:67:17:b7:db:5d:a9:64:90:8b:0b:52:b5:88:
22:a2:d6:61:c4:09:48:02:1b:cf:c9:c0:bd:26:76:
fe:b4:b6:c5:df:75:ad:13:70:9a:99:5b:6f:80:a4:
5f:bf:c6:e4:da:b0:c2:dd:c2:1d:d3:9d:9b:2f:e6:
fe:92:32:37:63:53:8e:88:81:90:10:ef:c8:18:5c:
1d:0e:5a:c0:47:6e:d2:28:0b:77:16:f9:86:fd:32:
8a:a5:05:c9:06:a8:3b:1a:33:47:37:6d:97:23:54:
1b:75:be:ba:1a:20:77:a1:ab:ad:6a:b4:e3:dd:6c:
0c:69:78:be:00:29:fc:d7:36:47:6f:11:ed:d0:a6:
c1:3e:77:ad:9e:42:41:96:02:7b:c6:9e:78:28:75:
36:a5:bb:57:cc:2f:53:a3:ac:19:a4:c9:3d:13:2f:
74:16:a3:b1:44:fc:3c:9c:f3:b6:20:b6:0b:19:de:
85:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:08:8B:BD:30:7B:DA:42:08:11:55:5B:EC:37:56:F9:B6:A3:BE:D7
X509v3 Authority Key Identifier:
keyid:96:B8:AC:FA:17:AF:93:BE:DB:EF:C6:FE:B4:68:8F:98:60:4B:8A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lris-hevk77b78b-tGiPmGBLiq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/hAiLvTB72kIIEVVb7DdW-bajvtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c47b46-ccdc-4b5e-862e-bddff197c29d/1/lris-hevk77b78b-tGiPmGBLiq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.9.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:d1:0d:6a:f8:12:1b:af:a3:58:ed:c6:f2:8f:90:c9:0a:2a:
f8:10:65:43:55:e3:2e:a1:c4:67:b1:8d:c3:9e:18:35:39:61:
c8:72:9c:5a:17:09:fb:ba:66:bc:b4:4f:93:3a:63:ac:3a:e0:
5b:5a:11:13:81:01:37:33:c0:d3:c8:00:f3:7e:27:67:18:fd:
5d:fc:99:dc:77:21:18:c4:de:37:c5:f0:77:7d:e1:7e:91:ea:
71:10:39:a4:ad:8c:70:0c:cc:2d:6f:e5:15:dc:b0:44:36:dd:
54:44:f4:45:11:88:ed:35:c5:a6:e7:58:98:0a:a3:c0:d3:d3:
90:dd:79:c0:40:78:ec:b7:98:03:4a:9b:ef:8d:ad:28:82:30:
15:45:5f:db:4e:25:06:f7:d2:a7:48:ea:04:14:45:e0:c4:99:
a5:7b:75:f0:f7:58:42:6b:e5:86:c2:8b:a2:05:7d:8c:2d:6d:
11:d8:e8:40:dd:71:b3:15:ed:85:23:71:a9:eb:54:2b:85:3b:
a6:d7:8e:5b:85:6a:a9:0d:c2:45:f2:08:04:87:fb:84:7b:49:
04:86:b7:e7:86:61:4a:c7:7c:da:5b:af:8f:a0:eb:25:23:f1:
f4:63:f5:52:23:ca:f3:88:1e:3c:d9:18:8d:fb:73:86:5e:c4:
64:76:7a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:06 2024 by rpki-client on console-ams.rpki-client.org