Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/hFG5owNU2fpEozPIAMX5mdA76eI.roa
File: hFG5owNU2fpEozPIAMX5mdA76eI.roa (raw, json)
Hash identifier: sf7gjMO9KZ/kTKqreCiarmJtJu72zS6f0tj+3I+/PX8=
Subject key identifier: 84:51:B9:A3:03:54:D9:FA:44:A3:33:C8:00:C5:F9:99:D0:3B:E9:E2
Certificate issuer: /CN=af0dc12b0f1b533d8d04ec6117d6b9e512fcaa9f
Certificate serial: 018B811235A5F307D937D0224EFCBF413E87
Authority key identifier: AF:0D:C1:2B:0F:1B:53:3D:8D:04:EC:61:17:D6:B9:E5:12:FC:AA:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rw3BKw8bUz2NBOxhF9a55RL8qp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/hFG5owNU2fpEozPIAMX5mdA76eI.roa
Signing time: Mon 30 Oct 2023 14:52:16 +0000
ROA not before: Mon 30 Oct 2023 14:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34762
IP address blocks: 213.158.92.0/22 maxlen: 24
213.158.94.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 10:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:12:35:a5:f3:07:d9:37:d0:22:4e:fc:bf:41:3e:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af0dc12b0f1b533d8d04ec6117d6b9e512fcaa9f
Validity
Not Before: Oct 30 14:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8451b9a30354d9fa44a333c800c5f999d03be9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:1a:6b:d1:9a:3a:a2:e6:1b:b2:83:08:ed:
5e:6f:4a:1c:13:c0:87:cf:b9:e0:b9:0f:50:6f:64:
b6:fd:3c:34:3d:c2:6f:53:98:ae:96:78:7d:de:56:
18:27:01:fb:f9:fa:36:c9:93:06:50:b0:ac:9e:da:
9d:b0:3c:4f:2b:fd:81:a5:03:43:cb:10:18:40:ac:
0a:35:41:39:12:c9:60:6a:70:1f:cc:ed:0d:df:a0:
1c:e3:0b:0b:1a:50:00:7f:8b:3a:ce:79:a2:92:f3:
87:85:bd:24:56:a7:77:81:6b:74:d1:96:ae:4c:af:
33:8a:9b:99:f7:24:38:ef:13:20:c0:d8:bc:38:71:
87:9a:fd:48:db:93:ba:4b:35:a1:f1:12:8e:69:00:
43:99:90:2a:3c:88:76:57:a4:d5:ca:08:ef:a5:72:
db:6d:b1:81:a2:8f:f8:ca:d1:a0:a1:d5:5a:a7:7f:
86:32:5b:3a:d9:87:19:7e:9c:b4:73:3d:ff:84:d1:
1e:aa:99:9b:f8:7d:aa:0e:01:dc:45:51:12:0b:e3:
9f:43:d8:fb:b0:88:91:35:ed:d9:63:74:0b:ad:bf:
cc:1c:f5:6d:ff:c9:67:88:cd:2f:71:c0:5a:51:3c:
91:2f:81:10:03:3d:0d:51:1c:86:01:e9:06:a5:46:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:51:B9:A3:03:54:D9:FA:44:A3:33:C8:00:C5:F9:99:D0:3B:E9:E2
X509v3 Authority Key Identifier:
keyid:AF:0D:C1:2B:0F:1B:53:3D:8D:04:EC:61:17:D6:B9:E5:12:FC:AA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rw3BKw8bUz2NBOxhF9a55RL8qp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/hFG5owNU2fpEozPIAMX5mdA76eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/rw3BKw8bUz2NBOxhF9a55RL8qp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.158.92.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:e9:d6:cf:ff:20:c5:7d:c3:86:83:f7:79:3c:7d:ac:39:62:
e1:9f:3d:a2:72:0c:8c:37:30:82:11:b1:84:99:e4:5f:bd:bd:
14:b6:67:0d:d2:c9:62:bc:8e:16:ac:7e:04:62:09:16:30:42:
bd:43:0f:6e:68:6d:89:77:d8:22:ea:09:bb:0b:c3:1e:b9:b7:
06:c1:ce:79:06:69:d7:18:cb:c1:a4:e6:83:11:a1:1b:2a:34:
e5:c2:61:64:fa:91:ae:7d:0b:49:72:65:86:68:2a:5d:42:39:
41:98:cf:d6:21:10:e7:a3:01:70:75:98:6f:6d:d5:ed:d8:8f:
83:f5:f4:5a:e5:ab:0e:f0:74:f6:ef:4a:b2:e1:ab:31:29:ae:
05:f4:61:5b:94:a5:e9:d7:f4:88:73:bb:32:1d:30:78:7a:a8:
01:fb:92:08:f3:9c:72:87:24:31:60:48:ad:cf:ce:1d:8d:73:
40:5d:50:70:12:ae:6a:ce:f6:b9:ac:d5:08:92:49:cf:8d:05:
a2:62:40:9c:2d:e8:62:74:97:2f:56:27:5c:5e:b9:eb:09:4a:
29:0d:aa:25:9e:d5:5f:81:9a:c8:3a:66:74:3d:1a:2b:e2:f8:
a5:13:45:e5:78:77:11:37:b2:9c:ba:9a:22:06:56:23:53:4b:
ef:7a:fb:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:33 2024 by rpki-client on console-ams.rpki-client.org