Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/hhACuiZu7Guer0Xq_LRFhWHw8Cs.roa
File: hhACuiZu7Guer0Xq_LRFhWHw8Cs.roa (raw, json)
Hash identifier: 60IEcEqPuJWpPfwVNqUJBLmgENSpXBR24nLUFhFhQuI=
Subject key identifier: 86:10:02:BA:26:6E:EC:6B:9E:AF:45:EA:FC:B4:45:85:61:F0:F0:2B
Certificate issuer: /CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Certificate serial: 018A78C82B7418544E5FA051F7E3D1961DA0
Authority key identifier: D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/hhACuiZu7Guer0Xq_LRFhWHw8Cs.roa
Signing time: Sat 09 Sep 2023 07:11:38 +0000
ROA not before: Sat 09 Sep 2023 07:11:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51559
IP address blocks: 185.160.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:78:c8:2b:74:18:54:4e:5f:a0:51:f7:e3:d1:96:1d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1e013ec8a5c56df241a9b2563d111f8e543bf91
Validity
Not Before: Sep 9 07:11:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=861002ba266eec6b9eaf45eafcb4458561f0f02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d4:eb:6e:d9:16:b1:3a:e3:c9:67:10:5e:bc:
52:4e:64:e8:f1:92:c4:c3:d3:e5:fd:7e:c5:9e:88:
6b:da:d1:25:e7:e8:bd:60:6b:a3:24:7d:82:e3:bd:
49:af:54:b4:7a:dc:1a:ab:4a:f9:18:da:0c:e8:2d:
45:f3:fe:65:68:c3:79:49:3d:ac:54:e1:3f:7b:6e:
a7:45:f2:93:0b:f3:c7:b9:96:90:6d:54:91:08:d1:
29:be:82:dd:80:50:9e:f6:3e:02:6f:00:7f:81:99:
46:82:fc:00:ba:35:97:4e:7d:dd:a9:cf:9f:b0:66:
86:6b:36:95:44:13:70:49:f0:f7:d3:39:3f:7e:a9:
a2:33:1a:d3:ce:c2:33:5d:45:08:58:a1:36:1e:2c:
b8:a1:b8:44:ea:ba:68:5a:49:17:97:1f:22:ac:01:
a4:43:1e:20:9a:cc:63:93:08:d9:92:d6:8d:51:7d:
a3:4b:df:73:ac:05:9f:94:5b:bb:aa:a5:c3:86:ef:
e7:ca:8c:86:7b:eb:23:a2:0b:ef:35:78:96:2d:50:
be:7e:d5:7c:86:35:f1:29:a7:cd:21:f5:ca:44:bd:
63:a3:aa:ce:e6:97:a9:d0:0f:7c:7c:40:23:97:4e:
6a:74:3d:a2:f8:d5:1d:ea:0c:59:56:5d:ea:b0:87:
82:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:10:02:BA:26:6E:EC:6B:9E:AF:45:EA:FC:B4:45:85:61:F0:F0:2B
X509v3 Authority Key Identifier:
keyid:D1:E0:13:EC:8A:5C:56:DF:24:1A:9B:25:63:D1:11:F8:E5:43:BF:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0eAT7IpcVt8kGpslY9ER-OVDv5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/hhACuiZu7Guer0Xq_LRFhWHw8Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e41ef4-dc1e-4469-bd2d-440528c1e49e/1/0eAT7IpcVt8kGpslY9ER-OVDv5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.28.0/24
Signature Algorithm: sha256WithRSAEncryption
28:21:75:dd:24:dd:d6:43:b5:1f:a1:84:71:e7:a0:02:f2:d4:
49:fc:ef:12:23:19:27:b0:8c:4b:f2:e2:a5:b0:96:12:36:bc:
b7:72:f4:46:29:f7:3b:9f:36:d1:b5:e4:44:1b:2d:e7:a8:b8:
2f:8b:c4:a7:d7:a5:8a:44:f9:7a:79:64:11:f5:54:29:65:aa:
d0:70:bd:f2:b9:ca:b1:b8:1d:f4:7a:1f:18:80:f3:25:f5:66:
22:dd:ae:00:97:c9:e3:73:f1:df:b1:b5:6c:a6:e9:90:eb:cb:
51:f2:fd:ad:ff:a3:10:e6:82:bc:c6:00:30:5e:af:4e:73:8e:
c3:f9:ea:b8:6e:a9:38:65:2b:33:eb:0b:a0:b4:c4:6d:b9:e8:
da:75:e1:ef:9f:ef:b5:b7:29:4b:3b:da:e8:9b:90:ac:97:b6:
27:21:43:a5:e2:e2:fd:00:ea:a8:0c:c8:03:11:bd:a2:9a:0d:
3d:47:e1:f1:81:57:e0:5e:52:b1:88:cd:c6:3f:08:f6:04:89:
53:d6:f7:0b:d6:1e:07:6d:b9:f6:c6:64:d2:d0:b1:b4:b0:d3:
b7:6b:97:87:1f:38:c0:c6:69:55:ce:19:c7:ad:cf:63:76:05:
f1:40:e3:2c:cc:51:19:ed:cf:a3:b5:50:c8:14:b5:a0:8c:ad:
49:41:22:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:37 2024 by rpki-client on console-fra.rpki-client.org