Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/hq1MCIVNv7C_HNQYwCj-TryBf5w.roa
File: hq1MCIVNv7C_HNQYwCj-TryBf5w.roa (raw, json)
Hash identifier: dXNY7YMn+n/83z17S0q/DpwS5gRpYIkA+EfW91UqcOQ=
Subject key identifier: 86:AD:4C:08:85:4D:BF:B0:BF:1C:D4:18:C0:28:FE:4E:BC:81:7F:9C
Certificate issuer: /CN=79101035d53377c5a72bedca522fc1456e0b8419
Certificate serial: 018570307CD90A3398D727992C1D0A746A2A
Authority key identifier: 79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/hq1MCIVNv7C_HNQYwCj-TryBf5w.roa
Signing time: Mon 02 Jan 2023 01:55:03 +0000
ROA not before: Mon 02 Jan 2023 01:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212172
IP address blocks: 217.23.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:7c:d9:0a:33:98:d7:27:99:2c:1d:0a:74:6a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79101035d53377c5a72bedca522fc1456e0b8419
Validity
Not Before: Jan 2 01:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86ad4c08854dbfb0bf1cd418c028fe4ebc817f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f1:8c:08:da:34:e3:a6:05:d2:75:69:40:9b:
75:39:0e:44:8b:39:1a:2c:8b:0a:82:6a:be:db:12:
2b:d4:b0:be:23:22:20:d8:e2:71:25:5c:97:32:cd:
8a:4c:ba:31:e9:15:04:b4:5c:c2:b4:1c:a6:03:4e:
30:45:f2:98:b1:95:a7:74:bd:83:2a:0c:31:5f:ce:
67:91:9b:77:4f:2d:ca:41:f8:17:e6:c1:6d:83:75:
14:14:3d:85:26:6d:3c:9d:6f:e6:cd:50:53:10:29:
2e:15:95:23:b1:24:f2:72:0d:49:e6:a5:8d:95:ae:
e6:c1:14:08:68:3c:ad:71:da:9c:dc:46:23:3b:7f:
88:96:08:9a:e0:3c:9c:c6:fb:f5:d8:57:36:0e:65:
98:4a:6f:a6:9a:c0:c3:71:ca:cb:51:7d:37:2c:49:
b7:1d:ea:ab:6f:71:49:f8:9a:dd:71:fb:69:48:f7:
66:04:6d:ab:3d:f6:56:5a:f2:93:6c:2e:8e:0d:59:
78:ed:3f:81:f8:e9:06:64:5c:9a:74:6d:a6:d7:d6:
80:f9:3e:56:60:65:63:d5:03:c2:48:11:3e:c7:0a:
27:86:d9:9d:ba:33:2a:ab:51:b8:5d:41:89:28:ae:
2e:d7:56:c6:09:27:2e:12:25:52:64:a3:d9:1a:10:
ad:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AD:4C:08:85:4D:BF:B0:BF:1C:D4:18:C0:28:FE:4E:BC:81:7F:9C
X509v3 Authority Key Identifier:
keyid:79:10:10:35:D5:33:77:C5:A7:2B:ED:CA:52:2F:C1:45:6E:0B:84:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eRAQNdUzd8WnK-3KUi_BRW4LhBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/hq1MCIVNv7C_HNQYwCj-TryBf5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/958c2c-b4c3-432d-9ab1-0cc83b00fc58/1/eRAQNdUzd8WnK-3KUi_BRW4LhBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.23.118.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:72:64:90:8a:79:47:78:ba:69:02:c4:26:09:fa:34:7d:4c:
47:12:a3:fb:ec:0d:63:61:6b:3f:95:68:a0:33:8d:46:8d:d9:
46:10:61:d0:7a:61:e5:75:c2:77:6f:00:ea:9c:14:36:dd:ab:
1e:ac:de:b3:b0:c6:ee:c8:ce:d8:11:10:d7:44:df:b0:fe:4d:
47:2d:62:ff:32:41:ea:b4:6c:ae:52:d5:8d:f8:8b:c8:95:67:
ef:b6:5f:49:8e:5b:1f:01:21:73:0f:2e:c1:93:42:47:4c:12:
c9:82:78:44:c6:95:75:9f:bf:7a:ee:49:cc:c6:6b:76:9c:07:
87:e7:8e:1a:a7:c4:4d:1f:93:95:75:34:21:c0:b4:b9:2c:8c:
ba:af:aa:f9:02:29:a5:29:3e:39:e1:ee:0c:7f:aa:f8:7b:82:
47:30:81:d1:fc:fb:38:09:76:a6:84:de:80:52:a0:6f:4f:c1:
38:b2:89:ab:9b:44:53:26:20:da:93:c6:76:cd:2d:18:5e:52:
9d:93:87:42:18:da:3d:db:f7:04:d5:06:3d:d2:c3:55:17:7d:
29:da:4d:81:29:c3:a9:0e:9f:3b:25:ea:6f:21:77:52:11:5e:
6d:18:e7:3d:28:ae:dd:07:a8:57:21:4f:e8:0b:dc:a4:4b:26:
e0:0a:26:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:30 2024 by rpki-client on console-fra.rpki-client.org