Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/hwDZyouJK1dyi4Asgm9Ad0RMTg4.roa
File: hwDZyouJK1dyi4Asgm9Ad0RMTg4.roa (raw, json)
Hash identifier: c29ssh5I2rAbBUPY4/GoUiOm02KDvKRKzTTLMIvcz70=
Subject key identifier: 87:00:D9:CA:8B:89:2B:57:72:8B:80:2C:82:6F:40:77:44:4C:4E:0E
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018570F0B0E7225FCD3341D572D0E25DE795
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/hwDZyouJK1dyi4Asgm9Ad0RMTg4.roa
Signing time: Mon 02 Jan 2023 05:25:00 +0000
ROA not before: Mon 02 Jan 2023 05:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 171.22.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b0:e7:22:5f:cd:33:41:d5:72:d0:e2:5d:e7:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 2 05:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8700d9ca8b892b57728b802c826f4077444c4e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b9:2a:a7:da:b8:9c:ba:5e:26:12:e1:6a:bc:
1f:ef:46:5c:7a:52:b5:28:ff:e9:4d:53:92:e6:bd:
86:de:ae:07:84:de:af:c7:7b:32:7a:8b:b6:60:42:
d3:a6:f5:d8:fb:51:c0:bd:94:eb:95:09:85:48:46:
ae:98:e9:8e:6f:16:bc:2b:a3:55:5e:b7:43:4d:b8:
2b:4a:0b:e5:a2:8a:de:3a:43:be:a1:2c:3d:67:98:
1c:09:cd:48:cc:e6:6e:77:b1:b5:a1:4d:85:60:bc:
08:64:45:50:0b:fa:26:3a:6c:3c:f1:5d:b8:f6:ce:
6f:01:4e:fa:ca:5a:f7:6c:50:e6:14:45:34:90:e1:
c9:f3:d9:d4:b7:f9:f7:5e:23:6f:ec:bf:53:5b:49:
6d:6f:6c:1b:50:62:56:ac:e9:84:dd:27:ff:df:75:
f5:35:9e:1a:3d:ce:c1:fb:fc:6b:76:06:22:cb:40:
c5:f6:da:bf:be:6b:8e:49:36:29:eb:64:28:67:24:
1e:96:d5:b4:f4:30:59:2c:7b:34:2f:27:27:a7:4b:
0f:81:c0:a5:9e:c0:44:d4:20:af:1e:ca:9a:61:f2:
0b:e3:7c:35:12:fb:3a:66:1f:5a:c0:61:29:e8:ae:
ec:0d:13:30:88:c9:ce:f1:db:8c:cf:fe:e5:cd:ea:
91:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:00:D9:CA:8B:89:2B:57:72:8B:80:2C:82:6F:40:77:44:4C:4E:0E
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/hwDZyouJK1dyi4Asgm9Ad0RMTg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.220.0/22
Signature Algorithm: sha256WithRSAEncryption
18:de:d2:2c:c9:26:6c:28:6b:fa:a3:08:09:16:f4:c6:13:8e:
73:b0:9b:e7:a1:ca:f2:c7:a6:66:cf:4c:72:43:0f:68:e8:c3:
3b:3a:64:28:72:0e:8e:28:b9:ac:ff:3c:e4:f3:18:7e:68:cb:
e5:90:03:85:72:18:50:af:03:bd:0b:6e:34:5e:b3:a5:10:92:
36:0b:f4:a0:56:57:b0:fb:00:80:2d:74:1f:fa:c8:4c:55:c1:
b0:d6:f9:a4:06:9c:97:ab:11:17:76:2c:eb:c0:14:51:97:29:
89:29:67:74:40:39:a3:07:7d:b6:0e:98:40:81:92:d3:f6:89:
bd:07:ff:7a:96:90:46:1c:94:2e:3b:23:71:2c:22:6d:06:3e:
49:ed:64:14:eb:9f:01:e5:e0:a7:e0:5a:92:9f:86:2d:9d:dc:
0d:3e:65:08:ca:46:10:6f:aa:bf:b4:23:9d:f5:06:2e:4a:88:
94:51:ea:2a:02:bb:cf:23:38:9f:e5:46:e9:7c:68:5e:b4:38:
50:0d:cd:3b:0d:18:fd:d3:19:a5:02:2b:f3:30:18:26:9c:6b:
27:17:a3:75:5a:13:f5:01:cf:e6:aa:54:05:94:e9:ed:08:d9:
97:f8:4c:ec:1f:d4:99:41:f4:82:27:5e:97:99:ed:c3:fd:6e:
44:b0:99:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org