Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/HsRXVpxO_HS2o7aEyZv6otCFInU.roa
File: HsRXVpxO_HS2o7aEyZv6otCFInU.roa (raw, json)
Hash identifier: Vbq4JIG2cyTlhPfTiuBzjBMBYUc8TZa7DHYtzNUYS7A=
Subject key identifier: 1E:C4:57:56:9C:4E:FC:74:B6:A3:B6:84:C9:9B:FA:A2:D0:85:22:75
Certificate issuer: /CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Certificate serial: 01892FE036EAA88ABC153BF9EFDC537090FC
Authority key identifier: 87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/HsRXVpxO_HS2o7aEyZv6otCFInU.roa
Signing time: Fri 07 Jul 2023 10:22:50 +0000
ROA not before: Fri 07 Jul 2023 10:22:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 85.237.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jul 2023 19:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:e0:36:ea:a8:8a:bc:15:3b:f9:ef:dc:53:70:90:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874bf8070cee4305d1a389e910fb5102bbcc1941
Validity
Not Before: Jul 7 10:22:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ec457569c4efc74b6a3b684c99bfaa2d0852275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a3:e3:88:6c:12:7e:ed:12:b5:05:29:de:27:
2a:31:7c:df:78:89:14:b5:41:c6:c7:19:8e:30:5b:
3d:7e:69:45:ad:e3:d9:b4:40:58:51:55:6a:85:51:
d9:1c:09:c6:01:cb:8a:ee:1e:ad:d7:66:a0:b3:a2:
54:ef:63:11:32:77:45:cc:00:dd:b8:40:2c:5c:f3:
4a:74:b5:90:fb:a3:be:e0:23:4c:f9:4b:4d:7d:2c:
eb:a8:12:84:62:4e:13:a4:8f:d3:36:b1:99:33:9b:
08:9c:2b:9f:ff:b3:fb:be:43:45:d5:84:36:5e:6c:
4c:b2:19:75:41:cd:a4:63:d8:cd:ed:b7:58:bb:2c:
7f:cc:20:53:ff:f4:c0:bb:28:83:51:e3:69:0e:39:
46:69:22:a0:e0:12:76:34:62:88:14:59:6f:3d:c1:
32:d5:a4:57:4c:ae:a0:99:0b:13:bc:18:c4:7f:e4:
00:40:68:0f:ed:90:22:e6:61:11:76:ba:3c:d0:69:
87:a9:7b:e0:41:97:84:0d:7f:14:17:cc:81:f5:59:
02:09:ab:56:01:17:5c:cf:6a:31:51:d7:a0:55:70:
ed:f3:6d:8d:2e:0b:eb:18:b9:30:23:c5:42:c9:97:
25:21:34:6a:fa:54:e2:c3:e9:03:51:68:ce:8f:9d:
5d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C4:57:56:9C:4E:FC:74:B6:A3:B6:84:C9:9B:FA:A2:D0:85:22:75
X509v3 Authority Key Identifier:
keyid:87:4B:F8:07:0C:EE:43:05:D1:A3:89:E9:10:FB:51:02:BB:CC:19:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0v4BwzuQwXRo4npEPtRArvMGUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/HsRXVpxO_HS2o7aEyZv6otCFInU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/eee131-bb8c-4887-869b-6fe4d8fed160/1/h0v4BwzuQwXRo4npEPtRArvMGUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.89.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b0:6c:dc:b2:b4:c3:03:ca:35:87:4e:c1:ee:68:50:95:bf:
94:b0:8c:b6:97:a8:ab:fb:53:24:45:aa:e6:42:ce:c8:94:ee:
21:0f:63:a9:87:4f:b6:20:88:63:54:3c:d7:6e:e3:d0:5d:99:
3e:97:e2:d4:46:87:51:b8:72:64:4d:a6:54:17:87:63:86:80:
63:ce:89:5c:49:db:77:e0:d4:30:75:4f:bf:a6:61:af:f5:a8:
b8:eb:87:21:e8:32:26:2a:3f:0a:aa:c9:b0:61:cc:5e:5f:e2:
48:58:69:82:55:97:a7:c9:53:61:66:ba:30:02:da:1d:51:27:
ac:3d:e6:90:3f:d9:14:fd:28:24:27:ee:9f:51:28:6f:e8:38:
12:38:ff:9a:10:db:b8:6c:f2:70:04:2d:51:8c:d9:dd:11:5f:
b2:26:fa:9e:4f:6f:6c:f1:5d:29:e2:b0:d8:ff:54:7e:93:fb:
72:52:c3:ef:db:f1:f1:a4:91:ff:7f:89:49:52:14:ae:fa:ff:
ee:16:ea:5f:b4:32:ac:8e:85:83:51:3d:21:3f:6d:d3:49:5b:
86:c6:e1:c9:d8:d9:88:a3:b1:2e:d8:6a:ea:f5:85:38:09:24:
4b:12:49:2d:15:66:44:ba:48:d4:39:d9:cc:eb:79:0c:fc:bd:
11:86:c5:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-fra.rpki-client.org