Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/376ccd-defa-4028-af1c-b99ce30d839f/1/HC6242w99qfUXw4XKwMAa68s3Nk.roa
File: HC6242w99qfUXw4XKwMAa68s3Nk.roa (raw, json)
Hash identifier: s7xlo2NWRn/xO0Tcv8gMyPENATAsn2RODBnm01sb9FA=
Subject key identifier: 1C:2E:B6:E3:6C:3D:F6:A7:D4:5F:0E:17:2B:03:00:6B:AF:2C:DC:D9
Certificate issuer: /CN=ca707e086640056bc271d5d2b3e24d01440baa04
Certificate serial: 018EE5EAE6DDD89C9348A13ADE17B01DB703
Authority key identifier: CA:70:7E:08:66:40:05:6B:C2:71:D5:D2:B3:E2:4D:01:44:0B:AA:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ynB-CGZABWvCcdXSs-JNAUQLqgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/376ccd-defa-4028-af1c-b99ce30d839f/1/HC6242w99qfUXw4XKwMAa68s3Nk.roa
Signing time: Tue 16 Apr 2024 07:59:20 +0000
ROA not before: Tue 16 Apr 2024 07:59:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.244.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Apr 2024 17:03:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e5:ea:e6:dd:d8:9c:93:48:a1:3a:de:17:b0:1d:b7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca707e086640056bc271d5d2b3e24d01440baa04
Validity
Not Before: Apr 16 07:59:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c2eb6e36c3df6a7d45f0e172b03006baf2cdcd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a5:40:3a:c7:ef:78:2b:ac:2e:8d:52:12:7d:
3d:be:9c:94:02:68:98:1e:47:1e:df:e3:be:c0:2b:
79:a2:74:b6:61:6a:73:4d:19:9c:ce:24:21:fb:54:
4d:82:ca:2d:df:b5:20:81:cd:b7:e6:83:60:4c:2e:
32:ae:ba:98:18:ad:76:7c:f3:e7:99:7f:91:c9:76:
55:90:9a:0f:39:33:c6:b5:5d:4c:cb:11:88:f5:76:
1b:60:c9:aa:5c:7d:06:8b:63:bc:d5:8d:b0:85:a0:
7e:af:f1:ea:c0:b9:e2:8c:76:a7:b4:d5:4f:57:74:
8c:96:72:97:b0:c8:6a:57:0c:71:ae:c9:3c:3f:c0:
e8:d0:5b:26:8e:ba:5c:18:0b:b5:51:30:98:4c:53:
52:63:c9:22:0d:df:ec:fe:bb:5e:e3:04:2d:56:41:
09:c5:ff:fa:1c:b5:6c:06:3a:5f:aa:ff:cf:29:c6:
5a:aa:f5:f6:43:c5:bf:39:36:7f:05:5c:d2:45:c5:
15:23:a3:48:b1:b0:7f:34:48:8e:fa:ea:8a:11:5f:
5f:36:e2:3a:f9:d5:ef:8d:40:c1:67:56:1c:27:a7:
61:b2:55:cc:9e:bf:49:2f:c6:93:31:b2:34:1b:b0:
6c:61:fe:43:18:7f:99:6d:82:b8:64:b6:2c:b8:cf:
95:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2E:B6:E3:6C:3D:F6:A7:D4:5F:0E:17:2B:03:00:6B:AF:2C:DC:D9
X509v3 Authority Key Identifier:
keyid:CA:70:7E:08:66:40:05:6B:C2:71:D5:D2:B3:E2:4D:01:44:0B:AA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ynB-CGZABWvCcdXSs-JNAUQLqgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/376ccd-defa-4028-af1c-b99ce30d839f/1/HC6242w99qfUXw4XKwMAa68s3Nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/376ccd-defa-4028-af1c-b99ce30d839f/1/ynB-CGZABWvCcdXSs-JNAUQLqgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.14.0/24
Signature Algorithm: sha256WithRSAEncryption
82:f5:bc:b8:86:18:0b:5e:b6:5e:d1:71:75:b7:5e:09:d2:7a:
64:f9:48:d9:08:2e:3b:a9:24:6c:11:dc:50:17:c3:40:e2:89:
59:05:27:97:63:38:3a:94:09:86:7c:a2:3a:e9:3d:59:2b:03:
84:99:58:b3:12:85:18:94:b5:92:5f:f7:9f:a6:6a:96:c5:99:
4e:60:ed:37:16:e4:f2:f3:73:67:5b:93:eb:8e:65:7a:f8:9f:
32:b3:e5:d7:6d:af:76:05:a6:0c:8b:18:6e:64:20:7b:86:a6:
b4:b6:c0:74:57:78:f2:f9:59:b3:ca:b0:9c:c0:f3:51:21:12:
64:89:2a:45:f0:12:4d:10:12:4e:fb:f1:6e:ab:c0:b3:b7:97:
c6:fe:d8:8a:1d:ae:e9:c6:d3:fe:d5:1b:92:b0:8d:a6:35:e7:
ae:46:c5:0d:49:6b:1c:7b:ac:f4:63:b9:4a:43:66:fc:3d:3a:
d6:06:dd:5a:d5:ac:c0:b8:98:72:c6:8b:98:3c:63:e6:3a:dc:
08:98:03:3c:82:ba:e0:93:fe:2e:8c:3f:c9:00:b0:4c:1d:32:
64:9f:0b:6d:5a:23:70:41:43:9b:0f:70:3b:e7:d8:28:85:0b:
f7:39:c6:23:3b:25:24:0a:fa:ee:ba:ef:30:76:79:1e:a2:32:
7d:a0:ff:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:03 2024 by rpki-client on console-fra.rpki-client.org