Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hkb03h3Q8O7NO75FIAX2MU5VLUE.roa
File: hkb03h3Q8O7NO75FIAX2MU5VLUE.roa (raw, json)
Hash identifier: q3YQYsqJeaUHszV3WVcAffc8QgbtOCBQsvPeenq7yfc=
Subject key identifier: 86:46:F4:DE:1D:D0:F0:EE:CD:3B:BE:45:20:05:F6:31:4E:55:2D:41
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81D92BEE297AD20C915C9324481AEE
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hkb03h3Q8O7NO75FIAX2MU5VLUE.roa
Signing time: Sun 01 Jan 2023 13:25:04 +0000
ROA not before: Sun 01 Jan 2023 13:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 87.120.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:d9:2b:ee:29:7a:d2:0c:91:5c:93:24:48:1a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8646f4de1dd0f0eecd3bbe452005f6314e552d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:66:76:68:1a:5f:90:3c:d2:c5:b4:b4:38:d7:
53:ea:2f:03:71:c8:96:06:6a:19:2b:d9:1f:07:9f:
67:2f:f3:bb:56:30:d4:08:a4:87:1c:e2:f7:59:ca:
ee:91:1a:86:5a:11:d0:33:de:c7:13:4e:31:9e:f5:
96:a4:f5:31:3a:ea:3b:25:d9:d4:5b:b3:dd:e0:23:
33:36:83:2c:11:8f:7c:a8:08:54:27:80:62:40:72:
c2:e3:fe:dc:82:80:d4:8e:94:b3:71:ad:94:96:42:
31:fc:5e:54:42:ad:2d:ad:18:e7:b2:dc:7c:2b:d1:
b3:e6:1f:9b:12:29:59:18:a5:6b:b7:24:d0:65:02:
87:ef:6e:f9:ce:05:56:9b:13:b9:07:f1:18:6a:ff:
12:aa:46:7f:84:c0:55:7e:8a:a2:8b:c1:e2:b5:66:
c2:34:19:dd:b0:ca:67:b7:ff:0b:6d:86:a7:8d:f2:
00:8f:0d:8a:e6:1c:e1:c1:c5:66:4d:5c:e0:18:67:
c0:68:9d:af:74:4e:f1:f4:73:4b:a2:a3:f7:3f:33:
c0:95:40:71:18:75:3e:da:c8:4d:39:c7:c9:ed:b8:
2c:c4:ca:10:eb:aa:ef:91:aa:ac:7c:55:d0:50:d3:
4b:b2:c6:5c:0e:6d:5c:41:52:1a:26:12:d6:e7:e1:
52:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:46:F4:DE:1D:D0:F0:EE:CD:3B:BE:45:20:05:F6:31:4E:55:2D:41
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hkb03h3Q8O7NO75FIAX2MU5VLUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.93.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:e9:e4:68:f5:ad:89:ee:c5:69:84:4c:45:a0:b7:18:fd:6e:
3c:a9:75:0b:9e:36:c5:2c:bd:c2:81:42:be:19:80:88:8b:22:
df:3f:21:2e:af:74:f1:67:7c:24:fd:08:ed:cb:91:8d:e7:f3:
1e:84:fc:9a:13:5f:70:87:8a:0d:e3:0c:d4:02:9d:75:76:93:
ba:8a:8e:45:2d:64:74:ca:9b:39:32:f6:38:7a:5a:36:30:cc:
be:b6:18:ae:3f:7f:dd:3d:8a:16:d5:a0:ba:9c:49:fe:26:41:
f3:7c:75:47:24:72:9f:a7:8f:ff:a9:e8:e1:a3:2e:7e:72:3f:
b0:a2:a4:7d:1e:f8:b5:b2:9c:83:53:8e:66:63:e1:2c:20:57:
a9:95:15:e5:49:fe:65:d3:be:43:4b:36:d1:fc:df:3d:ab:ca:
4a:ca:08:a1:ad:53:12:ab:fe:8f:60:62:38:16:5b:82:2e:9d:
07:46:99:f6:7a:f3:38:0d:64:5a:bc:82:25:9d:f6:7b:5d:7b:
0f:e2:ec:e7:59:e6:ce:d0:89:9d:38:53:db:ef:19:91:2a:ef:
41:71:c6:a2:8b:ad:a8:bd:d6:87:32:75:26:4c:0c:4c:c6:32:
98:96:93:df:46:12:e7:32:88:32:02:e7:f8:0a:7b:0a:4a:74:
96:86:0d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:17 2024 by rpki-client on console-fra.rpki-client.org