Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/HzhopHJxyE3lG7rxvZqvXXcmbWs.roa
File: HzhopHJxyE3lG7rxvZqvXXcmbWs.roa (raw, json)
Hash identifier: PXMIC7JjKzOmH5So4e8wBHJEYXVamyLFQCjQGWO0EOQ=
Subject key identifier: 1F:38:68:A4:72:71:C8:4D:E5:1B:BA:F1:BD:9A:AF:5D:77:26:6D:6B
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 018DB07DA997C1A1750B521E4FAF30E487C9
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/HzhopHJxyE3lG7rxvZqvXXcmbWs.roa
Signing time: Fri 16 Feb 2024 05:57:21 +0000
ROA not before: Fri 16 Feb 2024 05:57:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 81.31.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 19:15:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b0:7d:a9:97:c1:a1:75:0b:52:1e:4f:af:30:e4:87:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Feb 16 05:57:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f3868a47271c84de51bbaf1bd9aaf5d77266d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:31:e2:8e:ff:90:c0:ec:57:d1:d1:ce:34:02:
a0:76:75:10:19:c4:75:7a:32:6a:74:90:63:12:bf:
68:f4:bf:76:8c:96:ae:8d:72:18:6c:e6:31:5f:c5:
8f:78:f6:c6:e5:dc:87:97:2e:6c:bb:7c:5d:74:29:
ed:1b:02:ab:a1:c5:8b:dc:59:8a:3e:09:7c:18:10:
cc:7b:53:78:01:b1:bf:33:e6:00:c5:24:1d:54:1b:
58:fd:7d:1a:1f:c3:8a:4c:a1:10:4b:f2:d2:15:eb:
14:65:38:b2:10:ab:22:b2:07:d8:11:cc:8f:83:5f:
b5:02:e2:dd:f7:08:3f:ba:27:6d:78:34:3d:02:f4:
b8:70:1c:16:8a:93:09:7f:8f:86:a2:11:8a:1e:12:
b3:39:72:a5:e4:64:6e:77:3f:d2:ed:78:85:57:c5:
39:42:b3:e5:3e:f6:5e:2f:4f:bb:dc:05:63:05:d1:
a7:6d:4f:c7:62:f1:c1:bd:bd:7a:38:93:04:06:2f:
f0:22:3d:9c:9a:33:56:8f:22:b0:a4:11:00:62:6f:
da:ee:2a:a6:67:bc:b4:2c:93:81:ed:b6:8b:b0:2b:
99:19:1d:60:b8:ae:06:1a:e8:52:35:59:05:42:a9:
a5:3f:94:47:8e:c4:04:8f:9c:80:a5:7c:f6:c3:59:
f9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:38:68:A4:72:71:C8:4D:E5:1B:BA:F1:BD:9A:AF:5D:77:26:6D:6B
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/HzhopHJxyE3lG7rxvZqvXXcmbWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.234.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:bd:06:c2:82:b1:5a:f5:6f:8b:69:06:47:90:4c:5f:e4:17:
a2:a8:dc:42:76:e6:14:0a:a3:fa:0a:25:64:d3:21:32:f1:00:
33:44:40:38:b6:82:c3:35:7b:f2:c6:63:4f:dd:1c:bc:76:49:
56:21:07:ca:e8:6a:2c:f5:43:25:81:d7:dd:fe:fe:9a:e2:65:
d2:47:40:f3:3c:d1:f0:14:fd:dd:c0:b8:dc:72:43:f6:51:1a:
db:52:eb:7f:85:e4:fd:0d:1b:ba:21:66:d4:98:40:e9:65:a1:
34:7d:15:ed:6a:1a:0d:ed:f0:e7:f4:d0:7e:b0:f9:1a:df:46:
1f:61:7f:21:e0:af:56:c5:07:48:18:76:84:2e:23:82:35:55:
df:4f:cb:b5:37:13:cb:e2:59:39:cf:f5:2d:ae:89:be:db:62:
ad:c2:b3:0b:b0:f3:43:5a:f3:20:19:2a:be:fb:c9:ec:f3:fd:
d3:a7:45:69:b4:9f:9f:da:f8:08:96:1e:50:77:28:aa:bb:13:
cf:da:de:73:d1:cf:9e:78:96:1a:a6:86:38:6f:bc:f0:0c:96:
da:19:b3:19:75:83:63:03:6f:df:f9:eb:fa:fc:de:60:56:db:
38:16:15:73:09:a1:84:8f:32:a4:ab:b1:a3:e4:85:1a:8f:61:
9a:84:9b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 16 20:24:49 2024 by rpki-client on console-fra.rpki-client.org