Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/HKGLIjJYLpHTrlBbBXtjbjvKT1Q.roa
File: HKGLIjJYLpHTrlBbBXtjbjvKT1Q.roa (raw, json)
Hash identifier: e3tDbv9mZZIWf4/zDz8kHf64gnVaHHbzzOCfntAnBlw=
Subject key identifier: 1C:A1:8B:22:32:58:2E:91:D3:AE:50:5B:05:7B:63:6E:3B:CA:4F:54
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 018A66DD83E42C6F52A450DE45A9002DBE35
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/HKGLIjJYLpHTrlBbBXtjbjvKT1Q.roa
Signing time: Tue 05 Sep 2023 19:41:47 +0000
ROA not before: Tue 05 Sep 2023 19:41:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58349
IP address blocks: 212.30.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:dd:83:e4:2c:6f:52:a4:50:de:45:a9:00:2d:be:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Sep 5 19:41:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ca18b2232582e91d3ae505b057b636e3bca4f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:41:d2:70:c3:00:c1:48:59:10:01:63:35:8a:
a3:4c:1c:bb:77:36:60:24:c9:c3:f8:c3:a4:6e:d9:
ff:dd:6e:55:d0:5a:db:e2:ef:8c:51:3e:b7:5e:3d:
53:73:fb:7a:4c:88:bf:c8:4b:21:b5:8e:68:92:00:
9f:ce:a3:29:2a:04:ae:58:68:f5:62:3c:2f:49:4c:
50:8a:4d:9e:a2:bc:95:76:d4:e8:6a:8b:41:46:25:
42:e1:9d:f2:69:0a:24:d1:b8:a9:35:bb:86:41:0f:
58:d3:7c:da:18:00:91:69:c7:1c:b0:c0:0f:98:de:
32:fb:b3:7b:9e:7b:dc:0c:77:43:b7:ed:64:bf:d3:
61:4f:79:d1:31:ed:2d:d5:4d:7d:18:8a:1c:88:dc:
4f:5d:87:7c:6f:8d:3d:7a:b6:03:fb:cf:93:91:92:
d8:6f:6e:c7:30:e2:da:99:97:9c:36:8b:ba:d3:30:
81:70:29:58:9d:03:b3:86:64:56:93:5e:53:4c:ba:
65:13:45:ed:35:73:f6:8a:62:16:61:56:61:83:20:
47:15:98:fb:ad:5e:39:17:df:7a:80:73:6f:99:5f:
17:40:38:b8:50:b1:ac:65:aa:09:88:a5:da:45:58:
f4:61:26:77:21:ff:64:0b:ce:5a:43:ce:70:72:42:
2d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A1:8B:22:32:58:2E:91:D3:AE:50:5B:05:7B:63:6E:3B:CA:4F:54
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/HKGLIjJYLpHTrlBbBXtjbjvKT1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.30.38.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:20:1c:86:9e:cc:db:dd:3f:20:92:80:ae:8b:44:9d:8e:d3:
7b:61:ab:25:a7:d3:c1:c7:b9:66:0b:1e:3a:8c:b5:00:bc:9e:
7d:27:a2:00:97:12:9e:e9:08:6c:46:cb:bb:ad:fe:4f:7e:54:
1c:47:1c:69:a9:c5:30:d7:6d:4e:87:64:94:07:e3:41:2a:7c:
b0:01:1c:c3:07:fe:70:8b:29:d9:ef:ec:73:34:59:d7:4a:de:
56:e0:96:2e:74:fb:89:4c:28:e0:ea:b5:60:da:df:27:5d:68:
f1:df:e5:5a:53:c3:22:57:3e:7c:66:69:e3:1b:6f:33:a5:bb:
ee:4c:cb:78:3d:6e:e3:8d:28:8c:71:39:ed:eb:58:b2:b3:cb:
29:9f:41:d5:df:69:1f:b9:7c:29:49:1b:2f:69:c9:b7:e0:32:
9f:6d:3a:9a:8c:ab:89:2f:ae:4f:27:a6:78:0b:b5:81:01:e1:
5a:a9:20:38:7b:2d:18:2e:a0:ee:52:2c:b5:5a:ae:08:8e:84:
e1:10:fc:8d:57:b2:6e:9e:e5:0f:23:5e:bf:8a:56:50:d8:99:
f2:5b:fe:60:ad:fc:27:98:18:92:b6:8b:40:99:b3:dd:5a:de:
3f:09:63:ee:34:d5:8f:6f:15:6c:76:d2:e9:ad:07:1b:c8:c6:
cc:05:f3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:32 2024 by rpki-client on console-ams.rpki-client.org