Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/HSC1_57Xkm3suVKcy0cJcNgc3UI.roa
File: HSC1_57Xkm3suVKcy0cJcNgc3UI.roa (raw, json)
Hash identifier: r7S117CBm1pLxMe3eWmukfccbix53OEsIFdtzZq8zZY=
Subject key identifier: 1D:20:B5:FF:9E:D7:92:6D:EC:B9:52:9C:CB:47:09:70:D8:1C:DD:42
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF82912BE8F336C0B4B3E98309129C
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/HSC1_57Xkm3suVKcy0cJcNgc3UI.roa
Signing time: Sun 01 Jan 2023 15:24:51 +0000
ROA not before: Sun 01 Jan 2023 15:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211155
IP address blocks: 193.59.180.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:82:91:2b:e8:f3:36:c0:b4:b3:e9:83:09:12:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d20b5ff9ed7926decb9529ccb470970d81cdd42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:60:4e:c8:a2:5f:2f:e3:d5:1d:16:97:ea:d8:
fb:5f:da:7a:cb:a4:f1:71:2f:b2:54:d1:a7:da:94:
0f:76:9b:64:7e:c5:2f:89:63:3d:26:11:c1:74:52:
b7:28:d7:58:bf:6f:a5:b5:e6:88:4b:d2:75:db:98:
2d:db:2e:de:1a:79:cf:42:ff:12:d4:d3:4b:83:a0:
0a:55:5d:f0:7c:fb:5b:99:34:74:e0:39:5c:82:a5:
d8:b8:43:0d:ce:b1:ce:b9:04:26:39:39:fe:6b:f9:
6a:71:09:41:41:bd:12:30:73:21:b8:0d:17:83:fb:
c5:5e:02:c4:21:62:d7:b8:a5:93:a0:75:e6:e1:86:
54:ac:89:5a:c1:8e:5b:39:1a:65:a1:88:98:c6:ea:
bd:48:76:0b:36:df:e7:aa:cc:21:07:9d:c3:16:b0:
b3:22:25:9e:d6:d3:8d:9f:49:0c:3a:5f:31:1e:71:
4a:e5:53:4a:91:a7:d1:e6:20:dd:b7:a0:49:b6:14:
d7:5d:ce:08:15:1d:30:fb:9d:59:81:48:be:dc:f3:
1b:69:62:57:fb:59:e5:6f:6c:fa:b8:0c:b2:05:c0:
64:a9:73:d4:b7:22:d8:49:e9:d3:ca:b6:f4:34:a4:
3b:5e:8e:da:52:aa:f1:c9:47:8d:90:d4:d7:e9:c6:
d8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:20:B5:FF:9E:D7:92:6D:EC:B9:52:9C:CB:47:09:70:D8:1C:DD:42
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/HSC1_57Xkm3suVKcy0cJcNgc3UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.180.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:c5:30:61:55:0c:4a:cd:83:40:8a:c7:bd:6b:d3:71:fc:73:
31:4e:20:19:5d:69:db:c5:21:1f:ca:07:6a:5f:54:b3:a3:ab:
e6:42:dc:97:be:3b:03:42:50:1a:e6:1e:0d:4c:f4:b1:90:e0:
db:04:2f:98:04:d7:25:1a:e3:8a:59:df:97:76:6a:11:6f:7f:
b4:46:f8:da:db:d6:fd:d9:8c:c6:db:a2:f0:1a:0c:45:07:e3:
41:64:f0:35:f4:58:30:e8:c7:cd:8a:68:a7:cf:52:ef:a8:0e:
ab:8a:5b:09:cd:e9:86:b7:ce:a8:b5:59:6b:92:c6:3f:fd:6c:
71:11:31:ff:9f:40:0e:c8:3d:c3:4f:dc:eb:38:9f:aa:b0:fa:
c8:4b:d1:06:7a:f6:79:a6:8d:3e:94:af:70:39:9f:ba:8a:f1:
81:32:09:d9:0d:89:4d:a1:c7:a5:1b:9b:cf:11:06:ac:e5:62:
d8:fb:ba:2f:88:d1:cb:fd:f8:69:30:aa:14:09:26:2f:4a:85:
5c:1a:a2:54:4b:03:ad:b4:c1:f8:f1:df:d3:35:7d:3f:a9:b9:
c3:7c:b7:41:05:1e:4d:84:42:fd:4c:0e:56:43:8e:00:b1:ef:
c4:5f:ec:7e:a2:ac:35:11:ab:4a:c0:8f:9c:54:7c:c5:97:69:
aa:ea:fd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org