Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/9422b0-dc79-4c71-bfd8-fcf99470b985/1/hyQ8zHJVgN9uKOqr0tnHgtnfXF4.roa
File: hyQ8zHJVgN9uKOqr0tnHgtnfXF4.roa (raw, json)
Hash identifier: C8MxlJrITvZdBCBhRwuWF+LfIj3mP/UAvDH9+rfvKrI=
Subject key identifier: 87:24:3C:CC:72:55:80:DF:6E:28:EA:AB:D2:D9:C7:82:D9:DF:5C:5E
Certificate issuer: /CN=a4c2b593d98c092fd30a601ea5d244aabd3cb14d
Certificate serial: 01856C938FC98AA85F6CAE8079969A129078
Authority key identifier: A4:C2:B5:93:D9:8C:09:2F:D3:0A:60:1E:A5:D2:44:AA:BD:3C:B1:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMK1k9mMCS_TCmAepdJEqr08sU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/9422b0-dc79-4c71-bfd8-fcf99470b985/1/hyQ8zHJVgN9uKOqr0tnHgtnfXF4.roa
Signing time: Sun 01 Jan 2023 09:04:47 +0000
ROA not before: Sun 01 Jan 2023 09:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35023
IP address blocks: 193.221.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:8f:c9:8a:a8:5f:6c:ae:80:79:96:9a:12:90:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4c2b593d98c092fd30a601ea5d244aabd3cb14d
Validity
Not Before: Jan 1 09:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87243ccc725580df6e28eaabd2d9c782d9df5c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:80:1a:3c:3c:a2:79:16:29:16:74:ec:19:1a:
6a:98:6a:98:d4:4d:5c:87:44:d9:9b:23:eb:60:ce:
af:74:cd:d9:0d:52:6a:9f:10:d5:22:ea:7e:f0:78:
ef:ec:71:da:12:8f:c5:44:4d:fa:de:0a:72:f1:d9:
5a:37:68:70:26:56:9c:06:e6:0d:83:b8:51:58:ed:
84:fe:f0:11:cf:8d:c6:21:16:07:d7:29:f1:b0:bd:
5a:d5:99:26:94:c8:3e:b9:f9:4e:79:72:9b:ad:a7:
e1:e7:af:62:46:af:ad:39:9b:d0:6e:e7:41:3c:98:
cd:49:f7:34:c8:ae:40:0b:17:f8:aa:44:0f:50:c7:
ea:cd:29:b9:03:7a:c1:20:17:18:56:13:d8:b5:06:
05:05:cc:09:8c:c8:be:bb:1b:b2:2d:bf:ff:93:25:
b2:57:6b:52:3f:4b:f0:97:23:9f:50:ed:a5:e0:22:
06:8c:da:c0:1e:94:ea:e1:6d:9f:8a:4b:18:c6:b8:
df:55:c2:29:db:52:f1:bb:32:44:93:10:be:52:d7:
ca:70:02:fb:7e:1b:f9:ee:86:ad:5e:3d:f5:b0:05:
31:67:36:41:d8:e3:bb:57:e0:3e:4d:e5:97:31:d0:
b2:86:08:3a:93:99:24:dc:19:57:04:15:04:88:b5:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:24:3C:CC:72:55:80:DF:6E:28:EA:AB:D2:D9:C7:82:D9:DF:5C:5E
X509v3 Authority Key Identifier:
keyid:A4:C2:B5:93:D9:8C:09:2F:D3:0A:60:1E:A5:D2:44:AA:BD:3C:B1:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMK1k9mMCS_TCmAepdJEqr08sU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9422b0-dc79-4c71-bfd8-fcf99470b985/1/hyQ8zHJVgN9uKOqr0tnHgtnfXF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/9422b0-dc79-4c71-bfd8-fcf99470b985/1/pMK1k9mMCS_TCmAepdJEqr08sU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.112.0/24
Signature Algorithm: sha256WithRSAEncryption
28:96:61:e1:28:f9:a6:35:33:8d:dc:07:d6:8d:b9:7d:84:1a:
62:b9:a7:d6:41:92:e1:ae:67:fd:39:b0:40:d5:8a:dc:38:b8:
e5:fa:73:67:40:e3:25:4b:de:c6:84:04:da:38:94:77:4a:0b:
21:6e:97:f0:c9:8f:bd:1d:05:fa:43:51:df:b6:c2:68:fe:89:
2b:06:e0:de:cc:1b:4c:da:1e:fa:af:92:dd:48:b1:6d:db:a8:
0f:98:00:55:74:b1:41:2f:52:4b:54:24:87:12:e7:3a:e0:00:
8a:03:9b:9d:ff:7d:00:a2:32:3c:47:0a:e3:32:57:32:72:9e:
22:83:80:2b:a9:d7:64:aa:9e:ab:90:56:d5:41:64:84:40:a3:
ab:f0:02:d9:89:fb:19:d3:10:71:a4:69:0a:82:43:19:19:c7:
5b:93:3e:7f:42:09:8a:05:c2:73:44:27:4e:79:f0:95:75:c1:
59:f9:14:a6:72:27:de:89:56:e6:5e:c2:32:f8:30:3a:6a:5d:
15:fc:e4:36:8f:c4:3a:8a:a9:f8:2c:fb:b4:51:08:8a:ab:8d:
da:69:34:87:17:7f:d7:9a:08:42:80:93:1d:48:b7:a6:3a:e3:
84:83:5d:8a:95:c8:47:2c:ec:ab:93:e5:c3:02:93:6b:e4:98:
5e:60:1d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:54 2024 by rpki-client on console-fra.rpki-client.org