Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/HAwiA8OoeToqyJ9QxmxwRG_XhvQ.roa
File: HAwiA8OoeToqyJ9QxmxwRG_XhvQ.roa (raw, json)
Hash identifier: UKcDTiZZUdN1GdUdPODqFCnaGqA8KiSzhHLeMFS4Jcc=
Subject key identifier: 1C:0C:22:03:C3:A8:79:3A:2A:C8:9F:50:C6:6C:70:44:6F:D7:86:F4
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 0185704BCA98AA6D18DF20E55347A08AB66D
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/HAwiA8OoeToqyJ9QxmxwRG_XhvQ.roa
Signing time: Mon 02 Jan 2023 02:24:53 +0000
ROA not before: Mon 02 Jan 2023 02:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39457
IP address blocks: 193.84.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:ca:98:aa:6d:18:df:20:e5:53:47:a0:8a:b6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jan 2 02:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c0c2203c3a8793a2ac89f50c66c70446fd786f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f6:1e:68:c8:cc:dc:4b:b8:b9:30:9d:75:04:
fc:0c:00:55:ba:78:27:1f:81:8f:bb:65:16:48:f3:
fa:29:d4:35:e0:25:ee:49:b9:c2:48:aa:db:30:5f:
18:2b:6e:92:eb:40:db:fc:f8:17:db:31:e4:1e:27:
1a:12:91:66:c9:2f:99:05:30:fc:fd:d1:1c:db:89:
ae:89:26:c2:cc:45:6e:3e:4e:d7:75:5b:d5:2b:1b:
4c:be:9e:43:02:bf:f3:19:5c:b5:22:38:11:d3:df:
33:a7:d7:49:e4:f3:21:4f:0a:78:2c:05:03:9e:bf:
ed:31:5d:d8:6b:9b:49:9c:f4:46:dc:65:d6:b5:97:
02:9b:5b:f0:6c:72:05:e4:4d:24:14:5d:1c:42:58:
9f:fe:44:67:f7:77:da:6b:e7:8f:04:6c:fc:b8:80:
f9:27:58:76:df:1a:3b:38:88:54:4f:12:2b:16:ea:
44:28:f5:df:80:5c:3f:8e:ca:73:f1:ac:59:d1:41:
55:d3:bc:c7:b9:b6:84:4d:2e:f1:0d:78:ab:7b:44:
dd:f2:8d:e9:a1:58:b9:14:e9:8f:ce:27:6b:c5:0a:
b9:99:a4:1f:0d:89:68:88:bd:8b:17:73:2c:99:ff:
f9:59:b1:4a:ed:3e:ec:89:50:12:7f:10:1f:3d:75:
06:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0C:22:03:C3:A8:79:3A:2A:C8:9F:50:C6:6C:70:44:6F:D7:86:F4
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/HAwiA8OoeToqyJ9QxmxwRG_XhvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.25.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f5:63:1c:72:f0:3b:9f:cf:a5:6f:e4:c3:b7:30:ce:fb:1b:
43:3a:ce:aa:eb:cc:7b:c5:22:0f:a7:da:3e:cb:6b:a9:f1:3d:
0e:58:24:3d:4d:69:6e:c6:0f:a1:24:e2:d6:1c:c5:07:5a:2e:
c1:a8:4c:42:89:ad:fb:36:bf:97:ee:ff:cf:4f:86:71:cc:70:
d0:8a:02:59:68:21:bc:29:ed:25:48:15:ad:62:b4:ea:57:4a:
b7:1f:e0:69:7d:de:1c:f0:45:b9:43:83:0c:c7:ac:64:22:cb:
27:07:5e:c5:5c:f7:84:02:6a:49:5f:32:b3:70:80:5b:67:a1:
85:16:46:fd:e5:67:2c:3b:5f:70:28:59:a7:13:69:72:b4:73:
21:bf:c6:24:44:9d:41:4f:c8:a2:fa:73:18:ff:9c:c5:14:03:
a9:aa:90:a8:8b:9b:81:0c:a0:90:86:40:47:cc:4a:38:59:d2:
5d:23:ac:bf:2b:5e:0d:6d:ac:2a:d1:f0:9a:ce:4a:10:60:1e:
f1:98:7b:e3:18:26:7e:1a:73:0f:bc:ce:32:fd:73:95:6c:e3:
a7:f2:6e:98:d6:38:c7:d4:74:3a:0a:ed:5e:c3:54:5d:3d:be:
73:fe:3c:d6:fb:f2:51:b8:66:f3:18:4c:63:8b:10:7f:75:61:
a7:af:c6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:21 2024 by rpki-client on console-fra.rpki-client.org