Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/hiX0TiToGZ4s1BXE278RcUc35UM.roa
File: hiX0TiToGZ4s1BXE278RcUc35UM.roa (raw, json)
Hash identifier: 816zhItm0YH4u8MBR9Up9UfEFxwNEcVmlHSRISKi19g=
Subject key identifier: 86:25:F4:4E:24:E8:19:9E:2C:D4:15:C4:DB:BF:11:71:47:37:E5:43
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 01856F9E00E8E64A3A2F47D9C2177A48A863
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/hiX0TiToGZ4s1BXE278RcUc35UM.roa
Signing time: Sun 01 Jan 2023 23:15:03 +0000
ROA not before: Sun 01 Jan 2023 23:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206233
IP address blocks: 84.238.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 16:34:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9e:00:e8:e6:4a:3a:2f:47:d9:c2:17:7a:48:a8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Jan 1 23:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8625f44e24e8199e2cd415c4dbbf11714737e543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:77:26:90:ed:75:90:39:ee:83:9a:d7:b5:aa:
b2:f3:f3:96:61:04:fe:87:ec:c3:05:9d:d3:27:f6:
50:c2:32:8d:b4:c3:74:3d:96:ce:e7:ef:e4:d7:fb:
f8:57:4f:dc:47:09:b6:91:ed:a7:f4:82:3e:9f:b1:
85:2b:34:8c:57:f7:b6:71:70:c4:aa:d9:bc:73:0f:
e1:45:6b:9e:ec:36:79:f6:f2:b9:1d:7f:47:48:ad:
91:e2:55:eb:8e:77:12:f1:49:e3:ae:0e:50:23:09:
08:16:b6:87:b3:13:c5:69:ee:9b:c3:67:41:9d:76:
6f:29:85:dd:68:01:61:1e:b2:d1:28:ba:48:fb:29:
dc:76:c1:fe:b1:ff:0d:d4:a5:e5:88:98:a2:29:d8:
d5:80:17:f9:2a:59:35:e5:1e:43:cf:1d:d1:1d:59:
b6:31:db:f7:b8:16:f7:34:78:a4:88:88:cc:5c:0c:
45:e4:c0:51:25:8c:f3:65:c0:9c:bf:02:fc:70:f2:
99:54:01:4f:6a:0b:2a:a9:50:0f:c9:2a:28:da:b1:
22:04:f9:f4:5b:be:1c:1e:b0:68:c0:47:47:3e:25:
73:ee:68:35:10:58:7e:2f:de:b5:34:8f:6a:0d:24:
12:97:ce:ab:50:7a:0b:02:56:20:d4:30:83:04:c6:
38:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:25:F4:4E:24:E8:19:9E:2C:D4:15:C4:DB:BF:11:71:47:37:E5:43
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/hiX0TiToGZ4s1BXE278RcUc35UM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.238.177.0/24
Signature Algorithm: sha256WithRSAEncryption
19:19:0c:d9:77:c0:99:be:c1:85:b3:45:c9:53:ef:63:41:80:
1f:91:25:03:d2:4b:32:1e:f4:e7:fd:9f:3b:21:45:41:ed:fe:
12:4e:52:d3:a4:94:24:f2:88:85:b7:94:83:7c:b2:86:1e:10:
62:8b:b6:46:b0:4b:f3:85:42:a0:ab:54:ea:de:52:3a:a0:81:
6b:0f:34:ac:c6:aa:dc:ab:60:97:d6:c5:27:69:aa:77:78:c1:
a7:dc:c0:a8:f1:de:e9:e7:3c:e6:91:af:32:d4:98:82:60:08:
2a:f2:5c:ef:1c:19:59:6e:c3:e2:92:2d:c0:ce:de:84:18:cd:
15:e6:53:66:44:35:b6:db:2d:31:c3:d2:5f:47:9c:5f:79:38:
16:45:66:ae:a6:f4:88:94:46:b3:75:ff:44:2f:2a:b4:92:02:
92:96:6e:05:79:0f:08:ed:47:1a:d0:fc:f2:a9:10:c3:f6:43:
43:ea:6d:f4:e3:b9:1b:41:cb:cf:5a:35:50:b0:fe:fd:87:bc:
a6:0f:ef:19:12:f0:30:e4:3e:da:bd:ba:0c:ea:33:35:16:ca:
9c:2d:5f:40:ae:83:ef:ce:40:75:b2:d9:d9:08:c3:14:cb:a1:
a5:86:d9:2f:c0:68:bd:6b:9f:f1:3b:7f:2f:ad:36:12:c8:a4:
15:2c:aa:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:24 2024 by rpki-client on console-fra.rpki-client.org