Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/hiqmbHrk8bdcSSgXMgsUEkpTzWk.roa
File: hiqmbHrk8bdcSSgXMgsUEkpTzWk.roa (raw, json)
Hash identifier: HICp142OkP4r76an6LweI1NT2AC638mPVKdSYzzHflQ=
Subject key identifier: 86:2A:A6:6C:7A:E4:F1:B7:5C:49:28:17:32:0B:14:12:4A:53:CD:69
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 018BF9D89149C7B5D2CF31612CA3C56F2595
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/hiqmbHrk8bdcSSgXMgsUEkpTzWk.roa
Signing time: Thu 23 Nov 2023 01:43:21 +0000
ROA not before: Thu 23 Nov 2023 01:43:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 87.251.0.0/20 maxlen: 24
87.251.16.0/24 maxlen: 24
87.251.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f9:d8:91:49:c7:b5:d2:cf:31:61:2c:a3:c5:6f:25:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Nov 23 01:43:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=862aa66c7ae4f1b75c492817320b14124a53cd69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:a7:3e:57:0d:53:00:84:67:ad:29:b0:20:
78:93:7e:dc:9a:72:b7:ed:47:bb:e2:bc:cc:3f:fc:
44:1b:3f:f8:fc:8f:46:6d:25:46:bf:39:1f:d2:ed:
9c:a6:a3:9b:42:76:bb:a5:48:d2:40:a5:0f:13:fa:
a0:d6:38:1f:22:e9:df:80:05:ba:e7:86:20:fa:57:
03:59:0f:87:da:d9:e2:3d:e9:f2:9a:11:00:b7:a0:
46:4e:ca:4a:bd:36:72:27:64:4f:d3:a5:66:4c:a7:
b0:6a:39:a1:85:96:3a:9d:2a:7e:04:09:c2:a2:e5:
d3:ed:ac:65:e0:b9:46:f1:ce:0e:2f:ae:40:da:cb:
f3:6c:0e:bf:de:0d:24:99:62:62:1b:d0:7a:90:ca:
e1:d4:96:21:27:b7:89:49:51:3f:f7:26:fe:9c:de:
71:7a:3e:28:60:04:de:c5:e6:47:fa:51:0d:81:92:
84:93:b6:a1:32:6d:58:bb:7d:07:a6:09:79:ea:ed:
53:f5:99:a5:18:34:1b:b8:3b:e7:1c:ef:ce:e2:8c:
a0:17:e7:33:13:aa:14:da:1b:a2:17:d6:98:36:58:
4d:88:e9:d8:79:f2:f7:ce:01:69:ac:bf:e7:54:3f:
3e:33:c3:d6:da:3b:d0:1f:a2:0c:03:ce:b8:3d:a0:
d8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2A:A6:6C:7A:E4:F1:B7:5C:49:28:17:32:0B:14:12:4A:53:CD:69
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/hiqmbHrk8bdcSSgXMgsUEkpTzWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.0.0-87.251.16.255
87.251.18.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:a2:3b:d7:3b:3f:47:cf:2f:3e:33:f6:dd:3a:f5:5c:2c:38:
fc:ba:b3:f0:02:15:1b:f1:3c:56:95:40:ed:bb:4c:cc:84:b1:
39:36:4f:56:c4:0a:bd:6d:74:00:86:78:1e:58:e9:22:db:2d:
5c:ab:38:a9:d4:f9:7a:2e:91:78:93:df:1a:d7:bb:8c:bf:71:
db:54:9f:61:2a:48:e1:49:73:ae:6b:d4:6c:a8:2d:9e:5d:b1:
0a:8e:df:7b:69:7a:5e:cb:cf:71:e0:a3:a5:b9:f8:ea:13:0b:
55:95:b0:57:85:02:36:64:8d:49:f6:85:81:18:d8:a6:6b:ed:
0f:2d:e0:d6:7f:31:73:f0:6d:d9:05:08:fa:62:46:f8:f6:12:
58:f5:b1:94:e3:8b:0a:eb:02:df:2e:c5:89:01:15:f7:4f:b8:
23:39:4c:4c:a1:2b:b1:c3:02:40:fe:d9:71:82:e8:f2:c1:1c:
76:67:b0:ae:cb:cd:1a:b1:db:c3:1c:41:56:0f:05:8c:ba:24:
93:c5:99:1e:f4:d8:9e:9d:4e:d7:b2:49:81:2b:52:1a:c8:cd:
a1:ed:3c:d1:af:cc:bc:ba:49:c3:8a:6f:63:95:8b:51:96:44:
e7:af:14:e3:8b:d2:12:56:67:ab:c8:06:b8:9a:1f:c8:fe:2f:
89:93:6e:d5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:31 2024 by rpki-client on console-fra.rpki-client.org