Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/HwRLc8C7DkA2JO6j3JVUTogsBQ8.roa
File: HwRLc8C7DkA2JO6j3JVUTogsBQ8.roa (raw, json)
Hash identifier: zeaPGJGmZ4yGdXExdLmHmjGx9dJxrYqRurijlpO5icY=
Subject key identifier: 1F:04:4B:73:C0:BB:0E:40:36:24:EE:A3:DC:95:54:4E:88:2C:05:0F
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018B6693117D9546FBA61CA2A1C5686DF76C
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/HwRLc8C7DkA2JO6j3JVUTogsBQ8.roa
Signing time: Wed 25 Oct 2023 11:23:16 +0000
ROA not before: Wed 25 Oct 2023 11:23:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 91.200.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Nov 2023 06:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:93:11:7d:95:46:fb:a6:1c:a2:a1:c5:68:6d:f7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 25 11:23:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f044b73c0bb0e403624eea3dc95544e882c050f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:37:ad:f1:7c:88:37:71:a0:29:a8:95:f3:df:
c5:3e:41:7c:6e:8b:ef:10:86:a2:d4:46:92:7c:50:
35:26:ef:8d:60:52:b3:25:00:5a:e8:89:2e:3f:52:
0c:3e:d9:d3:d7:00:03:29:93:02:a2:8f:df:98:2d:
ab:69:93:d8:52:ca:d0:f3:39:c9:4e:81:7a:89:bc:
0c:da:dc:15:25:f5:44:94:74:74:af:64:4e:55:ef:
c1:84:e5:9d:86:66:7c:14:32:d3:6b:24:a5:d5:e6:
f2:bd:41:bd:5d:9b:0c:cc:86:3c:7c:72:60:cf:e5:
c8:96:90:9f:d9:bc:1d:ef:d4:e7:3c:01:0e:77:eb:
c1:aa:dc:ae:61:28:0c:0d:6d:58:ba:88:4d:48:6a:
3e:0c:ea:d1:85:9b:f4:f3:4a:12:56:b9:77:37:f5:
38:af:bb:77:16:2b:4d:43:81:c5:ff:b0:c3:dc:f3:
9e:25:7f:a5:0b:2b:ac:03:04:10:9d:83:ed:13:81:
82:b3:3b:4b:be:6e:86:19:48:f1:ff:9d:72:1d:12:
c3:7a:ad:36:d6:ad:db:8d:19:e1:78:90:2f:0c:70:
1f:73:6d:72:db:78:be:46:24:be:bb:1d:18:a1:c9:
7f:a9:2c:ff:39:02:c9:b7:87:a1:d3:f5:01:70:78:
04:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:04:4B:73:C0:BB:0E:40:36:24:EE:A3:DC:95:54:4E:88:2C:05:0F
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/HwRLc8C7DkA2JO6j3JVUTogsBQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.220.0/24
Signature Algorithm: sha256WithRSAEncryption
46:91:21:f4:90:b9:70:fe:a1:a0:55:1b:34:4a:4c:15:dc:bc:
ad:99:25:56:f0:c0:e0:4e:3c:98:6a:a2:92:d0:80:73:2b:09:
7e:6a:22:82:8c:fa:25:05:0a:63:b5:b6:b2:66:8f:d0:c6:ad:
5d:25:c0:d5:9a:77:9d:a8:6e:6a:2c:95:c1:dd:2d:23:b3:6f:
e7:ef:84:95:11:03:73:f5:58:bd:a9:66:ab:f4:6a:20:e5:49:
5f:29:71:4e:29:d7:ae:44:c9:26:0e:b2:c5:94:0a:63:79:c1:
e2:45:18:bb:e5:6e:72:17:1c:52:33:12:0d:5b:7e:78:7b:29:
c2:70:3c:e5:90:b5:25:1f:29:88:33:92:67:b5:1b:29:5e:e5:
53:fd:20:06:25:6d:e0:b3:02:b6:56:98:e2:53:f4:a9:8e:af:
06:2f:85:32:36:bc:18:63:0a:60:22:dd:0d:3c:b3:4d:b1:4f:
6e:17:b9:65:cf:d6:b7:85:a3:d9:d5:9f:c2:f5:ce:40:75:70:
e0:c0:63:4c:13:0f:c6:a6:59:6f:7d:c0:f4:46:b2:2e:16:cf:
d4:95:17:d9:b7:45:b1:88:c1:6a:33:1b:8b:e6:5c:c5:5f:2c:
fe:3a:95:4e:a9:85:9a:f7:a1:49:e9:e9:42:1a:87:9e:27:74:
27:06:a1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org