Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/HMatqaqM2wkqFxUXzusrKOjUox8.roa
File: HMatqaqM2wkqFxUXzusrKOjUox8.roa (raw, json)
Hash identifier: wRdFa9IG9j6U1+X3M07fAN/Ejmkte7k+ob6/3xny/FM=
Subject key identifier: 1C:C6:AD:A9:AA:8C:DB:09:2A:17:15:17:CE:EB:2B:28:E8:D4:A3:1F
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139B24A1515C10DCB96BB2DD6AB55BF
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/HMatqaqM2wkqFxUXzusrKOjUox8.roa
Signing time: Mon 02 Jan 2023 06:44:44 +0000
ROA not before: Mon 02 Jan 2023 06:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210148
IP address blocks: 78.142.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Apr 2023 15:45:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b2:4a:15:15:c1:0d:cb:96:bb:2d:d6:ab:55:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cc6ada9aa8cdb092a171517ceeb2b28e8d4a31f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:4c:31:aa:3d:c5:91:3a:f4:b6:b7:17:c0:b6:
a2:c7:f9:dc:e0:cc:c0:3b:e2:0c:31:7c:b4:f1:14:
8c:f1:f5:91:2e:3a:57:95:ae:53:7f:36:04:3d:10:
e3:20:a0:5f:f6:dc:5e:e3:f0:46:44:8f:eb:a9:3e:
99:ca:df:7e:6e:b1:0b:82:34:21:b4:1e:69:dd:a6:
c1:75:05:e1:e8:34:91:a4:8e:97:c4:87:19:7f:f1:
01:8b:b6:3e:27:97:6b:02:8e:4f:88:04:d6:c0:89:
9a:a5:64:2d:89:20:fe:d9:bd:d5:13:94:23:81:56:
10:37:79:07:a4:4f:79:85:48:ed:54:8f:c3:91:59:
9c:dd:47:4b:d5:a7:19:43:04:2e:62:c1:5b:d9:f9:
e2:07:ca:ef:49:35:84:f3:6f:16:17:4e:71:85:3d:
6e:b6:a5:30:8d:9a:16:7a:c6:c8:42:b8:37:ae:8f:
b9:f9:96:16:a5:88:d5:af:40:11:db:75:ec:7e:dc:
c6:f6:f5:68:37:89:67:1c:00:b8:be:7c:c3:f7:f0:
3f:ca:78:e5:57:27:e9:f2:42:89:42:3c:b7:70:50:
40:ed:5e:c3:96:85:e9:3d:eb:17:31:dd:87:e3:49:
33:00:70:d2:66:c6:4c:b9:a5:20:bc:df:2a:06:cf:
0c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C6:AD:A9:AA:8C:DB:09:2A:17:15:17:CE:EB:2B:28:E8:D4:A3:1F
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/HMatqaqM2wkqFxUXzusrKOjUox8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.250.0/23
Signature Algorithm: sha256WithRSAEncryption
00:19:45:94:e7:ff:7c:88:35:1f:f1:b2:c3:0e:0e:68:ec:c6:
ec:91:5b:2f:06:fd:d3:c7:e1:55:cb:8e:43:44:2b:1b:7f:46:
d8:2d:c7:a6:7f:99:13:be:eb:a7:e0:9a:93:d2:73:d6:0d:62:
c4:c7:0a:74:d6:e8:19:a3:70:5d:0d:1d:8f:4c:2c:15:d4:f5:
39:25:f7:23:29:1f:bb:ee:5b:70:c8:2f:e9:fd:25:83:9f:26:
c5:1c:eb:ed:6c:48:44:40:19:3e:cb:1d:2d:fd:18:94:7a:4c:
7c:4e:71:7d:b2:2c:d7:f9:7c:de:26:90:6b:6f:09:29:32:e4:
23:19:67:c2:f8:d4:dc:6b:ae:cb:0a:bb:85:73:7a:52:68:dc:
36:6e:ac:02:25:9f:bd:8d:7c:af:ad:14:06:53:22:06:82:d3:
d2:9f:ce:47:ba:b1:0a:95:4c:c2:22:c5:7d:a3:03:eb:78:6c:
6e:da:25:94:9e:4c:4d:c8:ae:f0:56:5a:a8:03:78:6c:82:ec:
50:43:f0:52:90:74:06:11:2e:59:f2:42:2e:25:5d:52:e4:25:
82:70:15:60:6b:4c:1e:a3:03:94:b6:f6:8d:3b:56:cb:f2:82:
91:50:e3:a3:cd:6c:d3:d5:fd:01:95:35:5d:a2:c2:a1:4c:3b:
06:be:ad:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:25 2024 by rpki-client on console-ams.rpki-client.org