Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/HdsszIrl_objV5aDExVyh4E5zrU.roa
File: HdsszIrl_objV5aDExVyh4E5zrU.roa (raw, json)
Hash identifier: EA4/Y7ioJDf3fATjOB2R1pofwMNrjU7rJ/lkY0PCy5w=
Subject key identifier: 1D:DB:2C:CC:8A:E5:FE:86:E3:57:96:83:13:15:72:87:81:39:CE:B5
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018A842A781B87FD72CE5003D8D6B1A141D9
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/HdsszIrl_objV5aDExVyh4E5zrU.roa
Signing time: Mon 11 Sep 2023 12:14:50 +0000
ROA not before: Mon 11 Sep 2023 12:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 87.248.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 16:53:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:84:2a:78:1b:87:fd:72:ce:50:03:d8:d6:b1:a1:41:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Sep 11 12:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ddb2ccc8ae5fe86e3579683131572878139ceb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ed:4f:62:b7:85:54:ee:20:bb:b3:55:b5:f1:
43:68:3e:9e:04:00:31:97:40:8d:af:52:96:01:1d:
52:4d:21:a9:63:92:d4:36:1d:42:4b:f9:6d:d4:74:
75:f4:8f:f0:03:7f:a1:e2:9c:a2:de:14:f9:89:d7:
62:78:26:32:6d:ba:81:af:8a:b2:a9:f8:6e:16:d4:
73:d3:d6:7c:22:14:c9:7a:0d:ef:ed:a1:bc:3b:8e:
ee:f7:02:72:c3:22:2f:a2:a6:d5:97:4f:cc:e0:49:
a4:00:ad:1f:0a:a8:b9:ab:f2:92:79:4a:1a:bf:a5:
f5:84:ad:29:f3:59:a4:ad:ab:50:3e:3f:b9:74:bf:
bb:18:ca:ec:8b:5d:c1:86:e8:5c:1f:52:94:48:48:
0b:21:da:a7:5e:9e:b0:18:f7:ed:0c:f1:05:0a:fb:
fd:5b:df:db:6a:a1:2e:59:53:cd:01:08:02:bd:31:
02:8c:a7:88:dd:f7:00:ac:6e:a1:38:b3:99:d5:09:
71:8a:fc:0f:1d:6c:a6:06:d0:cd:d6:c5:26:39:f7:
2d:ac:a1:ba:a8:c1:76:7f:0b:91:f3:b9:ee:51:cc:
86:fe:e3:6a:1f:13:5a:66:47:86:79:12:8d:b3:c2:
0f:18:57:d3:dd:ab:25:54:c0:73:ea:6e:2a:6d:78:
b7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:DB:2C:CC:8A:E5:FE:86:E3:57:96:83:13:15:72:87:81:39:CE:B5
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/HdsszIrl_objV5aDExVyh4E5zrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.138.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ed:93:52:94:be:46:88:88:75:61:e1:f7:5a:5a:43:8b:1f:
77:33:53:c4:35:79:ef:04:36:a2:26:a6:6e:ac:af:bc:a7:d9:
1f:32:5a:8c:51:3a:3a:11:28:c7:3b:b3:95:09:45:21:bf:bd:
82:03:52:49:c9:01:bd:ee:07:43:78:31:45:38:4d:09:59:fe:
c4:c4:af:d8:4a:41:31:58:7b:4f:35:72:6f:90:b7:13:36:5e:
10:96:78:f7:05:02:eb:38:92:12:ff:1d:77:c6:10:35:5e:f5:
c5:f4:3a:23:38:45:1f:89:b6:d3:48:a7:af:a5:7c:9f:f6:00:
43:a9:62:25:6c:56:8d:38:c0:ea:80:9b:8c:11:8b:d0:ae:46:
e3:d5:b7:15:c4:88:67:c3:41:bf:52:65:e2:23:b5:03:7a:df:
76:cb:cb:45:9e:9f:70:dd:4f:ee:8c:8f:71:b9:d9:4d:77:41:
28:31:0c:7c:e9:0d:e6:b5:c2:29:c5:6b:f0:32:8e:3e:0c:5c:
e4:56:43:af:67:9e:ef:c9:c5:dd:3d:f2:b8:86:e7:21:e2:f0:
57:39:2a:82:df:8a:db:3c:aa:e9:a3:ea:cc:ed:41:30:70:1c:
36:b3:49:89:b8:bc:b2:3f:ac:94:48:72:01:2e:25:3e:3e:61:
b5:74:6d:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqEKngbh/1yzlAD2NaxoUHZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjYxZmM3YzBhYjQxY2UxNTRlN2JjYjA4ZWY5NjIzNTFh
NDY3ODQwHhcNMjMwOTExMTIxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGRiMmNjYzhhZTVmZTg2ZTM1Nzk2ODMxMzE1NzI4NzgxMzljZWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3O1PYreFVO4gu7NVtfFDaD6eBAAx
l0CNr1KWAR1STSGpY5LUNh1CS/lt1HR19I/wA3+h4pyi3hT5iddieCYybbqBr4qy
qfhuFtRz09Z8IhTJeg3v7aG8O47u9wJywyIvoqbVl0/M4EmkAK0fCqi5q/KSeUoa
v6X1hK0p81mkratQPj+5dL+7GMrsi13BhuhcH1KUSEgLIdqnXp6wGPftDPEFCvv9
W9/baqEuWVPNAQgCvTECjKeI3fcArG6hOLOZ1QlxivwPHWymBtDN1sUmOfctrKG6
qMF2fwuR87nuUcyG/uNqHxNaZkeGeRKNs8IPGFfT3aslVMBz6m4qbXi3eQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB3bLMyK5f6G41eWgxMVcoeBOc61MB8GA1UdIwQY
MBaAFHf2H8fAq0HOFU57ywjvliNRpGeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjkt
ZWRjOWQwMmZhZjU0LzEvSGRzc3pJcmxfb2JqVjVhREV4VnloNEU1enJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjktZWRjOWQwMmZhZjU0
LzEvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/iKMA0G
CSqGSIb3DQEBCwUAA4IBAQBg7ZNSlL5GiIh1YeH3WlpDix93M1PENXnvBDaiJqZu
rK+8p9kfMlqMUTo6ESjHO7OVCUUhv72CA1JJyQG97gdDeDFFOE0JWf7ExK/YSkEx
WHtPNXJvkLcTNl4Qlnj3BQLrOJIS/x13xhA1XvXF9DojOEUfibbTSKevpXyf9gBD
qWIlbFaNOMDqgJuMEYvQrkbj1bcVxIhnw0G/UmXiI7UDet92y8tFnp9w3U/ujI9x
udlNd0EoMQx86Q3mtcIpxWvwMo4+DFzkVkOvZ57vycXdPfK4huch4vBXOSqC34rb
PKrpo+rM7UEwcBw2s0mJuLyyP6yUSHIBLiU+PmG1dG3Q
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org