Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/27c7a3-943c-4b29-bd82-e7abcf223715/1/HQx58i4DFGFYlrN1b1RUgI_7jGQ.roa
File: HQx58i4DFGFYlrN1b1RUgI_7jGQ.roa (raw, json)
Hash identifier: vsOHeuLINSBG6cLFs7r06DjvuxvZTvujDgKu2Ej9SRk=
Subject key identifier: 1D:0C:79:F2:2E:03:14:61:58:96:B3:75:6F:54:54:80:8F:FB:8C:64
Certificate issuer: /CN=2b4ab4c1517f732df8b2ec83de4ad2368d45cfdf
Certificate serial: 01856D9D1E9F2349BB01ECCB32A974395E99
Authority key identifier: 2B:4A:B4:C1:51:7F:73:2D:F8:B2:EC:83:DE:4A:D2:36:8D:45:CF:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K0q0wVF_cy34suyD3krSNo1Fz98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/27c7a3-943c-4b29-bd82-e7abcf223715/1/HQx58i4DFGFYlrN1b1RUgI_7jGQ.roa
Signing time: Sun 01 Jan 2023 13:54:51 +0000
ROA not before: Sun 01 Jan 2023 13:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209331
IP address blocks: 91.132.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:1e:9f:23:49:bb:01:ec:cb:32:a9:74:39:5e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b4ab4c1517f732df8b2ec83de4ad2368d45cfdf
Validity
Not Before: Jan 1 13:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d0c79f22e0314615896b3756f5454808ffb8c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c3:f5:59:e9:15:17:89:66:d8:93:a6:5b:01:
79:66:a5:47:5c:82:6c:87:be:7e:d4:46:62:87:26:
2d:5e:c6:11:5b:9f:28:99:1c:e8:37:63:df:04:13:
53:e3:91:fa:21:51:b8:9e:a5:d4:d6:06:b7:ae:51:
b0:d5:6a:e3:81:11:64:f8:3a:de:70:4d:db:65:67:
82:e6:cf:46:01:f6:72:c4:9a:97:b6:76:5a:50:20:
4d:e5:18:73:02:bb:7e:3d:ae:7a:7e:d3:f4:59:c4:
31:a1:49:77:2e:86:bb:cc:3d:30:18:74:49:ca:58:
78:d0:6a:48:da:b2:28:2d:26:7a:b5:84:19:35:4f:
34:d4:38:23:9d:10:3a:70:35:70:4b:21:70:28:d9:
55:9e:91:28:14:6b:18:1b:5a:e0:f7:f7:08:1d:35:
93:88:80:c2:44:f9:79:4a:57:7d:7e:61:56:ba:51:
18:d0:77:4a:c2:1c:72:8a:03:1e:29:45:3e:8d:e9:
5a:09:a8:08:d7:a2:73:6b:d1:cd:c4:fd:2c:fa:19:
a4:dc:b2:be:15:70:3f:ac:ed:cd:4b:47:06:d3:bc:
da:09:ce:3a:02:ef:37:a4:79:c6:ac:34:ab:46:70:
11:6b:52:18:1c:6c:d9:89:c4:49:4a:7b:cd:0d:fe:
a5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0C:79:F2:2E:03:14:61:58:96:B3:75:6F:54:54:80:8F:FB:8C:64
X509v3 Authority Key Identifier:
keyid:2B:4A:B4:C1:51:7F:73:2D:F8:B2:EC:83:DE:4A:D2:36:8D:45:CF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0q0wVF_cy34suyD3krSNo1Fz98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/27c7a3-943c-4b29-bd82-e7abcf223715/1/HQx58i4DFGFYlrN1b1RUgI_7jGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/27c7a3-943c-4b29-bd82-e7abcf223715/1/K0q0wVF_cy34suyD3krSNo1Fz98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.212.0/24
Signature Algorithm: sha256WithRSAEncryption
78:3f:87:8c:63:0e:9b:b8:37:8a:e1:53:fc:87:96:83:17:53:
54:c8:33:5b:23:85:f4:77:0e:14:40:bc:4b:86:8f:2f:a2:82:
c9:3c:cd:98:1d:37:15:f0:36:85:c8:d3:51:ca:1a:d9:11:47:
cd:3f:6d:99:46:73:31:28:29:db:b1:2e:a2:bb:95:b9:70:83:
c0:6b:9a:3c:b5:16:b1:3d:40:df:cf:e0:f9:bc:65:02:e6:39:
da:87:ce:d1:df:33:3f:44:0a:38:15:c7:f2:fb:a5:bd:1e:f5:
35:4b:40:e7:5b:fb:61:34:6b:0a:30:07:47:d6:c6:76:4c:b6:
c0:ed:2b:d3:67:7f:ba:70:31:b8:72:8a:ae:8c:73:34:e3:8c:
9a:2f:8a:97:cc:1b:bd:df:77:cc:36:66:08:6a:f7:3b:8b:0c:
70:cf:77:36:1d:0f:6b:e3:2c:f2:fd:dd:b3:3d:b6:42:6f:28:
d0:1f:f3:ff:18:c2:86:12:44:3a:26:47:b8:70:70:7d:a2:2e:
d4:9a:97:8f:e1:e6:d6:69:58:f6:a2:62:16:bc:00:03:7e:8e:
c6:1f:b9:81:12:d0:57:cb:b7:9d:bf:66:0e:82:df:66:67:a8:
ef:7a:88:b3:cd:f7:d6:5d:de:d3:b7:11:4b:ad:f3:1b:30:4a:
64:36:35:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:33 2024 by rpki-client on console-ams.rpki-client.org