Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/HRNXG0FtIO7vhMgQhP33ifwmULM.roa
File: HRNXG0FtIO7vhMgQhP33ifwmULM.roa (raw, json)
Hash identifier: tML+BnxP0JE9N5XUBPzKi1+5kJyzJvh/nn7HSdZHqLE=
Subject key identifier: 1D:13:57:1B:41:6D:20:EE:EF:84:C8:10:84:FD:F7:89:FC:26:50:B3
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018A1971D6C7293D358E3D5BF43D21284095
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/HRNXG0FtIO7vhMgQhP33ifwmULM.roa
Signing time: Mon 21 Aug 2023 18:53:25 +0000
ROA not before: Mon 21 Aug 2023 18:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202960
IP address blocks: 185.147.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 Nov 2023 13:36:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:71:d6:c7:29:3d:35:8e:3d:5b:f4:3d:21:28:40:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Aug 21 18:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d13571b416d20eeef84c81084fdf789fc2650b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1b:26:9c:8a:b5:1c:25:05:c4:e1:54:22:9e:
38:e1:46:bd:e4:07:72:b3:e6:33:69:70:52:14:e0:
31:20:43:8d:95:18:36:59:ef:d4:1c:44:20:82:05:
66:98:d9:b1:d3:77:f5:be:9b:ad:d7:f6:29:1e:f1:
fa:4f:97:72:9e:dd:e6:c6:b4:5f:2c:7c:13:e5:90:
6f:46:8c:5b:e9:2c:4a:e9:57:10:15:b6:d8:1d:c5:
2a:92:a8:94:ea:a0:1c:8c:7d:3f:72:b9:5a:88:8a:
52:44:03:60:c7:4e:1a:3c:fe:1e:74:c3:82:47:e1:
53:28:d5:a7:61:f2:f5:70:e3:cb:2a:88:a1:8b:98:
c5:69:5d:36:2a:f5:5e:23:fc:86:12:2c:ee:e3:4d:
1a:99:38:36:4b:d4:38:6d:13:01:a2:7d:9c:f9:aa:
cd:e5:08:89:18:52:15:ba:d4:12:98:a6:2d:9d:3a:
8d:34:54:28:e0:c6:3e:75:bf:2d:19:62:ae:01:94:
47:c8:36:14:15:b4:77:82:ff:c2:02:0f:39:d5:c0:
f4:67:d8:ef:37:a5:ba:cc:b9:da:46:e2:05:37:2e:
7d:d1:5a:e3:a8:25:53:51:f1:95:a4:43:dd:4c:0f:
fa:fc:1e:df:52:85:3b:c7:18:71:0d:09:7e:cc:3f:
ee:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:13:57:1B:41:6D:20:EE:EF:84:C8:10:84:FD:F7:89:FC:26:50:B3
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/HRNXG0FtIO7vhMgQhP33ifwmULM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.48.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e5:fa:af:2f:63:77:f2:a4:5c:ca:78:dc:f2:18:93:3a:8b:
79:3a:ee:03:51:6e:c0:60:c1:52:f9:4a:07:e6:ab:74:d5:1e:
18:aa:cf:58:3a:e0:f0:b2:72:62:13:4c:3f:82:ce:d8:64:c2:
89:a0:8d:0c:6a:a6:4d:bb:39:84:9f:93:68:60:19:86:9a:c2:
73:ea:12:36:39:37:5d:93:cb:4b:7d:8b:d6:47:6e:a7:d0:44:
62:9e:4d:94:79:81:fa:8e:96:5b:13:aa:a1:ae:26:ae:be:08:
65:c6:5e:80:ff:ff:fa:ad:ac:43:03:8f:b2:90:8f:c3:7a:94:
f2:1a:c6:19:e9:f9:ef:60:d9:a0:07:0c:6a:2b:de:ad:8b:68:
41:bc:7d:11:0d:bb:76:45:1b:56:2d:dc:4d:bc:34:47:37:74:
5d:11:f8:f4:52:84:16:7c:19:c8:b5:44:63:51:88:a5:b3:a5:
e4:bd:09:8d:5b:be:7b:c7:3f:e3:24:72:24:fb:00:19:38:78:
08:b0:83:b6:d5:11:21:bf:3c:07:7b:fc:b0:db:fa:00:3e:c9:
e4:cd:92:0f:37:c9:b3:a1:da:fa:15:cc:67:1f:47:48:9b:74:
4c:7f:3b:28:15:e6:ee:20:3b:d4:17:92:19:24:8f:bf:84:d3:
fb:d8:16:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:41 2024 by rpki-client on console-fra.rpki-client.org