Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/HkCI5Lf_jBDgmQcnj5YhX0WgFbs.roa
File: HkCI5Lf_jBDgmQcnj5YhX0WgFbs.roa (raw, json)
Hash identifier: Ld+zJ5/ReloQELiQDph98cLGU372q5+ktQD1gL189eQ=
Subject key identifier: 1E:40:88:E4:B7:FF:8C:10:E0:99:07:27:8F:96:21:5F:45:A0:15:BB
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 0185701ED73FA54EBC9F700C33BA4EEE359F
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/HkCI5Lf_jBDgmQcnj5YhX0WgFbs.roa
Signing time: Mon 02 Jan 2023 01:35:47 +0000
ROA not before: Mon 02 Jan 2023 01:35:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 147.161.253.0/24 maxlen: 24
147.161.255.0/24 maxlen: 24
147.161.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Nov 2023 23:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:d7:3f:a5:4e:bc:9f:70:0c:33:ba:4e:ee:35:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Jan 2 01:35:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e4088e4b7ff8c10e09907278f96215f45a015bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7b:2f:da:33:36:98:de:3d:7f:c5:95:41:18:
3e:db:ab:66:4b:e0:95:8f:e9:f2:97:5c:ee:69:0c:
23:97:fa:06:fc:d2:5a:cd:56:30:b9:b4:14:d0:97:
9c:15:d3:15:18:a9:fb:94:64:75:8d:01:d3:a1:d8:
d5:87:ae:8d:bd:40:9a:52:0e:84:e3:9e:f2:1e:b6:
b6:de:e9:a4:a5:4c:95:da:7e:97:25:f5:d0:1b:17:
b4:c3:61:57:64:d2:fd:5a:00:2f:a1:61:b8:48:c3:
08:b7:ab:c5:04:56:70:5e:6f:44:c5:a6:fb:32:79:
85:7f:3b:d8:c9:48:29:97:af:76:62:76:da:2d:a9:
a6:f1:7a:38:4b:a1:e2:a5:c0:38:45:20:34:d5:6c:
66:27:62:50:3f:72:be:7f:16:c6:e7:20:11:85:e4:
7d:c4:ab:31:48:76:c6:4c:4a:4e:d4:2f:01:87:b5:
10:62:4e:80:15:42:4b:5a:43:a9:5e:4e:96:b8:78:
3c:57:27:84:04:6f:7f:e5:68:33:e1:43:5f:e1:d4:
ab:3c:e3:30:c5:20:c7:fa:e8:5b:0d:94:51:0a:83:
89:94:2b:9c:32:ed:6f:f0:60:2e:5a:b5:71:2b:c8:
96:c3:cb:80:fd:58:e9:95:2e:65:02:81:6f:8a:1f:
0f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:40:88:E4:B7:FF:8C:10:E0:99:07:27:8F:96:21:5F:45:A0:15:BB
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/HkCI5Lf_jBDgmQcnj5YhX0WgFbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.253.0-147.161.255.255
Signature Algorithm: sha256WithRSAEncryption
9e:81:98:34:97:ae:af:4a:9e:54:b7:cf:7e:28:63:fe:0f:b3:
b2:3f:73:d8:84:7b:db:8c:d2:c4:58:e9:7a:9d:97:17:15:49:
7b:ab:7e:7b:31:e2:89:dd:d4:e5:56:51:30:46:57:e3:23:a8:
71:61:3b:05:07:7d:5f:d6:c1:8a:6c:59:77:d5:da:cc:29:8f:
68:79:05:2d:56:3c:31:20:2a:f6:80:5b:4f:07:53:09:82:39:
69:eb:b7:e2:89:d2:7a:af:fa:cb:5e:66:32:d0:eb:35:d5:6a:
4b:2a:1a:4e:a2:32:5d:c6:6c:6c:cf:f9:f7:a0:c8:a3:32:dc:
9f:fd:1a:8a:73:90:08:a1:64:a9:69:c3:b9:b5:0d:db:cf:a9:
d7:da:32:e7:e2:89:74:c2:87:d4:75:24:09:96:e6:61:c2:e7:
98:d5:28:b4:31:b1:7f:a2:67:84:dd:9b:45:35:21:98:5e:62:
8a:27:15:3c:34:6c:57:1c:63:b1:f8:3c:47:d4:a0:28:7d:f1:
a0:98:e5:73:69:7c:64:7c:c2:05:16:72:85:82:09:13:c0:37:
dc:1c:13:b0:e6:65:54:b5:b5:5b:b4:ec:b2:dc:69:3a:42:9d:
41:c0:7e:d1:49:f5:e5:c9:9e:f7:7a:b8:2e:b2:d0:22:9c:bf:
27:0f:d6:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:01 2024 by rpki-client on console-ams.rpki-client.org