Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/HJHTTqXQ_vGTqbIok13xFBcgONU.roa
File: HJHTTqXQ_vGTqbIok13xFBcgONU.roa (raw, json)
Hash identifier: khxOyPkROtkhBP5/vjilbIzbmf0eSL9FdCj1SiQNg2M=
Subject key identifier: 1C:91:D3:4E:A5:D0:FE:F1:93:A9:B2:28:93:5D:F1:14:17:20:38:D5
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 01856BCA1E8EB62E582E6401BF86213433BE
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/HJHTTqXQ_vGTqbIok13xFBcgONU.roa
Signing time: Sun 01 Jan 2023 05:24:46 +0000
ROA not before: Sun 01 Jan 2023 05:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206092
IP address blocks: 45.131.194.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ca:1e:8e:b6:2e:58:2e:64:01:bf:86:21:34:33:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Jan 1 05:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c91d34ea5d0fef193a9b228935df114172038d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bc:73:01:78:d5:d5:9e:eb:22:0e:7c:55:70:
ac:0e:29:d4:e3:a5:8e:57:51:80:25:0a:d2:18:66:
35:0d:dc:c6:dd:46:50:8c:51:10:4f:c5:66:d7:92:
68:db:50:ba:f8:fa:0c:5f:f1:37:73:b6:27:ca:a7:
da:19:93:81:66:9c:cb:e2:da:56:71:bc:cd:f7:5c:
75:46:bd:50:4a:8d:b9:e2:90:42:2c:26:5a:f4:35:
54:ed:b9:a9:d2:b4:f9:7c:7d:86:41:b3:04:34:84:
17:30:ea:2b:53:66:70:42:6d:bf:f0:ea:74:db:0c:
60:10:bb:e5:04:f8:75:cd:b5:75:4d:31:35:47:25:
d5:c3:78:44:d6:c1:b2:d1:ae:c3:46:c2:86:1c:c9:
f6:a5:da:73:c9:95:47:48:24:43:99:04:e9:a6:e5:
0d:fb:14:f8:f4:5a:52:87:54:45:3d:5f:88:31:6b:
3e:20:7f:9e:e9:2e:bc:e3:3e:28:59:97:2e:e6:af:
7a:18:c4:69:e4:7a:3d:7f:93:5f:92:92:6a:99:fd:
10:8d:b4:c1:a9:eb:dc:b9:76:fc:75:4f:28:55:e9:
3b:86:3e:00:a5:5e:48:d8:2b:a7:39:e1:e6:0d:9d:
4e:a0:6d:df:b3:03:04:42:22:4c:eb:a6:37:38:c6:
34:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:91:D3:4E:A5:D0:FE:F1:93:A9:B2:28:93:5D:F1:14:17:20:38:D5
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/HJHTTqXQ_vGTqbIok13xFBcgONU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.194.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ef:08:79:24:d0:bf:eb:72:1f:ab:0d:63:8c:39:47:78:d6:
27:4f:f3:94:e8:3b:e7:bd:79:f6:66:d2:ae:fa:86:64:b5:d1:
ec:a7:52:30:b1:46:8d:bc:d0:b9:6e:ec:46:20:26:df:71:b6:
77:fa:ef:84:53:40:05:47:cc:fe:d4:49:96:f5:a5:e6:5c:c7:
6f:58:df:9f:06:c1:03:82:9b:c9:45:4e:82:88:6a:39:94:49:
13:f0:a1:4c:7f:ad:80:ed:c0:48:c7:06:b0:2b:a6:d0:a8:35:
ac:b6:9f:05:e7:f1:40:06:47:df:d9:ac:2d:32:bf:08:34:74:
5f:36:63:17:5b:c0:0a:97:1c:f5:37:0b:86:d5:09:77:3a:0c:
72:01:ec:80:17:d8:85:08:12:69:df:75:1b:73:f1:24:6c:f9:
85:57:7a:b8:ca:84:87:7f:e6:6f:e8:82:dd:bb:44:dc:e7:87:
87:b1:67:67:27:f3:be:f8:9e:b3:e0:17:37:a2:f5:98:9d:5b:
35:bf:de:a1:ba:be:b8:0c:48:51:0c:84:40:28:8c:ff:db:c2:
d6:31:16:6a:b6:52:ec:62:b7:11:20:17:d5:d4:ac:cd:ca:e6:
99:90:45:3c:3f:da:56:78:7a:ce:ae:01:d6:07:5d:63:c9:1e:
38:9c:f6:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org