Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/fcc8b3-fdd1-4abd-aca6-e7e25cb98e63/1/hMCC4s9U-3U-he3y72QnqcOF9fM.roa
File: hMCC4s9U-3U-he3y72QnqcOF9fM.roa (raw, json)
Hash identifier: ezPrR8jhR9ThM13SCoZ+43rz8MBXdSovYRZqWtiJwA8=
Subject key identifier: 84:C0:82:E2:CF:54:FB:75:3E:85:ED:F2:EF:64:27:A9:C3:85:F5:F3
Certificate issuer: /CN=2d35f65df2cb3ea16e51152fac75947fa9c30bf7
Certificate serial: 0188E65F78206A565FFFB11AF7CE167E16F1
Authority key identifier: 2D:35:F6:5D:F2:CB:3E:A1:6E:51:15:2F:AC:75:94:7F:A9:C3:0B:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTX2XfLLPqFuURUvrHWUf6nDC_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/fcc8b3-fdd1-4abd-aca6-e7e25cb98e63/1/hMCC4s9U-3U-he3y72QnqcOF9fM.roa
Signing time: Fri 23 Jun 2023 03:49:56 +0000
ROA not before: Fri 23 Jun 2023 03:49:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60930
IP address blocks: 91.147.84.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e6:5f:78:20:6a:56:5f:ff:b1:1a:f7:ce:16:7e:16:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d35f65df2cb3ea16e51152fac75947fa9c30bf7
Validity
Not Before: Jun 23 03:49:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84c082e2cf54fb753e85edf2ef6427a9c385f5f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:81:dc:08:2c:88:44:9e:7d:3e:67:e8:38:aa:
8b:9c:d8:0b:b7:12:32:cd:e5:52:e3:1c:fb:b4:1f:
b9:83:47:25:b9:03:ae:34:df:e6:16:c4:ce:6a:d6:
53:b3:d7:98:e6:b9:29:e4:9c:5d:9c:d2:09:db:46:
3a:ea:d9:0c:ce:dc:20:f6:16:1c:b6:51:63:19:c4:
ba:e4:a6:71:b1:e6:a7:ef:04:29:be:47:8e:82:88:
c9:d6:78:a9:67:e9:e8:4a:b5:06:bd:b1:d6:4d:9e:
4e:1e:fe:d9:39:a6:b3:be:72:ac:b1:d3:db:2b:80:
cb:64:9a:86:81:b0:dc:3c:4e:38:13:2a:57:e2:48:
43:22:c2:08:92:55:56:99:74:50:c2:83:85:b9:80:
95:0d:b7:91:37:ae:6b:16:a2:83:6f:10:e5:b7:e6:
ad:8d:dd:2d:83:7b:e2:28:11:a1:78:eb:90:4b:3d:
4d:9d:77:dd:41:a6:ef:5c:a0:8e:e0:60:23:16:e4:
18:e6:db:16:eb:1a:85:8a:39:d6:f0:db:01:34:bf:
eb:ae:2e:d0:38:33:2c:50:3d:ff:93:7a:8e:5a:30:
1f:07:2d:a9:b0:10:ef:22:01:35:3d:17:4a:c0:d2:
df:1f:13:d1:bf:6c:03:82:ad:a8:04:8a:67:82:bb:
60:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C0:82:E2:CF:54:FB:75:3E:85:ED:F2:EF:64:27:A9:C3:85:F5:F3
X509v3 Authority Key Identifier:
keyid:2D:35:F6:5D:F2:CB:3E:A1:6E:51:15:2F:AC:75:94:7F:A9:C3:0B:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTX2XfLLPqFuURUvrHWUf6nDC_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/fcc8b3-fdd1-4abd-aca6-e7e25cb98e63/1/hMCC4s9U-3U-he3y72QnqcOF9fM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/fcc8b3-fdd1-4abd-aca6-e7e25cb98e63/1/LTX2XfLLPqFuURUvrHWUf6nDC_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.84.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:87:1c:7c:94:0f:a7:b1:a3:dc:79:10:fd:a3:c9:0f:ea:7c:
dc:25:4d:05:26:cf:24:07:24:90:83:5e:95:14:94:9b:d9:fd:
a9:a2:1f:87:0e:27:5b:5f:0b:38:9b:51:db:e4:35:83:01:37:
45:1f:31:91:63:c8:18:84:d2:ea:15:bc:db:08:a9:d6:f2:a7:
28:7f:19:2f:d7:59:12:5e:2d:bc:8f:45:c9:25:07:a4:62:91:
0c:d0:a0:87:03:5e:a0:ef:35:02:5f:f4:82:6d:b6:48:db:88:
56:9f:80:ed:8a:0a:74:ca:e7:c5:d3:09:20:e1:1e:72:19:f9:
95:0f:be:ff:a2:83:8e:c9:5b:4b:6b:b6:2e:ab:a5:e5:76:c6:
05:eb:4f:43:2f:62:e7:7c:52:4f:65:89:d4:a6:8e:1d:3b:02:
75:55:82:ee:73:41:c8:86:86:71:d2:46:12:5d:2b:46:c0:70:
68:b3:86:c7:f1:5a:29:c5:ce:fd:8f:1b:8f:d4:c5:69:2d:8e:
bc:86:5d:2f:38:44:0c:74:68:2b:d5:ef:20:f4:22:8a:e0:3d:
55:13:55:7d:25:93:b1:14:86:c0:09:e4:f5:8c:e5:63:fc:37:
b5:51:86:4c:69:a8:75:fb:bc:52:89:1e:f8:57:96:d7:99:eb:
ba:93:3b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:16 2024 by rpki-client on console-fra.rpki-client.org