Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/HqNXRD8h3iwlFg97edfgHDjytFM.roa
File: HqNXRD8h3iwlFg97edfgHDjytFM.roa (raw, json)
Hash identifier: TA9xq2hnW77GgbjPoZO+JcBX969btYjeIJ2Gh4tN1nw=
Subject key identifier: 1E:A3:57:44:3F:21:DE:2C:25:16:0F:7B:79:D7:E0:1C:38:F2:B4:53
Certificate issuer: /CN=55d08634cfa5e816693c2b79e2e8b8aeebaf5976
Certificate serial: 018E16730786394DA3D5E71195EECAA25143
Authority key identifier: 55:D0:86:34:CF:A5:E8:16:69:3C:2B:79:E2:E8:B8:AE:EB:AF:59:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VdCGNM-l6BZpPCt54ui4ruuvWXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/HqNXRD8h3iwlFg97edfgHDjytFM.roa
Signing time: Thu 07 Mar 2024 01:07:01 +0000
ROA not before: Thu 07 Mar 2024 01:07:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6453
IP address blocks: 185.82.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 16:09:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:16:73:07:86:39:4d:a3:d5:e7:11:95:ee:ca:a2:51:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55d08634cfa5e816693c2b79e2e8b8aeebaf5976
Validity
Not Before: Mar 7 01:07:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ea357443f21de2c25160f7b79d7e01c38f2b453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:61:5d:25:72:75:86:50:48:f2:e5:73:9b:7f:
9e:6a:5c:f0:d5:86:09:de:4b:6a:51:c8:ad:ba:31:
4e:ba:07:44:45:51:e2:bb:e1:ef:fc:cc:20:3b:05:
87:b9:4b:98:49:f4:9e:ed:b9:f1:40:a3:d4:a8:59:
e3:ac:3f:c4:6b:eb:88:1b:64:13:8a:39:b2:71:ff:
4d:b2:14:d8:b4:52:53:6c:b9:2b:cd:7e:0d:25:45:
d0:52:62:72:eb:5f:b9:86:2f:d7:a9:95:2f:4c:98:
88:4b:4f:8b:b4:59:86:83:72:54:02:b8:28:96:dd:
87:66:6f:04:41:b7:f4:cb:99:1b:07:dc:2f:6e:1f:
e6:7a:af:d9:f7:10:b0:4b:46:41:8e:a1:6f:8e:20:
c8:43:ed:5e:ed:06:6a:54:d3:e9:6a:74:23:aa:c0:
b5:85:bd:c8:80:7c:58:ef:fa:b2:ce:a3:ea:2a:62:
3e:30:26:10:62:cb:ff:49:f6:fe:15:07:29:1a:dc:
0a:cd:ba:c1:02:12:06:18:90:68:96:0e:4c:03:d6:
40:cf:79:05:0f:16:15:3e:5c:c4:54:57:69:89:1d:
ba:dd:d0:97:a8:b5:6b:c5:14:9a:61:90:5d:33:40:
0e:15:4e:27:a9:c5:7d:27:2e:69:9b:1b:03:b4:b0:
e2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A3:57:44:3F:21:DE:2C:25:16:0F:7B:79:D7:E0:1C:38:F2:B4:53
X509v3 Authority Key Identifier:
keyid:55:D0:86:34:CF:A5:E8:16:69:3C:2B:79:E2:E8:B8:AE:EB:AF:59:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VdCGNM-l6BZpPCt54ui4ruuvWXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/HqNXRD8h3iwlFg97edfgHDjytFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/VdCGNM-l6BZpPCt54ui4ruuvWXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.242.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:78:6e:bb:1a:bb:e4:5b:09:c1:09:e4:47:59:f2:20:00:53:
05:94:a6:c2:5c:73:f3:bb:b8:fc:d4:b1:e6:24:52:41:34:c5:
90:10:ed:c8:62:1f:2a:bb:a4:06:82:8f:c0:e4:ff:01:16:fe:
b9:ed:4d:a7:6d:3a:3b:6c:3b:76:d4:7b:30:04:56:1f:bc:50:
eb:64:a6:d6:0a:20:53:a5:af:ac:54:27:b9:5e:78:af:a7:96:
d1:e5:95:e1:75:46:bf:91:29:2c:96:51:10:3c:f5:50:bd:64:
fe:da:d1:87:f4:4d:47:cb:db:5b:b7:2a:6d:86:f3:0e:75:f8:
bd:d5:8a:e1:69:d1:09:29:e6:e9:ad:e8:73:b4:b3:87:11:0e:
30:df:af:68:e4:88:48:b8:25:2e:59:ac:6e:4e:20:1b:bc:09:
ac:1e:1c:70:41:67:50:83:95:00:10:95:95:6c:a5:0c:a0:6f:
2c:65:94:5c:17:64:2c:5f:35:8c:37:f2:1a:25:3f:b6:81:b9:
3a:15:68:98:df:39:8a:88:cf:dc:83:d5:cc:9b:53:83:51:c5:
35:cf:fc:9f:95:da:c3:a8:a4:86:3a:53:92:a9:21:49:66:80:
11:07:a0:e9:ef:1f:f0:48:ee:36:1b:8d:97:e3:d9:d6:1c:3c:
7d:1a:75:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 20:15:25 2024 by rpki-client on console-ams.rpki-client.org