Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/HLTy-r5g5sBnsjsaocCXF_HNlVI.roa
File: HLTy-r5g5sBnsjsaocCXF_HNlVI.roa (raw, json)
Hash identifier: mMYDf6zj7fVrxA6+qI68Yy5doeEkLEnhB/dg2WtQbdk=
Subject key identifier: 1C:B4:F2:FA:BE:60:E6:C0:67:B2:3B:1A:A1:C0:97:17:F1:CD:95:52
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0185BA37E39A106D81E5A43FB3A2D0F97850
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/HLTy-r5g5sBnsjsaocCXF_HNlVI.roa
Signing time: Mon 16 Jan 2023 10:55:02 +0000
ROA not before: Mon 16 Jan 2023 10:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 188.255.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 11:20:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ba:37:e3:9a:10:6d:81:e5:a4:3f:b3:a2:d0:f9:78:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 16 10:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cb4f2fabe60e6c067b23b1aa1c09717f1cd9552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ac:c0:05:df:b2:99:8f:b7:bc:fb:2c:5a:2d:
b0:f6:27:0b:b7:1d:49:c4:71:c7:43:17:41:48:f8:
9c:bf:86:24:03:ef:ee:26:65:55:9e:2a:1d:25:63:
57:25:5c:f0:5a:70:13:97:4c:cf:cc:d0:aa:d5:21:
7f:8f:cb:f7:b1:f8:a1:ad:ca:fc:5e:6d:bc:ef:be:
ea:a0:75:bf:a4:92:33:20:7c:65:eb:ee:52:4b:55:
ce:cf:f8:53:d2:05:26:98:37:9b:12:f1:03:fb:8e:
a7:4d:58:19:5f:c4:90:b4:55:ca:9f:a4:f3:4f:11:
ba:09:de:b3:a4:61:d5:58:0e:a0:80:a7:08:cf:36:
03:91:ac:23:8b:5b:19:34:49:37:9e:31:83:96:46:
c7:8b:d8:d3:5c:d8:88:ef:ff:ec:15:af:e5:70:14:
58:20:f6:d3:bb:b1:f7:4e:e2:54:da:fc:fb:3c:fa:
9a:f3:2b:02:03:3b:56:bc:95:6f:da:58:83:9b:81:
73:27:1e:c1:2d:07:c7:50:29:d6:fe:6e:6a:61:34:
1a:b5:97:31:c0:9c:16:4d:c2:43:d0:d1:27:82:1b:
ea:47:5f:79:08:16:33:23:8c:90:20:7e:f1:a2:7c:
df:ce:93:c6:89:fc:3a:14:92:bc:41:a7:4a:a6:b8:
d0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B4:F2:FA:BE:60:E6:C0:67:B2:3B:1A:A1:C0:97:17:F1:CD:95:52
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/HLTy-r5g5sBnsjsaocCXF_HNlVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.229.0/24
Signature Algorithm: sha256WithRSAEncryption
36:fa:95:a7:50:9f:63:9c:43:c4:72:9e:8e:5d:1f:b9:c1:bf:
b2:75:1a:be:5a:0c:ca:d7:d5:fd:f1:f6:bb:c4:a1:39:1c:23:
e5:17:c2:42:00:22:34:38:a2:8c:7e:79:8f:d3:cb:21:83:1c:
f8:e1:34:b4:54:a4:64:8f:ee:da:72:c5:8c:b4:19:b3:80:fb:
4b:47:43:c9:8e:cb:63:59:b3:e8:1e:e8:27:0c:97:c6:cf:77:
a9:79:12:d8:2b:b9:c7:00:d3:c0:2e:e8:19:73:77:a0:d3:ed:
30:e1:3a:e4:2e:3c:04:2a:b8:d5:e5:3d:d9:85:74:db:08:0b:
ae:04:b2:5a:92:7f:4c:5c:72:4c:80:8a:42:0c:a0:66:71:e1:
de:8f:73:e1:65:b8:42:19:a6:d6:a1:d6:4c:4e:5c:b0:e2:54:
1b:f5:d4:cf:c7:0e:8a:6d:ed:8b:3d:58:6d:b4:24:69:7c:9c:
3a:c2:2b:06:14:28:b2:6d:a1:20:47:3a:a5:c7:13:2d:68:40:
18:f8:4d:35:6f:6e:9f:66:c7:39:4e:cd:97:79:e3:f1:2b:6d:
0e:5d:21:26:a1:4d:9c:49:5f:e5:f3:69:35:ac:bc:87:d4:e5:
07:4a:3e:8f:23:bf:02:ab:50:18:7c:00:69:70:23:19:81:f2:
5b:6b:30:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org