Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/hVLzejtmgsseAT7fJ3O3OTFw9sk.roa
File: hVLzejtmgsseAT7fJ3O3OTFw9sk.roa (raw, json)
Hash identifier: 7hB96hbs2Dr5b8fOkI9sI28o/1m6NNNEBnN/aCThspQ=
Subject key identifier: 85:52:F3:7A:3B:66:82:CB:1E:01:3E:DF:27:73:B7:39:31:70:F6:C9
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018807523B2153ABBD2EF3A8286A28316172
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/hVLzejtmgsseAT7fJ3O3OTFw9sk.roa
Signing time: Wed 10 May 2023 20:20:09 +0000
ROA not before: Wed 10 May 2023 20:20:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59912
IP address blocks: 2.189.164.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:07:52:3b:21:53:ab:bd:2e:f3:a8:28:6a:28:31:61:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: May 10 20:20:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8552f37a3b6682cb1e013edf2773b7393170f6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cc:73:a5:08:e0:f6:38:4c:bd:1a:e5:a1:cb:
0f:fe:ee:73:ee:45:62:8b:81:9c:01:54:84:ba:8b:
ad:61:b1:ea:14:97:7b:b8:87:14:6a:68:d6:09:a6:
57:a6:a6:be:d5:de:c8:aa:5b:07:c1:65:d4:1d:56:
da:9f:7e:06:76:7d:2d:f2:5f:7f:e6:28:f9:10:d9:
90:32:3b:f0:9b:df:0a:df:e4:d7:ed:cd:2e:75:77:
50:f6:ea:8b:dd:55:f2:84:57:fe:6a:75:02:c9:b4:
3a:7d:23:c6:ca:d9:32:36:e5:95:a5:75:aa:c3:3d:
23:d1:6f:ac:05:a3:4d:fd:8e:13:79:6a:6c:3a:89:
19:a8:34:dd:d0:45:ed:48:62:1e:aa:4d:5f:54:7e:
d0:40:76:27:6b:5f:07:1c:97:d9:5a:23:93:b9:f3:
31:6e:e0:15:2a:d7:9f:67:c9:83:30:de:9a:95:ff:
63:63:fe:65:44:dc:4e:4a:4e:86:c2:6a:df:1c:87:
cb:3a:19:6f:4b:9f:a4:69:65:74:a6:bb:42:17:a4:
d0:d6:cb:5e:df:75:f1:07:fc:1d:20:2b:73:d8:38:
3d:d6:4a:fc:f2:b4:aa:2e:94:84:44:96:e2:07:7a:
13:a2:ba:21:54:db:d8:31:06:f0:92:e8:bc:b4:b3:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:52:F3:7A:3B:66:82:CB:1E:01:3E:DF:27:73:B7:39:31:70:F6:C9
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/hVLzejtmgsseAT7fJ3O3OTFw9sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.189.164.0/23
Signature Algorithm: sha256WithRSAEncryption
35:67:a8:c0:dd:e5:a6:40:17:96:f6:be:99:ef:5e:24:18:06:
12:5d:7a:92:2e:1f:59:86:7c:d3:5b:5b:f0:36:c3:08:70:34:
f4:4a:81:4d:ee:e6:6c:45:4b:b1:58:a6:65:cc:22:8e:e9:d4:
2b:ee:9b:05:54:2f:a0:8d:c8:89:40:42:ac:e6:00:49:fa:d9:
4b:2f:aa:b4:59:18:d4:bf:f4:e0:63:0e:3e:c3:49:43:2f:3d:
66:8e:49:48:80:84:76:b0:9c:10:a9:3a:9f:14:74:95:0c:31:
d1:b3:cd:c6:70:86:db:9e:df:26:8a:fe:54:b0:13:81:40:98:
96:60:8e:48:aa:ee:77:6b:83:61:bd:f2:e3:6c:4d:0b:7c:de:
1c:a2:25:4e:44:fa:38:d6:aa:1e:27:0f:8f:7b:f8:d8:8f:0d:
6d:47:1b:29:b0:03:04:f1:32:e3:e9:50:16:99:45:27:ad:ca:
dc:9d:b4:ea:6c:51:bc:01:49:af:eb:38:e7:98:5b:49:1b:22:
2a:ab:67:31:db:38:4d:74:5b:58:0a:66:be:8d:97:1b:7e:00:
e0:c8:df:7b:b9:9c:85:4a:d3:e5:c5:83:17:07:b4:f0:dc:41:
d0:f6:b7:32:ce:54:1e:97:f4:61:0e:80:31:c0:0d:1a:3e:ab:
2d:8e:19:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:53 2024 by rpki-client on console-ams.rpki-client.org