Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/hbpXQVGshBWYxhxi4_4ih8egah0.roa
File: hbpXQVGshBWYxhxi4_4ih8egah0.roa (raw, json)
Hash identifier: acIFOK9f5M8WDp88NIXoAWikP/i7XF5EQOO/wodJE/M=
Subject key identifier: 85:BA:57:41:51:AC:84:15:98:C6:1C:62:E3:FE:22:87:C7:A0:6A:1D
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 018CADE72F7412475E33BD79C1F1DFA3A28B
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/hbpXQVGshBWYxhxi4_4ih8egah0.roa
Signing time: Thu 28 Dec 2023 00:50:58 +0000
ROA not before: Thu 28 Dec 2023 00:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 212.116.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ad:e7:2f:74:12:47:5e:33:bd:79:c1:f1:df:a3:a2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Dec 28 00:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85ba574151ac841598c61c62e3fe2287c7a06a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:6a:fb:34:99:00:f8:9f:dc:84:0a:1f:2d:
5b:65:a1:ae:b2:a0:60:b8:73:e5:fe:cd:fd:bf:4b:
76:f0:08:6a:2b:8c:b0:9a:35:45:c2:93:bb:22:3d:
57:e8:a3:8e:07:2d:45:f5:03:c6:13:21:75:14:78:
60:f9:e9:00:a1:ae:80:0a:c0:7f:24:fd:1e:b3:7b:
0d:d9:13:58:6d:58:c1:da:29:27:71:ec:ec:de:50:
4d:53:59:27:c5:34:12:06:62:2c:f9:36:d9:e3:f2:
bb:7e:7c:bf:e6:e1:c1:42:20:91:69:af:ab:d2:19:
84:8c:1f:40:88:67:d6:f8:db:90:86:dd:35:19:a9:
e6:1b:63:5c:55:a6:fa:ad:69:31:a4:e8:50:2a:45:
c2:8e:1e:2e:de:ee:8f:a3:db:34:ed:88:bb:b9:9a:
ef:ff:45:80:71:d2:89:dc:6a:92:b2:ad:d7:b5:3e:
a0:7f:28:3f:f6:58:37:ea:a7:e6:12:36:c2:db:79:
5e:07:cb:63:f1:45:aa:a5:c6:d8:be:14:38:c6:cd:
70:37:9b:0c:9d:cc:35:9c:07:ed:ab:65:04:e2:02:
d9:18:85:b3:a0:4e:87:a4:70:29:d5:98:8f:0d:7b:
60:cd:c5:a6:a3:c6:17:2f:d9:0e:19:be:cf:65:cc:
d8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:BA:57:41:51:AC:84:15:98:C6:1C:62:E3:FE:22:87:C7:A0:6A:1D
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/hbpXQVGshBWYxhxi4_4ih8egah0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:67:9c:85:76:91:dc:af:71:d7:03:8f:45:9d:cb:2c:fb:12:
5d:22:63:fa:81:07:82:58:34:b9:5b:7b:21:ef:38:c6:81:e9:
1d:5f:c5:02:d1:6a:21:5f:0b:f0:f4:61:9c:f0:0f:2b:46:ed:
55:b0:61:fd:9a:64:47:38:4d:e0:6c:b9:97:a8:4d:85:1b:82:
d7:2b:92:26:2e:35:cf:5a:6e:72:b3:2e:f8:54:e7:68:a4:ed:
0f:20:4b:34:3d:3b:cc:c8:56:96:b0:af:71:73:07:c6:07:e3:
61:68:26:75:02:6a:c9:8a:45:bb:cd:43:f2:a7:b2:8a:8e:51:
eb:10:57:b9:9b:f7:b1:0a:83:5d:ba:48:07:5c:d7:5e:10:91:
09:48:23:6f:34:03:8e:97:81:f3:24:22:00:a9:9a:99:f6:89:
44:97:f3:4d:07:1f:cb:da:80:27:a5:85:df:20:43:8e:a7:30:
da:01:d0:c2:64:44:c2:ae:fa:a2:3a:7e:6d:15:23:74:1c:29:
3f:ba:a0:89:3b:08:1e:53:50:1c:0d:b3:12:88:11:d2:8e:0d:
54:c5:72:5b:0f:96:0f:c0:c1:c6:1b:51:f2:67:26:c8:79:31:
e0:90:a9:92:fd:dc:44:22:60:d7:35:91:bd:0e:c0:41:75:c7:
b6:53:fa:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:06 2024 by rpki-client on console-fra.rpki-client.org