Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/hkEqzL-CWAaVZhGgIre4PPyTSaw.roa
File: hkEqzL-CWAaVZhGgIre4PPyTSaw.roa (raw, json)
Hash identifier: 6C9SUPzLtPxDYA7U05iWrzprFPYzCcdAZZE2IaOHrbU=
Subject key identifier: 86:41:2A:CC:BF:82:58:06:95:66:11:A0:22:B7:B8:3C:FC:93:49:AC
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 01893ED538C2A90DCA6E653812119D284CB3
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/hkEqzL-CWAaVZhGgIre4PPyTSaw.roa
Signing time: Mon 10 Jul 2023 08:05:08 +0000
ROA not before: Mon 10 Jul 2023 08:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 5.105.128.0/24 maxlen: 24
217.67.78.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 20:37:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3e:d5:38:c2:a9:0d:ca:6e:65:38:12:11:9d:28:4c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 10 08:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86412accbf825806956611a022b7b83cfc9349ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c0:01:cd:42:69:d3:0f:e1:d3:42:70:5a:ad:
24:b5:0a:5b:44:b5:e2:eb:03:f7:15:72:cf:4a:dd:
7b:06:89:a0:f2:90:a9:0a:7c:3e:af:f1:48:82:91:
e3:73:7f:89:e8:4e:35:01:53:70:42:1c:12:6b:0e:
bc:9e:7c:56:c0:a1:ab:18:e2:23:12:ae:6b:33:92:
56:41:23:99:a6:c9:4d:59:12:99:bf:c3:02:74:bc:
7f:67:43:91:34:c4:84:ce:5e:5e:51:8c:1f:48:2a:
92:b3:16:d9:69:71:ed:d5:ee:18:89:52:9e:d9:1a:
8f:ae:a3:a1:0c:26:99:05:91:58:2d:ea:3e:3c:a5:
5b:59:4c:10:e7:06:5a:9e:b7:cb:75:14:2a:db:41:
4f:e9:bb:be:97:ce:79:b6:ed:c7:6c:25:ef:a8:7b:
a5:3c:92:3a:b4:54:c1:d4:47:36:82:7d:99:30:a5:
95:eb:2f:49:6c:c6:1c:a2:55:a2:0b:b1:a3:6e:e6:
56:d9:1d:76:b0:2f:8c:80:26:83:61:c2:0b:73:35:
19:09:64:49:55:46:a6:b4:62:37:d0:b1:fe:d6:e2:
5c:82:64:87:53:d6:f7:62:85:37:a4:0c:92:b5:de:
cf:be:66:98:42:26:3f:ff:64:3c:a7:c9:01:b7:84:
66:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:41:2A:CC:BF:82:58:06:95:66:11:A0:22:B7:B8:3C:FC:93:49:AC
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/hkEqzL-CWAaVZhGgIre4PPyTSaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.128.0/24
217.67.78.0/23
Signature Algorithm: sha256WithRSAEncryption
30:af:59:b2:06:de:6e:de:27:1e:8a:1d:e8:80:08:b8:a5:17:
22:b5:70:18:bd:e5:93:1a:48:27:29:93:ca:b6:30:78:ae:a1:
22:1c:bf:d5:c2:13:f0:cf:9e:9b:8d:fd:60:16:3e:94:ca:6a:
25:cb:1c:af:f0:f7:86:23:bd:96:00:2c:f8:fe:d0:a0:ee:4a:
35:db:9c:47:9c:d3:c6:a7:12:e4:2b:7f:73:6e:98:70:3f:7e:
77:06:e0:8d:8d:f2:04:c3:81:35:12:39:85:03:25:36:4f:fb:
65:0d:4f:ac:46:a3:4a:80:fb:6a:33:67:96:41:d8:13:e0:be:
23:73:bd:83:af:25:aa:99:66:38:91:21:79:14:0d:d8:43:d3:
54:31:76:c8:3f:8f:ea:99:23:33:e0:98:69:8c:77:bf:ef:23:
02:a6:85:d5:e6:78:be:b2:9a:c9:9d:e0:1e:e2:e6:a3:38:62:
5c:cb:69:12:01:d9:22:3f:3c:9c:f7:d7:22:2d:38:ae:d4:29:
01:ce:b7:82:6b:ab:74:59:50:cc:c6:db:e3:0c:5d:36:f1:13:
93:96:31:00:10:21:13:ff:d8:d9:0a:b0:19:91:bf:20:60:ff:
b3:71:18:ef:85:34:17:f7:b5:9f:2e:6d:5e:af:77:9a:6b:66:
44:7f:d9:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:58 2024 by rpki-client on console-ams.rpki-client.org