Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/HIKWDdeJzNnQDIBaRydseoGtZjs.roa
File: HIKWDdeJzNnQDIBaRydseoGtZjs.roa (raw, json)
Hash identifier: 0pizltZsdM/yUS4WLXhyqCQJOc3njnEhcYeGYeR7rHk=
Subject key identifier: 1C:82:96:0D:D7:89:CC:D9:D0:0C:80:5A:47:27:6C:7A:81:AD:66:3B
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 01856F9DDD0FDF7C46ED4D74217E0EC4A560
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/HIKWDdeJzNnQDIBaRydseoGtZjs.roa
Signing time: Sun 01 Jan 2023 23:14:54 +0000
ROA not before: Sun 01 Jan 2023 23:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47448
IP address blocks: 213.187.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:dd:0f:df:7c:46:ed:4d:74:21:7e:0e:c4:a5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: Jan 1 23:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c82960dd789ccd9d00c805a47276c7a81ad663b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:75:94:37:e7:79:65:e1:7f:29:23:4e:aa:d3:
93:40:a1:cb:71:36:8a:15:d7:67:c6:35:4a:79:43:
33:63:e8:61:72:ca:9b:63:32:9d:2b:25:99:e1:55:
3b:08:02:b9:a0:6a:f9:49:b9:3c:dd:26:c9:62:71:
0b:ff:d6:a2:02:37:be:1a:b6:0e:48:de:a7:48:fb:
12:dd:3c:06:80:7b:e3:82:97:e4:3c:26:4b:15:0c:
6c:ee:16:01:c4:90:ac:53:47:a7:87:65:3d:9d:77:
8b:70:40:60:03:a4:e4:c4:0d:e7:c3:a9:45:e3:f0:
ab:99:dc:ac:d5:3e:40:58:03:09:49:ab:84:a5:0a:
49:52:64:25:fd:23:c2:17:8b:cb:33:3c:94:72:50:
87:3b:80:f0:04:ba:f0:e9:19:ca:1b:9e:bf:6c:02:
3a:1b:26:97:60:14:32:6e:f5:83:6b:c1:46:fb:39:
35:42:da:18:dd:ba:6c:b3:d8:cd:ea:10:e5:fa:11:
8d:84:cf:f4:4b:db:b1:e8:d0:5a:37:38:93:10:19:
7f:ec:e0:d0:b3:04:0b:63:97:7e:96:12:77:83:43:
72:8b:a7:d7:d5:21:96:d9:af:00:a6:9e:61:fc:9c:
e9:0b:a4:ef:f5:cf:26:a2:a8:36:5a:26:ed:d7:7d:
72:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:82:96:0D:D7:89:CC:D9:D0:0C:80:5A:47:27:6C:7A:81:AD:66:3B
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/HIKWDdeJzNnQDIBaRydseoGtZjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.187.234.0/24
Signature Algorithm: sha256WithRSAEncryption
09:e2:fb:4b:dd:91:fc:75:db:0b:ae:b2:c5:ee:2f:54:e7:eb:
32:24:23:c7:34:09:dc:34:3d:dd:44:e5:1c:a1:f1:14:1f:42:
e0:d0:8e:54:97:cb:f2:c8:5b:17:da:da:05:ac:b8:be:09:03:
b1:ed:3f:c6:6e:9f:aa:ed:d3:c7:d5:10:5c:ab:f4:c7:43:b8:
66:0a:89:c5:74:90:db:fc:b2:90:ab:fb:3b:34:e2:61:8b:17:
6c:50:7c:66:c9:2d:05:23:12:b9:be:d3:c4:9a:8f:a3:84:dc:
dd:b4:40:22:18:9d:04:16:46:83:70:a4:3a:ca:fc:3e:ef:e6:
15:b8:53:77:98:10:21:bf:fa:f9:2d:25:d8:35:7f:c3:e2:ed:
6b:1f:78:8b:13:a3:05:44:ae:91:c6:63:61:d7:d9:27:4b:24:
d0:f6:f7:3a:b1:c9:bb:88:d2:9e:8a:e9:01:5d:41:74:53:f2:
cf:b0:5f:ae:31:da:73:53:e7:dc:a5:9b:2d:5b:2c:20:2b:84:
06:6a:9d:9c:27:90:37:78:35:96:d2:cc:2e:6b:55:56:bc:f1:
c6:4f:f4:ed:4e:1b:cc:70:18:2b:88:30:4e:b5:61:74:9c:90:
54:4f:70:bc:f3:53:16:3f:fe:1d:74:56:4c:b8:a8:eb:e1:70:
f1:f0:ea:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org