Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/HuGAos5YSX61ECP3BKG95USICvI.roa
File: HuGAos5YSX61ECP3BKG95USICvI.roa (raw, json)
Hash identifier: FaplqNLZocRrINhUXxOjLEuyn85JJ/slZN1oINYQWaY=
Subject key identifier: 1E:E1:80:A2:CE:58:49:7E:B5:10:23:F7:04:A1:BD:E5:44:88:0A:F2
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 018572559AF814E8AEC90442800C29F3E883
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/HuGAos5YSX61ECP3BKG95USICvI.roa
Signing time: Mon 02 Jan 2023 11:54:50 +0000
ROA not before: Mon 02 Jan 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8970
IP address blocks: 156.17.0.0/16 maxlen: 16
2001:a48::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9a:f8:14:e8:ae:c9:04:42:80:0c:29:f3:e8:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 2 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ee180a2ce58497eb51023f704a1bde544880af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0a:24:1e:d5:88:7e:ee:fd:ae:ff:56:58:8b:
31:5d:74:99:7a:4f:93:20:f7:96:e9:c3:61:b5:a0:
42:36:03:d5:30:b8:c2:bb:9d:00:a2:79:95:bb:63:
a5:f5:9f:06:34:53:84:f3:19:8f:26:1b:c2:65:e9:
f5:54:15:ca:28:f4:08:39:b5:4d:7c:03:a7:21:99:
7a:8d:1d:ab:4c:17:ea:8d:8b:22:89:d3:a1:6c:ce:
af:48:e1:83:ae:2c:a6:a1:0e:be:e0:32:58:bc:e6:
4c:e4:bd:67:5c:a1:af:20:c3:4c:e6:a5:8e:31:e0:
a4:4e:96:b6:d7:3d:2b:5e:50:aa:83:db:df:14:a3:
a1:3c:56:66:40:0d:fa:81:00:9c:c1:c5:ca:06:18:
5f:6e:42:60:21:1d:08:e0:9b:26:5e:29:31:8d:bd:
a2:5d:3b:d3:c8:84:94:a9:2f:1a:95:f2:a1:e8:d2:
c4:bd:1c:89:85:35:5c:95:d2:aa:89:a6:d5:d0:15:
e5:fb:b2:0d:d8:e1:2d:d8:0e:9d:f6:a1:7e:81:3a:
b0:70:22:50:61:10:c9:ca:f2:f9:25:d8:3f:61:cd:
fd:a0:3d:59:cd:e6:d1:b8:16:25:4d:96:0c:ea:56:
af:2b:aa:9c:ba:70:0b:38:dc:14:a7:d9:55:d0:43:
17:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E1:80:A2:CE:58:49:7E:B5:10:23:F7:04:A1:BD:E5:44:88:0A:F2
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/HuGAos5YSX61ECP3BKG95USICvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.17.0.0/16
IPv6:
2001:a48::/32
Signature Algorithm: sha256WithRSAEncryption
b3:21:d0:05:e6:9f:c1:a5:95:0b:fe:b4:b1:c0:b7:86:10:c7:
be:73:9e:7f:2a:81:21:d0:52:07:b9:3e:ad:2c:6f:12:e0:d3:
c6:ed:fd:1b:7c:98:a7:81:27:f3:f9:d7:d8:ff:c3:53:cb:4b:
91:ba:0e:41:c9:9e:d6:8e:67:30:02:e6:b5:34:ae:29:6d:70:
e5:52:ee:3d:1f:fd:61:6c:90:19:9a:43:f5:fc:f9:74:28:99:
c0:e5:05:2c:f5:58:c7:fe:31:f0:db:c5:c8:6c:b3:9b:81:09:
16:29:7f:8f:0a:13:a5:b7:98:bd:03:77:0a:9d:4a:78:66:68:
23:a7:39:36:53:57:1b:9b:91:f5:ff:f3:30:f2:12:e8:71:ff:
59:e0:4f:a0:83:da:91:29:41:4c:46:9a:ca:60:2e:a4:f5:54:
b1:05:9c:5a:c7:4f:22:d7:19:38:00:f3:78:4d:40:87:eb:b2:
8b:05:ee:1a:cc:61:45:d8:32:36:66:1e:db:fe:f6:4a:91:27:
60:04:e4:26:6d:f8:c7:ec:2a:57:5d:8f:66:79:6f:87:4a:99:
49:18:16:fa:b1:05:54:5a:ee:d7:b2:48:d2:d7:34:53:65:5b:
00:eb:1b:a3:4b:81:d9:02:dd:a5:91:03:84:9d:71:25:5c:25:
57:ab:11:94
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:50 2024 by rpki-client on console-fra.rpki-client.org