Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/Hcno1YeC-K16hlochHUosJCr_ug.roa
File: Hcno1YeC-K16hlochHUosJCr_ug.roa (raw, json)
Hash identifier: q4KrkeIc+VPpkqBEN3uIhxF9rh1HD2HGQ0eK/Ai52tk=
Subject key identifier: 1D:C9:E8:D5:87:82:F8:AD:7A:86:5A:1C:84:75:28:B0:90:AB:FE:E8
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 018B13720F5B10D2356B2D5F1881EFD22538
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/Hcno1YeC-K16hlochHUosJCr_ug.roa
Signing time: Mon 09 Oct 2023 07:58:43 +0000
ROA not before: Mon 09 Oct 2023 07:58:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 86.62.31.0/24 maxlen: 24
86.62.28.0/24 maxlen: 24
86.62.29.0/24 maxlen: 24
86.62.30.0/24 maxlen: 24
185.81.127.0/24 maxlen: 24
194.107.161.0/24 maxlen: 24
194.107.162.0/24 maxlen: 24
194.36.32.0/23 maxlen: 23
45.80.28.0/24 maxlen: 24
45.80.30.0/24 maxlen: 24
45.80.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 09:36:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:13:72:0f:5b:10:d2:35:6b:2d:5f:18:81:ef:d2:25:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Oct 9 07:58:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1dc9e8d58782f8ad7a865a1c847528b090abfee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1c:2d:c6:ed:e2:ce:33:f3:61:b3:80:ac:9a:
fe:3a:94:9a:f8:05:47:2f:d4:3a:a3:c4:90:3d:42:
5c:d0:35:35:4d:11:fa:f8:3c:cb:f8:d2:f8:1a:40:
f3:37:53:1b:ac:fa:a6:c9:9d:04:77:45:ae:5b:52:
34:5f:8c:56:9e:59:b0:0f:a9:a0:dd:a3:eb:ef:bd:
3e:4d:94:32:4f:04:d3:59:da:6f:38:e2:00:e4:44:
24:73:40:4b:bc:b4:43:75:8a:ee:68:8b:3f:c6:3e:
d5:af:ff:87:7e:d1:0c:7d:5c:22:a0:40:70:a6:d8:
b1:23:a4:0b:e4:a2:5f:ac:0a:ab:ff:c9:2a:73:65:
ed:b9:2b:16:a8:eb:d7:73:97:ce:04:65:b8:e1:31:
ad:10:78:5a:79:b9:3b:98:93:f9:f7:f0:f9:19:f5:
95:27:f8:84:9d:81:88:aa:d5:4a:2a:77:90:b2:ff:
b3:60:49:2a:0d:e1:23:50:ef:11:86:3d:27:69:d0:
b1:7d:16:40:40:4b:06:b7:57:78:c0:b2:ac:bc:5d:
17:c9:d2:e3:b9:82:8f:4d:56:ed:f1:e7:b7:4e:1b:
8b:9f:54:11:2d:a8:55:fb:94:06:27:f0:3f:0c:b3:
60:ba:14:9c:89:f4:79:88:ef:cf:87:d8:a3:c8:7e:
cc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C9:E8:D5:87:82:F8:AD:7A:86:5A:1C:84:75:28:B0:90:AB:FE:E8
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/Hcno1YeC-K16hlochHUosJCr_ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.28.0/24
45.80.30.0/23
86.62.28.0/22
185.81.127.0/24
194.36.32.0/23
194.107.161.0-194.107.162.255
Signature Algorithm: sha256WithRSAEncryption
4a:90:9a:e3:2c:15:b8:44:12:00:bc:fe:9c:85:08:d4:f3:0f:
15:4a:4f:f3:c6:44:f8:d2:26:de:8a:58:f2:6a:de:7d:a5:ed:
1f:30:5a:63:47:21:7c:e7:ec:9b:e2:e3:be:a8:91:30:93:7c:
c1:d1:4a:8d:a2:37:ef:fe:d6:0e:94:f3:85:8c:b7:e2:0f:54:
08:8e:a2:da:89:33:fa:00:de:2a:de:38:66:e7:39:40:b1:67:
7b:e9:51:29:81:2f:b6:50:b2:7f:5e:3f:fd:28:0c:f0:4b:10:
ed:cb:a7:b8:25:90:5e:43:e0:32:ab:28:02:8d:58:a6:e8:a8:
9d:66:1d:cc:2e:72:25:66:6c:bd:a6:b5:8f:ac:e2:bc:ad:45:
12:8e:c4:c7:ab:67:f6:87:12:7e:a9:20:22:64:b1:a3:38:13:
11:dd:7a:9d:90:f2:bf:3c:f0:e7:bf:58:09:1d:a3:81:7b:2e:
31:bd:4d:f8:2d:55:4b:a6:66:55:75:eb:6a:16:c0:0b:b3:06:
55:68:28:5a:8d:7e:dc:03:a7:4f:8f:be:4a:8c:9a:51:ca:96:
b3:22:1c:45:af:1c:b5:ab:ff:18:1b:8b:ef:54:6c:06:64:38:
df:09:59:db:5e:62:00:8e:8c:01:1a:ae:b4:cf:38:d3:ce:78:
21:57:3f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:38 2024 by rpki-client on console-ams.rpki-client.org