Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/HWw8b-Wa85dFbQUIiDevhPSGiX8.roa
File: HWw8b-Wa85dFbQUIiDevhPSGiX8.roa (raw, json)
Hash identifier: wwGZAB4dD9pMxtsAw51Zc4mpAGWRcoJhtdr+qULgG2s=
Subject key identifier: 1D:6C:3C:6F:E5:9A:F3:97:45:6D:05:08:88:37:AF:84:F4:86:89:7F
Certificate issuer: /CN=607548c37abebc58b928ed285433d69e95df9c3b
Certificate serial: 0186D2EA9D6598F1737264A7681FA897CB64
Authority key identifier: 60:75:48:C3:7A:BE:BC:58:B9:28:ED:28:54:33:D6:9E:95:DF:9C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHVIw3q-vFi5KO0oVDPWnpXfnDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/HWw8b-Wa85dFbQUIiDevhPSGiX8.roa
Signing time: Sat 11 Mar 2023 23:03:56 +0000
ROA not before: Sat 11 Mar 2023 23:03:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31294
IP address blocks: 83.220.160.0/22 maxlen: 22
2a01:b8a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d2:ea:9d:65:98:f1:73:72:64:a7:68:1f:a8:97:cb:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607548c37abebc58b928ed285433d69e95df9c3b
Validity
Not Before: Mar 11 23:03:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d6c3c6fe59af397456d05088837af84f486897f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5f:3d:21:d3:11:3a:c0:a2:ee:5b:31:4f:54:
a7:20:fd:94:7e:88:4c:e0:7d:76:1a:1f:02:d1:1d:
c2:59:d9:f4:ae:83:87:5e:5d:be:51:1b:03:d1:33:
c0:f8:14:32:c1:8a:9b:5d:4d:34:53:46:d2:e5:ae:
bb:11:ac:0b:78:8e:0d:75:56:d1:16:b9:02:65:f5:
31:ed:3e:3d:25:5b:0e:ff:a8:1a:75:a9:82:1e:cf:
61:89:7e:fa:67:68:21:f1:00:f9:6d:9e:0c:0b:50:
cc:4d:97:90:63:a1:3d:86:b4:b2:ee:64:4a:94:ba:
b5:26:04:9b:60:d7:c2:97:f6:e3:ac:c3:47:19:de:
45:e5:79:71:89:37:c7:eb:58:f3:a4:d2:2e:fd:2d:
e1:d1:af:71:25:1c:a4:7d:9a:81:e2:75:de:15:e2:
e5:90:8b:91:d8:88:44:1e:15:88:5e:d6:d1:e7:78:
03:44:28:e1:68:96:ae:2b:c3:81:aa:b4:3f:2c:87:
ab:39:28:07:f9:49:63:27:63:92:18:fd:9a:30:b8:
86:78:c0:17:8a:6f:3b:42:8c:e8:32:79:bd:87:87:
cc:9e:2d:14:0c:f8:76:f9:75:bd:e6:f9:87:85:02:
63:0b:67:e9:e7:af:5e:16:de:2f:82:e9:e6:09:79:
1f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6C:3C:6F:E5:9A:F3:97:45:6D:05:08:88:37:AF:84:F4:86:89:7F
X509v3 Authority Key Identifier:
keyid:60:75:48:C3:7A:BE:BC:58:B9:28:ED:28:54:33:D6:9E:95:DF:9C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHVIw3q-vFi5KO0oVDPWnpXfnDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/HWw8b-Wa85dFbQUIiDevhPSGiX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/YHVIw3q-vFi5KO0oVDPWnpXfnDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.160.0/22
IPv6:
2a01:b8a0::/32
Signature Algorithm: sha256WithRSAEncryption
62:48:0c:c2:42:26:a6:56:c8:0c:54:d1:0b:5c:72:e1:97:8a:
8d:f2:2c:95:77:64:82:82:15:96:ff:d5:91:82:56:1b:ae:77:
49:a9:5e:cd:fd:91:e6:fe:e0:1c:05:5f:74:4e:ea:1b:6f:d9:
92:b4:ea:ed:0a:18:df:1b:4c:d4:91:b7:c9:f6:9f:c9:e3:b7:
5a:f3:32:84:16:cd:df:43:e8:41:02:41:79:49:f8:5c:5e:ae:
ee:19:81:67:78:ba:75:74:0d:7d:2f:c8:3d:d5:38:6e:7b:38:
44:e0:36:b5:01:1a:f5:bd:ee:7a:ab:11:f9:30:ff:20:87:ca:
03:4b:b7:5b:a3:92:7d:b6:af:61:e9:a4:22:e9:c4:77:71:a3:
f7:20:2a:4e:3f:04:24:ca:04:95:21:da:56:78:f7:42:55:63:
33:20:23:ba:16:ee:88:ba:07:1f:19:ff:83:05:c5:93:21:42:
57:b6:2c:d2:d2:34:1e:c0:fc:15:c2:32:a1:d4:26:1e:76:89:
84:3c:b6:25:d8:a2:64:89:97:1e:f0:81:b7:25:27:ac:f5:e8:
36:0f:90:98:df:9d:32:84:ab:e6:95:d1:65:d3:a3:4e:77:7c:
d9:32:93:5c:96:82:9c:d4:21:37:4a:ea:82:90:d8:20:3a:90:
f3:22:b9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:48 2024 by rpki-client on console-fra.rpki-client.org