Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/HvH08ko125RpiiNz4BlD7sJjBp0.roa
File: HvH08ko125RpiiNz4BlD7sJjBp0.roa (raw, json)
Hash identifier: HpwGOVf81zfrfEisijvsSzqAREmHnHKAlH6y8x+YgA0=
Subject key identifier: 1E:F1:F4:F2:4A:35:DB:94:69:8A:23:73:E0:19:43:EE:C2:63:06:9D
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 0188AF7167CD3ABE416766D65FACAC85752D
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/HvH08ko125RpiiNz4BlD7sJjBp0.roa
Signing time: Mon 12 Jun 2023 11:50:24 +0000
ROA not before: Mon 12 Jun 2023 11:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57866
IP address blocks: 193.37.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 16 Nov 2023 05:48:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:71:67:cd:3a:be:41:67:66:d6:5f:ac:ac:85:75:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Jun 12 11:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ef1f4f24a35db94698a2373e01943eec263069d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7e:d1:4e:e0:9b:fb:2a:85:1e:0c:2e:59:f5:
8f:f1:94:a5:ea:13:41:28:20:7f:e5:df:6a:cd:b0:
5a:20:66:7f:0a:36:c9:5b:79:33:be:14:52:28:2c:
fb:b1:ef:4f:22:7d:f0:f0:af:08:41:af:8b:89:c9:
a6:37:a9:3c:86:dd:2b:7e:c5:62:2b:46:a1:57:b2:
b1:cf:46:45:e6:60:6d:24:ff:e7:fa:6d:b0:62:22:
b4:33:d2:25:cb:18:21:c8:a6:f6:0d:3c:63:7a:3f:
d5:22:36:8c:8c:6b:da:a8:d3:18:02:ca:c3:38:f6:
ee:ca:5d:06:0e:63:ee:93:0d:4e:5c:bf:03:47:4d:
04:5b:e6:3b:46:a3:ef:c1:1e:df:fa:6c:62:b7:16:
0e:e1:c6:7a:c9:a0:56:76:07:37:b9:73:62:8e:c2:
f2:b0:30:52:05:a5:61:23:20:e5:6a:9d:79:c9:e5:
2d:d5:42:ba:fb:70:12:5e:21:99:6a:a7:37:be:22:
67:10:c2:a4:db:ab:56:e3:5f:63:41:f7:1e:63:f3:
e9:da:56:9d:c1:7a:29:7a:72:d4:79:70:55:30:a9:
34:f5:4b:56:fd:32:fc:ed:20:ba:77:f7:5b:f8:b5:
41:fb:0d:37:ad:96:67:3c:41:0e:82:c5:7e:a6:90:
9f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F1:F4:F2:4A:35:DB:94:69:8A:23:73:E0:19:43:EE:C2:63:06:9D
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/HvH08ko125RpiiNz4BlD7sJjBp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.216.0/22
Signature Algorithm: sha256WithRSAEncryption
28:0b:2f:34:b6:a2:35:dc:72:8b:0d:95:d5:0b:26:7b:eb:88:
98:56:7c:a8:ee:d2:83:62:a4:d5:47:22:5b:26:b8:4e:1e:f6:
3f:63:46:16:08:45:5f:e0:fb:66:95:a0:5e:4f:5d:c0:ec:85:
32:02:54:25:df:9c:2b:98:32:14:8a:27:9f:f0:e0:40:62:d3:
c0:48:2a:be:60:0d:5c:6a:b4:96:26:54:8f:ff:3a:c8:76:59:
e0:00:ed:2d:78:86:2e:26:83:6c:72:4d:c3:6c:e5:fe:97:52:
fe:3e:29:0a:5f:61:d9:9a:37:75:ea:24:c3:a6:e3:26:fe:b6:
0d:51:1d:2e:40:78:42:ef:61:21:61:1f:61:b3:6d:4d:e8:c7:
03:9a:4c:94:4e:79:18:5e:27:18:c2:dc:e1:dc:04:1f:bd:eb:
a9:d7:69:03:6c:d0:98:2d:19:a1:e9:db:be:5a:7a:88:0b:cf:
53:2f:07:2a:6c:da:69:ce:4d:b5:00:b2:1e:20:7a:26:e0:a4:
61:aa:16:cd:21:1d:a9:ec:97:93:47:21:0c:8c:19:0c:00:ec:
03:cf:88:9b:63:f6:d1:7f:76:96:d7:ec:eb:16:8b:48:69:b9:
41:0a:67:43:fa:ea:97:41:43:81:96:b5:7a:42:ef:9e:79:93:
0e:da:f8:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:15 2024 by rpki-client on console-ams.rpki-client.org