Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/HtbF8S1UenflxKZ07dr1aIqHZBQ.roa
File: HtbF8S1UenflxKZ07dr1aIqHZBQ.roa (raw, json)
Hash identifier: p5d3y5/ZAbjRQIBj7brGf8neXMBBaxtqpQlvKDqc23U=
Subject key identifier: 1E:D6:C5:F1:2D:54:7A:77:E5:C4:A6:74:ED:DA:F5:68:8A:87:64:14
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018A23F2599F8280CA21A5E923117FB02579
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/HtbF8S1UenflxKZ07dr1aIqHZBQ.roa
Signing time: Wed 23 Aug 2023 19:49:59 +0000
ROA not before: Wed 23 Aug 2023 19:49:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208888
IP address blocks: 141.136.63.0/24 maxlen: 24
181.41.144.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:f2:59:9f:82:80:ca:21:a5:e9:23:11:7f:b0:25:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 23 19:49:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ed6c5f12d547a77e5c4a674eddaf5688a876414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:45:ee:86:b8:50:d7:55:f4:aa:ca:ae:2f:29:
30:47:e9:c8:94:85:f5:bb:4e:7b:f5:03:97:6e:ff:
33:99:74:4b:d2:13:2b:a0:4d:91:8c:80:be:c7:74:
f2:5e:91:8e:39:b4:bd:48:fe:a3:61:f4:d4:e4:04:
d6:7b:26:e9:2e:b8:57:dd:4e:a5:bb:d2:f8:b1:91:
c5:57:8d:69:43:71:0a:ef:ff:d0:6f:05:2d:dc:c6:
ba:54:3b:be:d3:86:af:c3:05:80:ff:4b:b2:82:6b:
d1:26:12:45:cd:93:64:94:fc:aa:0f:26:a2:81:38:
e3:a3:01:75:f0:ce:2d:ea:70:87:21:93:e3:fd:aa:
fc:e3:85:78:9f:cb:d5:fa:d2:6e:c3:85:55:0c:cf:
30:f6:a6:1e:4b:92:be:29:bf:f1:f9:31:e3:29:f3:
62:25:36:da:bb:ca:0a:2a:05:db:98:12:96:55:dc:
9b:e8:98:c7:ea:17:1d:05:e6:52:ef:3e:52:d7:e6:
3c:c4:d9:06:65:2c:5f:5f:16:d8:23:60:8a:1b:55:
74:7a:31:8e:ee:78:42:98:3a:55:34:26:06:cb:c6:
b5:ff:d5:ac:84:8d:64:ae:80:54:7f:ec:4d:6f:81:
f5:0f:51:38:f4:6c:5d:d5:50:68:5f:f4:c6:27:f9:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D6:C5:F1:2D:54:7A:77:E5:C4:A6:74:ED:DA:F5:68:8A:87:64:14
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/HtbF8S1UenflxKZ07dr1aIqHZBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.136.63.0/24
181.41.144.0/22
Signature Algorithm: sha256WithRSAEncryption
72:fd:87:8e:62:33:c2:3e:b8:cb:ab:ff:71:92:12:e3:4d:55:
61:f3:df:b9:b7:88:63:95:ca:45:0f:da:19:ff:bd:25:42:44:
f9:03:00:8c:70:e3:84:63:2a:6d:b2:41:90:99:b5:a3:23:3c:
9a:7c:f5:06:13:f3:9c:f5:98:f9:b4:a8:99:c9:a0:a1:12:b6:
7d:d1:6a:d2:00:9d:d5:f9:e0:dc:47:7c:61:48:73:17:2f:cb:
a9:c0:fc:ac:9a:0a:08:e5:9f:dc:5d:6e:fe:d8:fa:14:f0:be:
8c:63:2b:d9:39:c5:84:02:c7:50:89:17:e3:5f:9c:bf:cc:6d:
cf:b0:5c:16:22:40:f4:62:63:26:88:f9:2e:74:c0:55:c4:17:
da:5b:9c:1e:48:89:ab:0c:f9:55:ca:f5:90:f6:4a:2b:97:11:
3e:ed:03:36:29:a7:f3:fc:c9:3c:e8:bc:7a:07:a7:8d:59:5c:
9f:f9:14:48:b3:78:51:f2:f2:4c:20:7b:83:21:7a:aa:5c:c1:
3b:be:3f:72:b6:07:7a:f0:bc:22:92:4f:ab:eb:c0:9f:5d:60:
9c:85:67:35:bf:58:63:01:43:76:8a:b5:e8:f3:c0:6e:2f:af:
07:dd:90:24:69:ac:f3:80:94:0a:b8:63:c9:50:7d:c1:9b:fe:
12:ae:35:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 24 19:57:44 2023 by rpki-client on console-ams.rpki-client.org