Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hLIPhtn_0IKORXUcKhXOlmJwxIw.roa
File: hLIPhtn_0IKORXUcKhXOlmJwxIw.roa (raw, json)
Hash identifier: IAApNG0Uki9v0N+kO5s+qZ8A3sg2FpV0vTafszZB370=
Subject key identifier: 84:B2:0F:86:D9:FF:D0:82:8E:45:75:1C:2A:15:CE:96:62:70:C4:8C
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018CC56E1D2A0F031D801CD680B39F005631
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hLIPhtn_0IKORXUcKhXOlmJwxIw.roa
Signing time: Mon 01 Jan 2024 14:29:37 +0000
ROA not before: Mon 01 Jan 2024 14:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 266044
IP address blocks: 141.136.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 19:06:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:1d:2a:0f:03:1d:80:1c:d6:80:b3:9f:00:56:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 14:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84b20f86d9ffd0828e45751c2a15ce966270c48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:03:57:6f:30:84:48:56:be:d6:7f:bf:ff:43:
f6:ea:a5:9e:60:f4:0d:1f:94:00:7e:0b:89:0f:5b:
34:34:74:2f:4b:d2:bb:3d:6d:2a:cc:04:f6:b6:c5:
32:1e:75:ca:e1:72:8f:5d:41:54:b7:55:e2:9b:f1:
3c:a5:e6:9e:c2:7e:9d:0b:57:a3:58:42:17:6d:9b:
31:91:fb:a2:fa:e9:0f:d7:55:83:a3:3c:a8:cf:4c:
4f:3c:1a:5f:c3:19:86:55:81:53:b7:16:8a:ec:64:
3e:ae:74:c6:7f:ee:86:06:3d:97:18:8d:f9:7f:45:
7f:57:3b:bd:d4:7c:1e:b4:fc:f6:39:25:62:c9:76:
66:0e:b3:39:58:54:28:a6:30:e2:2a:ad:ac:4a:14:
5c:b2:74:35:e5:06:c3:14:bf:0a:f3:34:f1:81:98:
ef:ca:c8:c2:aa:3a:c1:85:bc:0a:8e:87:16:ac:44:
08:97:ef:30:22:4b:4b:f5:0a:67:9b:e5:30:34:48:
fb:52:ff:a4:95:9b:66:d3:07:57:c7:9d:3b:25:47:
dd:33:07:f0:8b:1f:fb:77:cc:4a:69:15:04:62:03:
e7:45:44:79:57:6e:d7:7d:be:4e:2c:c0:ad:17:c9:
72:fd:02:7a:33:12:5f:fc:73:4f:ad:4f:72:92:04:
5a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B2:0F:86:D9:FF:D0:82:8E:45:75:1C:2A:15:CE:96:62:70:C4:8C
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hLIPhtn_0IKORXUcKhXOlmJwxIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.136.62.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4b:8d:99:ca:9b:78:27:d0:da:60:f1:ac:4e:86:6d:71:60:
97:66:f3:30:d7:ae:99:85:d0:3d:f8:c5:8e:6b:86:7a:1f:2f:
59:6e:5a:b6:46:a4:d3:61:05:28:36:04:1f:1e:2e:ca:ba:17:
c4:f3:89:56:86:4b:5c:bc:22:be:3e:d7:c7:45:f1:a0:0e:c7:
06:fc:83:20:e7:ed:88:ce:14:f3:73:d8:a6:1b:3e:d1:6e:b5:
61:65:c2:8b:df:9e:49:62:1e:73:08:b8:27:cc:92:cf:56:61:
92:f8:d8:f1:ad:e6:f2:33:03:28:2d:10:83:d1:53:f7:56:28:
89:7c:77:1e:57:73:60:5d:03:f7:e5:6a:08:23:82:37:9c:cb:
fc:ed:b7:82:83:c5:6d:08:2a:3c:06:c5:5c:db:59:db:bd:bf:
bb:01:78:74:d1:8a:08:9b:22:91:c3:4a:d2:99:67:e3:97:10:
af:c1:a2:e6:68:d6:03:52:40:2d:4c:1d:dc:e0:59:e7:5e:83:
17:49:fe:f1:a6:86:13:91:75:7a:dc:f2:c4:ec:0a:66:a4:bc:
b8:13:77:db:a8:f8:f0:9c:6c:63:92:da:5f:9f:59:92:56:a2:
e6:d6:c1:06:5d:f5:ce:fa:07:00:f5:4b:33:f6:20:de:75:29:
f0:91:6e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 18 01:03:57 2024 by rpki-client on console-ams.rpki-client.org