Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hPM_z6T1kAZm3rtY_jKR3qGdats.roa
File: hPM_z6T1kAZm3rtY_jKR3qGdats.roa (raw, json)
Hash identifier: EfdBwmT3nMArN6jzqOuLDcKtVTmI65uF9SzXC3VjqA4=
Subject key identifier: 84:F3:3F:CF:A4:F5:90:06:66:DE:BB:58:FE:32:91:DE:A1:9D:6A:DB
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018CC56E20848B1DECB300FBB8EC497523B1
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hPM_z6T1kAZm3rtY_jKR3qGdats.roa
Signing time: Mon 01 Jan 2024 14:29:37 +0000
ROA not before: Mon 01 Jan 2024 14:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399382
IP address blocks: 217.26.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 13:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:20:84:8b:1d:ec:b3:00:fb:b8:ec:49:75:23:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 14:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84f33fcfa4f5900666debb58fe3291dea19d6adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0e:9d:5a:16:c7:73:1d:22:51:2e:11:e2:08:
63:e6:6d:1b:c0:2a:40:fc:52:75:f2:97:f5:8d:1d:
5e:86:75:45:88:85:31:bb:f1:a1:de:54:43:e4:5f:
96:9d:f1:23:bf:b7:e3:ff:1b:29:6f:71:42:1b:b9:
45:35:5d:48:2b:32:52:29:4f:32:d2:9c:c9:54:7c:
32:05:54:10:80:ce:79:df:4f:2b:5c:38:40:d4:3d:
eb:a6:3e:b7:4d:a7:ea:f1:47:1f:d3:83:12:d0:c0:
66:cc:b3:d6:4d:d3:19:4e:66:85:45:2a:05:c6:c9:
17:0b:9b:7f:78:9a:d4:8f:4c:80:37:81:84:67:10:
1d:a9:4b:09:9f:f8:2a:57:3a:73:95:09:1c:99:c5:
49:06:25:59:77:b8:c0:df:ce:0c:be:94:23:c6:93:
17:b5:4d:39:f5:a5:36:dd:c7:34:ea:9c:bc:d1:bd:
97:d8:a9:21:0b:11:4f:1a:2f:49:24:d4:b5:87:77:
53:28:a8:b1:a7:c8:36:2f:50:02:89:f6:65:42:e4:
c5:de:d9:07:62:37:08:7c:ed:97:c2:47:74:bc:3d:
17:92:45:7b:cd:a2:05:de:32:53:c7:01:07:36:4c:
f0:06:0b:96:50:80:a3:6a:85:65:bb:fb:3d:c4:c8:
67:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F3:3F:CF:A4:F5:90:06:66:DE:BB:58:FE:32:91:DE:A1:9D:6A:DB
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hPM_z6T1kAZm3rtY_jKR3qGdats.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.26.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:f8:db:cf:23:08:93:d8:55:59:aa:fc:7d:47:4c:d8:61:1b:
80:3f:00:6b:38:06:59:bd:e6:6d:4a:d1:65:ba:48:cf:08:a9:
94:91:84:b7:0c:7a:28:02:f4:53:60:de:86:a1:90:8b:bf:38:
df:8a:54:01:c8:ad:70:70:0e:a2:5c:74:59:06:53:c9:9d:26:
7b:52:6c:a0:e6:6a:62:ed:e9:36:27:4e:11:fd:17:96:ff:09:
6d:5d:0d:7d:1c:1e:ae:40:bc:e9:8d:dc:f6:89:c0:54:be:b0:
98:a9:b6:d4:89:db:5b:6f:75:b4:76:39:59:fe:44:e7:a2:62:
9a:00:4c:df:4b:9e:84:e5:90:ba:91:0b:f4:ad:61:c4:b7:cf:
de:f0:32:4b:a5:03:77:e5:97:0b:f1:14:f1:40:88:dc:b9:09:
82:76:1f:c5:04:a6:bb:ec:69:1d:87:f4:e2:9a:f9:ef:85:37:
c3:bf:32:26:6f:05:73:fe:e2:ca:48:95:3c:7c:19:36:c3:8b:
d2:bd:72:86:0d:54:a3:61:3e:22:f8:11:3e:81:33:a1:13:33:
92:46:73:62:31:41:6f:01:80:2e:5c:0e:6b:9a:32:db:72:be:
be:fc:27:a3:2b:e6:4c:e9:d1:bf:21:ff:c8:32:ac:58:8a:3c:
f8:ac:bb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 16:25:34 2024 by rpki-client on console-fra.rpki-client.org