Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/HJ8R-zj78v-0QYdzl6tirG42uM8.roa
File: HJ8R-zj78v-0QYdzl6tirG42uM8.roa (raw, json)
Hash identifier: FoTnv8GSOrtISlhAHSVNQ48LzrUb8y5UWiB83vTrMjA=
Subject key identifier: 1C:9F:11:FB:38:FB:F2:FF:B4:41:87:73:97:AB:62:AC:6E:36:B8:CF
Certificate issuer: /CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38
Certificate serial: 018570D53EFCA7F1F0E5DEC3806BF18D8403
Authority key identifier: 31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/HJ8R-zj78v-0QYdzl6tirG42uM8.roa
Signing time: Mon 02 Jan 2023 04:55:01 +0000
ROA not before: Mon 02 Jan 2023 04:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43009
IP address blocks: 193.105.74.0/24 maxlen: 24
81.23.249.0/24 maxlen: 24
81.23.250.0/24 maxlen: 24
81.23.251.0/24 maxlen: 24
81.23.252.0/24 maxlen: 24
81.23.248.0/24 maxlen: 24
81.23.253.0/24 maxlen: 24
185.255.9.0/24 maxlen: 24
185.255.10.0/24 maxlen: 24
185.255.11.0/24 maxlen: 24
185.255.8.0/24 maxlen: 24
202.22.160.0/24 maxlen: 24
202.22.164.0/24 maxlen: 24
202.22.165.0/24 maxlen: 24
202.22.166.0/24 maxlen: 24
202.22.161.0/24 maxlen: 24
202.22.162.0/24 maxlen: 24
202.22.163.0/24 maxlen: 24
202.22.171.0/24 maxlen: 24
202.22.172.0/24 maxlen: 24
202.22.168.0/24 maxlen: 24
202.22.169.0/24 maxlen: 24
202.22.170.0/24 maxlen: 24
202.22.174.0/24 maxlen: 24
202.22.175.0/24 maxlen: 24
81.23.254.0/24 maxlen: 24
81.23.255.0/24 maxlen: 24
2a0c:55c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:3e:fc:a7:f1:f0:e5:de:c3:80:6b:f1:8d:84:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31eb9b2db4a3bddf8c92fc50b9713043dd56dc38
Validity
Not Before: Jan 2 04:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c9f11fb38fbf2ffb441877397ab62ac6e36b8cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a6:23:e1:f1:7b:97:3f:96:2e:19:fb:96:b2:
a6:1d:ec:2a:b8:c3:1b:af:a8:6c:5f:18:bb:e1:1b:
a5:8f:3e:90:0b:dc:8a:57:bd:30:b8:bd:92:3a:f2:
c1:a0:55:c1:c8:ba:4d:e0:c1:d1:52:87:a6:d2:29:
50:f4:1b:89:62:dc:33:9b:4d:9b:13:38:5e:c4:b6:
db:f5:ad:05:b6:07:01:a3:8e:78:6e:ee:38:44:e1:
51:ac:8f:9a:52:3b:6c:7c:00:49:38:03:ad:b7:8b:
74:73:98:4d:20:1f:97:c0:cc:32:4d:a4:2e:63:2d:
8c:38:ac:ff:54:73:1a:df:0f:01:fe:af:1b:2d:94:
a8:cf:53:f2:20:24:34:db:57:3b:83:b8:f4:52:89:
7d:eb:3e:51:6e:27:b6:fe:67:ac:71:12:64:58:d9:
b6:3d:c5:d9:ff:b2:f3:01:2c:b8:25:93:f9:36:a7:
60:0f:42:81:1f:a6:35:d6:2f:a1:b7:ee:95:25:a2:
20:21:48:0a:22:b5:67:81:fa:f5:8f:ca:0e:af:14:
fd:d5:79:e1:36:7e:b7:65:5c:bb:b8:ab:6d:c9:5a:
87:21:a4:b8:10:70:40:96:5e:90:68:73:de:f4:12:
11:80:9c:b3:de:72:3f:7d:e6:05:32:38:61:99:22:
eb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9F:11:FB:38:FB:F2:FF:B4:41:87:73:97:AB:62:AC:6E:36:B8:CF
X509v3 Authority Key Identifier:
keyid:31:EB:9B:2D:B4:A3:BD:DF:8C:92:FC:50:B9:71:30:43:DD:56:DC:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeubLbSjvd-MkvxQuXEwQ91W3Dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/HJ8R-zj78v-0QYdzl6tirG42uM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/247005-559d-4eb4-b3e8-bd24f003578f/1/MeubLbSjvd-MkvxQuXEwQ91W3Dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.23.248.0/21
185.255.8.0/22
193.105.74.0/24
202.22.160.0-202.22.166.255
202.22.168.0-202.22.172.255
202.22.174.0/23
IPv6:
2a0c:55c0:1::/48
Signature Algorithm: sha256WithRSAEncryption
4b:4b:ce:24:26:a5:c7:e4:38:b8:c1:83:89:e3:28:54:dd:9c:
b1:99:7b:71:26:65:44:32:f0:13:85:63:30:31:c2:b6:74:cb:
58:67:ea:99:74:98:2e:00:03:ab:54:0c:89:d1:4c:36:1d:17:
01:3f:ad:6a:77:ee:27:4b:5f:87:28:1e:c0:cc:a8:27:94:31:
eb:45:74:f9:7d:03:93:1a:ee:ba:46:75:14:91:91:1c:79:a3:
2a:2b:01:28:c0:d2:36:f4:07:ea:ed:45:3c:3d:19:a5:99:51:
cf:1f:8e:f5:07:9d:46:33:2a:45:90:8a:f6:b2:4e:2e:de:60:
75:97:e5:15:65:03:1f:46:19:c3:56:d1:68:3e:55:53:45:a1:
99:ea:a1:59:30:bf:18:c6:76:01:44:50:c7:4c:d3:04:5b:34:
01:94:2e:bc:08:cb:4d:5a:f9:46:3a:ae:a0:97:22:d8:6a:97:
e6:a1:76:19:ce:f1:9d:80:e1:68:03:73:55:28:5b:f7:de:41:
c1:f3:86:e6:be:8a:08:1c:20:af:96:a4:5d:be:fd:c5:a5:ec:
28:35:5c:62:6d:af:88:c2:2e:f8:cf:22:97:71:1e:cd:33:9e:
88:eb:2d:47:30:0d:70:ec:6f:d1:77:a5:c9:a8:5f:82:fa:1f:
cd:0e:b6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:18 2023 by rpki-client on console-fra.rpki-client.org