Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/HIHfBq5vY1v0g71zmDmn94rtlZY.roa
File: HIHfBq5vY1v0g71zmDmn94rtlZY.roa (raw, json)
Hash identifier: rL78/ioZC+TvKx3m7KLdJq6pjAvpgZYT6Yb9cusTGw0=
Subject key identifier: 1C:81:DF:06:AE:6F:63:5B:F4:83:BD:73:98:39:A7:F7:8A:ED:95:96
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 0186FFCC092569144A49D51EE77EBD17F198
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/HIHfBq5vY1v0g71zmDmn94rtlZY.roa
Signing time: Mon 20 Mar 2023 16:13:27 +0000
ROA not before: Mon 20 Mar 2023 16:13:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38337
IP address blocks: 93.89.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 09:14:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:cc:09:25:69:14:4a:49:d5:1e:e7:7e:bd:17:f1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Mar 20 16:13:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c81df06ae6f635bf483bd739839a7f78aed9596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:62:bf:1d:10:cd:a7:90:9c:f6:4f:1d:12:5f:
ed:a5:89:ce:2f:7c:23:7a:f0:9f:c2:c3:5a:8f:c3:
2e:f9:6f:e7:3d:80:2c:e0:b8:fc:05:ca:2e:7a:e3:
fd:c2:9c:5f:ae:7a:85:ff:48:12:1b:fc:13:b4:b3:
77:26:5b:e3:4d:62:f5:b4:c0:68:5e:1a:e1:bf:b7:
f1:6e:61:31:3a:63:96:74:33:bd:6e:a3:f2:3e:f8:
6c:75:13:77:0f:1a:2c:c3:15:fe:32:f5:9c:70:9c:
22:62:e6:5f:0a:ef:20:83:db:96:28:f2:23:84:14:
cf:cc:0e:4c:b6:a3:88:b4:46:63:42:63:6e:60:c3:
5e:19:cf:01:1f:40:2a:33:e8:77:cd:c8:17:46:65:
c6:c3:97:56:44:96:57:31:23:ce:24:4c:04:ec:b1:
d0:84:e5:59:d4:fe:85:c6:79:09:af:15:17:1c:01:
f6:46:45:84:c6:a5:78:cf:6a:05:18:a0:a7:73:ea:
59:b8:ba:af:3c:79:45:d6:17:c3:b5:b6:2d:ca:76:
c4:5a:fe:c2:60:be:48:01:15:af:06:90:4c:b3:96:
71:59:52:b1:e4:9e:91:79:60:cb:e5:93:20:3c:03:
d9:b6:77:d8:c2:fc:d6:12:f0:1c:5c:4f:82:d2:d8:
99:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:81:DF:06:AE:6F:63:5B:F4:83:BD:73:98:39:A7:F7:8A:ED:95:96
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/HIHfBq5vY1v0g71zmDmn94rtlZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.223.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:fb:b4:d3:f4:89:03:f2:bf:13:54:c6:8c:c6:ec:ac:1a:29:
a2:de:ea:51:eb:30:84:3e:12:1c:71:c9:5d:37:a7:11:c5:80:
47:5e:50:db:d7:1d:82:7f:92:86:59:c2:ae:f3:f8:c9:04:3b:
e3:10:67:31:6a:69:91:a3:67:95:c4:8e:90:b2:8c:c9:84:32:
f2:a8:48:a0:e4:11:3f:cc:7d:36:f7:c2:02:8e:1e:e9:a1:fd:
b2:09:43:f4:05:41:5e:30:36:e9:d6:c4:01:8f:20:ce:3a:f1:
1d:07:c7:a8:34:03:86:8f:81:04:3d:2d:47:9e:33:1d:a6:51:
96:77:f4:c5:91:f8:1b:e3:db:b5:22:9a:8e:12:5f:15:95:db:
e2:c5:7a:27:42:12:71:83:97:db:9f:f4:36:4c:26:dc:4b:9e:
ed:b2:93:a2:e5:d5:cc:c0:3d:a9:0a:2c:01:0c:67:43:69:29:
02:5a:77:14:80:20:be:06:56:b3:bd:40:62:6d:39:f3:5d:da:
9c:44:f5:6d:35:6b:67:80:8e:cb:41:d3:9b:52:c2:93:2d:9b:
6e:ab:04:2a:16:8e:f2:7d:25:92:9e:e8:1b:cf:a9:05:9e:54:
a7:aa:31:34:ca:67:14:44:32:07:2f:fe:3a:77:de:c0:4c:8d:
5c:b2:f1:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:25 2024 by rpki-client on console-ams.rpki-client.org