Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/HVcQZi2mLwU0pdkV2wCh8I_Wb3Y.roa
File: HVcQZi2mLwU0pdkV2wCh8I_Wb3Y.roa (raw, json)
Hash identifier: 5nnRhcUonxC/nEmAFVQr+uGu2hVsYwB7EpBPIx25q5M=
Subject key identifier: 1D:57:10:66:2D:A6:2F:05:34:A5:D9:15:DB:00:A1:F0:8F:D6:6F:76
Certificate issuer: /CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Certificate serial: 018CC94E4BC7A2AE5DBB4B5D38907AF8B6AB
Authority key identifier: D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/HVcQZi2mLwU0pdkV2wCh8I_Wb3Y.roa
Signing time: Tue 02 Jan 2024 08:33:20 +0000
ROA not before: Tue 02 Jan 2024 08:33:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47147
IP address blocks: 152.53.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 10:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:4b:c7:a2:ae:5d:bb:4b:5d:38:90:7a:f8:b6:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Validity
Not Before: Jan 2 08:33:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d5710662da62f0534a5d915db00a1f08fd66f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3a:cc:46:b5:47:91:15:5f:e8:9c:ac:46:76:
69:e5:a8:09:76:d0:b2:c5:de:01:12:de:c9:ed:7d:
61:b2:8d:d8:07:74:d6:81:95:f5:95:fa:99:d2:54:
c0:52:93:50:0a:2a:30:16:3f:15:41:e4:a5:20:22:
63:44:dc:e2:cf:8b:91:cd:cd:94:bd:ab:91:fa:2b:
19:be:19:94:0c:89:c2:4c:01:4f:49:bc:b6:7e:1d:
ab:f1:40:b7:39:bd:72:ce:d5:5c:a2:ec:74:6c:5d:
f3:70:ae:85:ae:4e:1d:b9:c1:f1:03:44:f3:6e:8b:
ca:39:53:c5:bb:c2:fd:ef:05:ec:bc:ba:bd:20:f5:
d8:e0:cb:a5:8d:a4:13:72:f6:89:ad:3c:86:d5:99:
29:53:a2:52:05:7e:f6:61:c2:ea:bb:04:4b:62:e2:
d8:9a:91:90:ba:98:74:24:72:43:e2:95:71:cc:a5:
c7:8c:3a:a9:34:4c:96:76:de:b4:88:ba:26:f0:a4:
9d:a1:11:56:7e:f1:52:c2:23:23:34:e4:10:d1:5a:
15:94:89:92:d2:3f:1a:98:ad:d2:9e:23:55:35:fe:
46:d6:86:29:f5:f8:5f:54:0e:df:2b:d2:ba:31:82:
ab:4f:a4:76:27:e1:95:69:7c:9b:b3:a9:03:72:e3:
72:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:57:10:66:2D:A6:2F:05:34:A5:D9:15:DB:00:A1:F0:8F:D6:6F:76
X509v3 Authority Key Identifier:
keyid:D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/HVcQZi2mLwU0pdkV2wCh8I_Wb3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:65:18:ac:4b:63:be:ed:5e:6e:c4:f3:3e:72:2d:34:73:7e:
08:02:bc:32:1b:e0:ae:e4:ce:33:d2:12:cd:6b:47:70:25:30:
5d:f3:b6:81:b5:07:cd:15:fd:0e:0c:ca:90:7b:c0:98:17:59:
fd:56:1d:29:59:9b:0b:07:9b:ed:9e:c0:99:97:f2:13:03:8c:
2b:96:dd:18:dc:26:fa:2c:43:3e:a9:6f:f6:66:4b:a3:d5:09:
5b:3e:90:78:bc:5a:34:ec:6b:b9:47:d6:c1:aa:4d:4b:73:5f:
4d:9c:e2:d8:93:e8:b1:dc:c1:bc:89:63:77:89:b5:91:f9:9d:
4e:c2:6f:73:63:2c:23:d6:51:9b:99:18:61:41:35:ae:48:66:
72:01:c1:fe:ec:68:03:4f:6e:d2:91:24:12:e7:20:07:72:97:
86:ab:61:47:8e:ce:f7:10:8c:f9:b4:b9:f6:41:fc:7c:81:34:
82:8e:ba:bf:87:a3:de:4a:17:d3:92:8b:fd:cc:71:bb:7b:6f:
8f:ad:e2:ca:99:61:a5:13:92:3c:b4:f2:9b:a0:f1:1b:d3:35:
e1:ee:fc:8f:64:f5:8a:c3:13:74:98:13:66:e7:31:3d:af:33:
e9:75:d8:90:eb:93:2e:43:77:1f:72:54:fb:d7:77:bf:ca:92:
55:c3:c1:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 12:16:04 2024 by rpki-client on console-fra.rpki-client.org