Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/HUxsTZgiI7VIuA-_5Ccn9huxeyA.roa
File: HUxsTZgiI7VIuA-_5Ccn9huxeyA.roa (raw, json)
Hash identifier: VAO0F6kueYCePJVhWYYv1pD6qZfyl5UgswuMEex+s4A=
Subject key identifier: 1D:4C:6C:4D:98:22:23:B5:48:B8:0F:BF:E4:27:27:F6:1B:B1:7B:20
Certificate issuer: /CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Certificate serial: 01856C1C9F2E7538011B6F04B972BCEF6CB3
Authority key identifier: F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/HUxsTZgiI7VIuA-_5Ccn9huxeyA.roa
Signing time: Sun 01 Jan 2023 06:54:53 +0000
ROA not before: Sun 01 Jan 2023 06:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62874
IP address blocks: 204.225.218.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:9f:2e:75:38:01:1b:6f:04:b9:72:bc:ef:6c:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Validity
Not Before: Jan 1 06:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d4c6c4d982223b548b80fbfe42727f61bb17b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1b:20:37:e9:7a:b3:b1:14:35:ae:52:6c:3a:
9d:e4:ce:1d:85:4e:ba:cf:f2:f6:2b:ed:b3:85:98:
d3:4a:9f:d2:f1:c8:61:44:3b:2a:18:32:00:22:8c:
39:44:ae:a0:8d:a0:15:af:7c:7d:7a:19:da:0c:24:
7c:0a:14:42:73:80:8d:d2:e7:e5:4f:cf:10:1e:73:
6a:82:5c:0f:ce:74:6b:0d:04:be:f9:c2:da:7b:2a:
08:39:ac:ae:f1:ce:9b:6c:3d:d4:7a:29:15:6b:c1:
a5:51:f8:dd:20:24:e6:2e:be:00:bb:25:ec:6f:6f:
b2:67:a9:ad:df:23:67:f9:ea:17:84:2e:dc:67:5e:
44:f5:68:25:a3:68:ac:69:80:8d:ad:34:d1:e7:74:
87:75:eb:99:c6:8f:49:ea:07:da:97:2c:c8:4d:eb:
21:10:f1:e2:5a:46:69:58:a1:42:48:56:bb:49:be:
48:7b:da:cf:76:e0:14:f9:98:71:a4:c4:92:1d:5b:
96:2d:9c:a0:42:9c:5c:10:4f:5d:40:52:2b:e0:d6:
29:d0:4c:f7:2e:a0:c1:3b:28:43:21:ac:84:e4:7c:
b1:d5:d4:78:a5:67:31:3c:22:4c:da:a1:83:ea:1b:
3d:19:9d:5c:a3:50:85:1b:9f:a8:92:75:a8:1c:38:
ad:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4C:6C:4D:98:22:23:B5:48:B8:0F:BF:E4:27:27:F6:1B:B1:7B:20
X509v3 Authority Key Identifier:
keyid:F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/HUxsTZgiI7VIuA-_5Ccn9huxeyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.225.218.0/24
Signature Algorithm: sha256WithRSAEncryption
70:94:ca:4b:3c:d1:f2:4a:77:ff:2e:8b:dc:c1:72:12:7b:8e:
f9:8c:95:59:fd:a6:c4:95:49:fc:57:7b:cf:be:74:50:45:b9:
94:f8:c6:45:2d:d5:19:eb:67:b6:e6:fb:9c:47:36:d9:e1:3f:
4f:b0:a8:80:ef:54:c5:2f:20:26:1e:15:4c:21:4d:3a:9f:8d:
6b:a0:7c:72:e3:b9:3d:a9:73:87:2a:2a:43:fa:6e:1c:a2:e5:
dc:fc:d1:92:62:aa:70:53:de:06:24:99:5e:eb:02:5b:19:f6:
a8:2a:db:30:39:ea:26:84:3f:75:ce:ba:38:81:a0:bc:8e:12:
ea:f4:9d:8f:08:2c:a5:25:cf:33:ab:64:90:c8:8c:08:50:a7:
43:0d:ad:e4:e8:a0:8c:75:31:6a:30:e7:20:87:28:5e:11:6e:
77:e8:86:eb:38:59:a2:27:fd:02:29:b6:c9:21:2c:e8:55:ba:
d8:39:99:e4:fd:17:e9:1f:db:9f:76:09:bc:d5:ba:a5:86:70:
e8:71:56:18:8e:e1:a3:5f:aa:da:c8:2a:e3:69:6d:49:8f:28:
99:c7:c2:2f:00:39:cd:84:13:db:f7:79:5d:86:9d:72:5b:c7:
84:26:d7:5c:cb:e7:f7:93:6c:32:8b:0b:6b:7f:8b:86:5c:b2:
72:4f:ad:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:04 2024 by rpki-client on console-ams.rpki-client.org