Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HmHqLC6Wr8ec9sE7BYI7OEbnu3w.roa
File: HmHqLC6Wr8ec9sE7BYI7OEbnu3w.roa (raw, json)
Hash identifier: KhHRegBkolp3bYpB+MWx4N3epKzX69Wu2wAohLBcpBo=
Subject key identifier: 1E:61:EA:2C:2E:96:AF:C7:9C:F6:C1:3B:05:82:3B:38:46:E7:BB:7C
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0188D866A0A6893E21F9FD69FF35795DA435
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HmHqLC6Wr8ec9sE7BYI7OEbnu3w.roa
Signing time: Tue 20 Jun 2023 10:43:04 +0000
ROA not before: Tue 20 Jun 2023 10:43:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:66:a0:a6:89:3e:21:f9:fd:69:ff:35:79:5d:a4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jun 20 10:43:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e61ea2c2e96afc79cf6c13b05823b3846e7bb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:db:8d:0a:91:5e:fb:8d:d8:9d:35:4c:1d:da:
8a:e0:e6:ff:e0:5f:33:00:e6:13:1f:c9:5b:5a:de:
5b:27:5f:2d:3c:11:8b:13:d4:c6:0d:ea:13:e4:ee:
98:94:5e:7f:1a:a5:2d:ad:b9:fd:9d:85:f4:fb:19:
34:99:b0:77:16:15:ac:47:84:c5:e4:ce:9a:78:b8:
46:a4:5d:e1:0c:ee:be:69:b1:39:f0:ec:a7:b3:1c:
c4:10:7c:4a:4d:60:c9:54:01:85:0e:37:aa:ed:56:
71:a5:4f:19:c5:f0:40:ba:16:7e:3e:f7:82:8c:b5:
0f:b9:a9:e7:af:19:f3:a2:50:26:f3:2f:81:a7:4c:
46:b3:c6:e7:60:05:5d:0b:9b:41:c5:e4:77:d3:50:
2b:07:18:55:77:42:4e:1b:dc:52:26:93:f6:90:31:
40:a2:b4:0a:d6:89:40:f9:f8:74:14:23:61:89:4f:
bc:4a:84:8f:a0:8d:1e:18:2f:b1:2e:14:45:8f:c6:
b9:84:9a:e5:e4:6f:03:10:32:47:08:38:2d:e9:cc:
4e:26:9f:23:e8:55:49:ee:39:4d:4b:2c:9e:13:0e:
01:46:af:de:c0:4e:2a:fb:64:1e:a0:ce:42:57:5b:
1f:50:b3:c8:1e:ff:19:56:2d:00:b0:b7:59:11:35:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:61:EA:2C:2E:96:AF:C7:9C:F6:C1:3B:05:82:3B:38:46:E7:BB:7C
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HmHqLC6Wr8ec9sE7BYI7OEbnu3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:53:6b:a2:54:73:f3:a6:c7:3d:82:c4:ff:8c:f8:13:5f:c9:
09:39:bf:98:f8:89:1e:9e:15:4b:70:51:65:06:d8:80:c6:19:
58:6b:1d:92:aa:61:72:3b:da:c0:27:27:f3:bf:00:03:f9:f7:
64:47:b0:52:66:37:08:70:f4:5c:2b:86:93:21:82:50:a3:c8:
4b:f7:bf:e9:05:fd:ec:c2:ed:46:95:a5:f2:7f:49:75:aa:4d:
75:19:be:aa:bb:84:a8:1c:8f:74:f9:2e:00:72:32:10:67:81:
2a:1d:2b:94:e2:49:fb:a6:e5:94:69:66:8c:a7:2e:fa:95:9d:
31:37:51:e4:45:72:8c:4d:ad:15:19:50:be:b3:35:90:d8:b7:
4a:78:51:92:72:6e:f3:69:9a:8b:62:ab:42:12:f8:cb:b3:ae:
9c:32:6c:c5:8d:c5:e5:ff:19:28:40:c7:88:bc:9f:ec:e6:7e:
b5:60:90:05:a2:29:a6:a2:e1:64:94:28:bf:47:63:24:1a:0d:
49:25:4a:10:b1:d5:09:94:2d:05:88:e0:54:4f:9e:48:b3:76:
75:5b:91:e1:57:0a:0d:56:0f:b8:76:31:0e:3d:bb:aa:a1:c0:
6e:f5:38:7e:fd:7e:99:32:de:d1:8b:3d:50:58:83:fa:5d:85:
d3:4f:63:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:23 2024 by rpki-client on console-fra.rpki-client.org