Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/b59baf-113e-460b-93e7-338a98a1d9cb/1/HVFVR4GDWO_YjHdGQBylLO80_b4.roa
File: HVFVR4GDWO_YjHdGQBylLO80_b4.roa (raw, json)
Hash identifier: bl4PIHOI2Sc/3xfJDjfg9ZQ/dg7lyM7g8F8lFNLRZis=
Subject key identifier: 1D:51:55:47:81:83:58:EF:D8:8C:77:46:40:1C:A5:2C:EF:34:FD:BE
Certificate issuer: /CN=fc05169be4c74952672597df103eeb1b47bb68a3
Certificate serial: 0185714C0D0CB0AE9C5FB5655EBD6C3AAF0E
Authority key identifier: FC:05:16:9B:E4:C7:49:52:67:25:97:DF:10:3E:EB:1B:47:BB:68:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_AUWm-THSVJnJZffED7rG0e7aKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/b59baf-113e-460b-93e7-338a98a1d9cb/1/HVFVR4GDWO_YjHdGQBylLO80_b4.roa
Signing time: Mon 02 Jan 2023 07:04:47 +0000
ROA not before: Mon 02 Jan 2023 07:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57998
IP address blocks: 91.237.156.0/24 maxlen: 24
91.237.155.0/24 maxlen: 24
91.237.156.0/22 maxlen: 22
91.237.159.0/24 maxlen: 24
91.237.154.0/23 maxlen: 23
91.237.154.0/24 maxlen: 24
91.237.158.0/24 maxlen: 24
91.237.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:0d:0c:b0:ae:9c:5f:b5:65:5e:bd:6c:3a:af:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc05169be4c74952672597df103eeb1b47bb68a3
Validity
Not Before: Jan 2 07:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d515547818358efd88c7746401ca52cef34fdbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:60:79:cf:1d:0a:ab:c4:29:6b:be:a6:42:fc:
74:a4:4b:61:79:1c:e2:94:f9:7e:61:02:77:4a:83:
d7:83:af:0a:e4:d2:4a:4c:ec:af:44:b5:cd:33:72:
5a:53:be:a4:6f:75:b7:64:8a:9f:97:d3:8d:e0:0f:
da:84:8e:7e:70:dd:c7:5f:88:ba:22:a2:c8:01:ab:
65:8a:55:da:10:83:a3:aa:c7:e6:88:24:0a:5b:c9:
f3:a8:c5:e0:11:a0:d5:6a:da:ea:41:e1:a2:c4:2c:
04:61:43:0e:ad:2b:7b:65:eb:8b:38:b9:b5:9c:7f:
17:a3:0e:8f:00:64:90:72:91:ad:9b:b9:76:fd:e4:
a4:e6:72:24:0d:a6:4f:99:8f:1f:2b:f4:36:29:5a:
d3:44:97:ed:fe:66:fb:44:e9:cf:1b:0b:ce:ad:7d:
7c:c2:e6:a1:2e:dc:e6:ab:b8:bb:3d:f2:62:f8:35:
5e:e6:80:df:97:ec:87:7f:df:a0:24:d0:fc:ab:be:
94:d6:21:de:2a:6b:41:55:fa:b9:11:76:76:39:26:
d5:aa:30:9a:c3:e9:b6:a8:f5:b3:73:06:08:93:67:
8f:49:4c:8b:42:f3:7e:a2:f1:7a:ec:3e:2d:96:00:
fe:19:11:ee:82:30:b1:e0:4e:cf:7f:13:b9:5a:cc:
26:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:51:55:47:81:83:58:EF:D8:8C:77:46:40:1C:A5:2C:EF:34:FD:BE
X509v3 Authority Key Identifier:
keyid:FC:05:16:9B:E4:C7:49:52:67:25:97:DF:10:3E:EB:1B:47:BB:68:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_AUWm-THSVJnJZffED7rG0e7aKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/b59baf-113e-460b-93e7-338a98a1d9cb/1/HVFVR4GDWO_YjHdGQBylLO80_b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/b59baf-113e-460b-93e7-338a98a1d9cb/1/_AUWm-THSVJnJZffED7rG0e7aKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.154.0-91.237.159.255
Signature Algorithm: sha256WithRSAEncryption
82:2e:01:f3:5f:f8:b2:fe:f0:04:b3:f6:71:24:38:51:66:7d:
22:41:ef:16:21:36:dc:ca:3d:e1:52:4a:65:50:30:da:d1:40:
14:06:68:23:94:8c:81:c8:28:48:df:83:c0:a3:38:69:d1:89:
30:71:f2:12:dc:15:df:1f:16:99:b9:1e:7d:b3:2d:f6:9b:59:
b7:86:55:e9:5c:0e:76:07:d2:cd:3a:b6:ea:71:bd:27:98:7c:
ae:d3:e7:8e:f3:87:07:41:f5:65:71:2e:25:d8:9e:48:82:72:
1e:f5:45:e6:f2:b0:c9:76:3b:fc:8d:f3:de:7a:ca:33:d4:10:
95:11:ad:c9:93:df:64:6f:b9:35:77:e5:8c:7e:71:cb:fd:93:
6f:d8:15:15:4c:f5:b9:7b:35:6c:c0:8a:84:33:44:58:15:4e:
6d:e0:63:7c:e3:d0:32:95:42:99:23:ca:42:45:26:be:d9:16:
31:fb:2d:3a:e9:4a:47:e6:82:61:a3:13:23:ed:16:fb:b2:7d:
c4:e6:b7:68:eb:cb:f5:9f:ad:b9:7b:86:34:e6:34:6f:0c:df:
2e:3f:13:84:56:6a:d1:e7:fe:99:05:2d:c1:57:68:e2:74:7a:
d6:e7:c5:10:10:31:7e:76:23:68:c5:a1:3c:9f:e0:c4:db:71:
e8:06:ff:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:24 2024 by rpki-client on console-ams.rpki-client.org