Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/cbb2e4-88c3-4cc0-9675-c98a1bde6476/1/huwQlu-HIMlGJtIi-G-Iaym5-5U.roa
File: huwQlu-HIMlGJtIi-G-Iaym5-5U.roa (raw, json)
Hash identifier: T6EFN/MV01c93nSB3hWWnO3sWCRWPi87/ZjppKZEMSg=
Subject key identifier: 86:EC:10:96:EF:87:20:C9:46:26:D2:22:F8:6F:88:6B:29:B9:FB:95
Certificate issuer: /CN=ea1219292d86ca96397b8a8bd24e08b1a897c1a3
Certificate serial: 018D1CEFF2569ADD7927223B2692FF9C3FA5
Authority key identifier: EA:12:19:29:2D:86:CA:96:39:7B:8A:8B:D2:4E:08:B1:A8:97:C1:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6hIZKS2GypY5e4qL0k4IsaiXwaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/cbb2e4-88c3-4cc0-9675-c98a1bde6476/1/huwQlu-HIMlGJtIi-G-Iaym5-5U.roa
Signing time: Thu 18 Jan 2024 14:18:23 +0000
ROA not before: Thu 18 Jan 2024 14:18:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15763
IP address blocks: 149.232.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Fri 19 Jan 2024 11:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1c:ef:f2:56:9a:dd:79:27:22:3b:26:92:ff:9c:3f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1219292d86ca96397b8a8bd24e08b1a897c1a3
Validity
Not Before: Jan 18 14:18:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86ec1096ef8720c94626d222f86f886b29b9fb95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:10:7c:f4:df:af:20:97:c6:60:d3:6e:5f:23:
fc:78:e2:60:78:48:98:94:cd:6c:95:c4:21:b2:9c:
4b:2f:0a:37:7b:2a:2b:34:85:81:e9:f4:c9:89:58:
3c:b3:38:8b:ca:71:11:b7:7c:aa:d7:76:c4:f2:72:
cf:7a:ac:1f:1f:86:38:a9:9f:f6:3b:a1:d6:ed:3a:
33:47:67:03:83:f1:b6:59:2d:87:52:79:14:ad:03:
a4:78:b9:13:2e:2d:35:dc:e9:d1:8d:f3:c3:d5:63:
61:69:bf:99:3c:8e:61:2b:0b:ea:78:71:34:39:6e:
7a:2d:51:f9:32:25:3f:c3:f5:f9:ba:ee:95:80:ab:
0e:d6:88:6d:c1:b5:ca:9e:d4:4d:7d:f9:69:8e:f2:
28:9d:8c:49:6e:c9:b9:86:8a:12:65:d3:fc:5c:b9:
2f:0d:87:a4:27:5a:fb:c2:c8:90:ba:45:92:ce:4b:
d5:58:34:ba:18:f3:2f:11:f2:e8:ed:85:52:55:5e:
8b:f0:27:33:15:bc:8a:d9:24:dc:4b:84:7c:6d:53:
82:28:23:1e:d4:85:28:0d:ae:03:06:36:7f:85:b8:
a9:ee:a4:f6:5c:ec:0b:5d:95:70:98:91:9d:b1:e8:
c5:3c:61:0d:26:90:de:bb:fb:4a:7b:0b:59:84:6a:
ba:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EC:10:96:EF:87:20:C9:46:26:D2:22:F8:6F:88:6B:29:B9:FB:95
X509v3 Authority Key Identifier:
keyid:EA:12:19:29:2D:86:CA:96:39:7B:8A:8B:D2:4E:08:B1:A8:97:C1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6hIZKS2GypY5e4qL0k4IsaiXwaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/cbb2e4-88c3-4cc0-9675-c98a1bde6476/1/huwQlu-HIMlGJtIi-G-Iaym5-5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/cbb2e4-88c3-4cc0-9675-c98a1bde6476/1/6hIZKS2GypY5e4qL0k4IsaiXwaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.232.0.0/17
Signature Algorithm: sha256WithRSAEncryption
56:b9:9e:b1:51:c1:6d:2d:26:12:d3:9d:05:2a:d7:56:f7:80:
be:17:8e:36:81:e6:7c:4a:80:3b:2e:c8:90:91:f0:bb:9f:35:
28:dd:95:6c:21:cf:ee:dd:35:d5:60:d4:cb:e5:62:96:92:7c:
e7:e0:f3:84:49:54:1e:c0:6c:2f:f7:03:2c:5e:33:35:ac:4c:
8d:a7:d5:5c:16:3b:4b:db:cc:8f:9d:19:c1:1a:86:20:f8:dd:
19:4a:a1:3c:15:9f:c8:3f:58:28:23:b0:bc:6f:a1:5c:8d:27:
8f:fa:31:34:30:0f:7e:fe:b1:de:e4:4c:9b:2a:3a:7d:5f:ce:
ce:fe:1d:9b:85:8d:38:b1:f8:16:51:37:f9:d2:7b:08:b2:f9:
9e:30:b9:7d:92:73:73:bc:0b:a8:09:96:48:8e:1b:b7:be:5e:
6e:34:23:61:9c:d1:69:04:a9:dc:3a:b9:1b:79:ba:78:1d:54:
d3:88:76:c5:c0:b2:ca:4c:54:c8:fd:e9:08:61:b6:e8:88:36:
7c:83:05:86:2d:d8:1a:05:4b:53:76:f7:90:1e:de:6c:23:08:
de:54:67:47:80:34:fa:95:c7:14:41:c5:45:65:1b:7e:64:47:
b1:93:62:3d:89:3e:87:bd:09:b8:b2:ef:6b:d9:67:ba:35:7b:
88:30:ac:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 19 15:23:01 2024 by rpki-client on console-fra.rpki-client.org