Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/HWxFhNHzumz1XLOpaex3n8mq5Tw.roa
File: HWxFhNHzumz1XLOpaex3n8mq5Tw.roa (raw, json)
Hash identifier: ALva7o7WUrPy7ygCfGrV4DY0YTKNZciqSaGOGRFpSek=
Subject key identifier: 1D:6C:45:84:D1:F3:BA:6C:F5:5C:B3:A9:69:EC:77:9F:C9:AA:E5:3C
Certificate issuer: /CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Certificate serial: 0185714C2714EFF99574775F0F0421B9C645
Authority key identifier: 7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/HWxFhNHzumz1XLOpaex3n8mq5Tw.roa
Signing time: Mon 02 Jan 2023 07:04:54 +0000
ROA not before: Mon 02 Jan 2023 07:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60718
IP address blocks: 2.57.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:27:14:ef:f9:95:74:77:5f:0f:04:21:b9:c6:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ec610d215d3891342bc32872a50f4d0cfa9dc9f
Validity
Not Before: Jan 2 07:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d6c4584d1f3ba6cf55cb3a969ec779fc9aae53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:91:a4:cf:d1:6e:a1:4f:65:1b:da:88:08:43:
48:57:35:63:4d:7c:c3:e1:35:89:40:86:e8:f7:84:
c0:e1:7d:da:a9:e2:49:29:24:2d:68:0c:62:e7:b0:
9c:75:ee:62:4b:72:61:1f:87:a1:0e:2e:a9:35:e5:
2d:11:47:4f:41:65:5b:e7:a1:b9:3f:a2:4d:1c:e1:
be:64:46:b6:5f:01:82:9f:40:ce:a1:8a:b9:b4:07:
56:29:e3:e7:91:57:0b:c9:67:5b:2c:f6:bb:97:75:
6f:f7:b6:a5:58:da:ab:5e:c5:b0:95:10:04:0a:da:
2c:4d:60:a9:cf:0a:14:d9:be:c2:76:ac:e8:6c:82:
71:ce:10:99:3c:26:dc:7a:51:8f:e8:f6:7a:5e:ab:
28:0e:83:ff:d3:4f:02:dc:2d:4e:dd:21:5d:cc:b8:
b7:1d:25:0a:5d:39:b9:5b:58:33:a2:66:8d:1c:ee:
46:fa:e5:c9:24:f7:c6:a9:7e:4e:4a:ab:75:b0:ac:
7b:cd:62:6c:59:cb:4c:a2:8f:3c:37:0b:81:95:a4:
37:c5:c7:2d:b9:d8:29:1f:1f:52:1f:ad:de:04:11:
dd:cf:b9:aa:4f:ab:f7:d4:e3:65:d6:75:fb:ea:ef:
36:68:d7:93:2b:d5:85:27:68:e6:37:6e:7d:1d:8f:
04:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6C:45:84:D1:F3:BA:6C:F5:5C:B3:A9:69:EC:77:9F:C9:AA:E5:3C
X509v3 Authority Key Identifier:
keyid:7E:C6:10:D2:15:D3:89:13:42:BC:32:87:2A:50:F4:D0:CF:A9:DC:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fsYQ0hXTiRNCvDKHKlD00M-p3J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/HWxFhNHzumz1XLOpaex3n8mq5Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/22911c-ce51-438b-86cf-e856613d2b10/1/fsYQ0hXTiRNCvDKHKlD00M-p3J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.72.0/22
Signature Algorithm: sha256WithRSAEncryption
65:ea:8d:f1:38:fb:9f:12:1b:54:d5:e1:38:53:c3:87:27:08:
86:50:8c:3c:d5:96:e8:8e:fa:f6:62:63:17:f2:34:8b:24:20:
a0:61:34:f1:17:d4:cc:54:f7:52:6a:fc:e0:35:bf:78:98:73:
94:e6:cc:0e:4e:6f:28:39:96:d8:cf:49:33:d1:59:c2:e0:be:
2f:4e:f5:20:0e:d0:2e:3f:0c:8f:cc:2f:df:d3:76:f7:1a:7d:
74:8b:e5:a0:08:fa:f8:77:42:71:5d:97:8f:31:d5:ab:84:92:
c0:a6:3d:c0:55:e1:8f:96:da:41:e8:0e:62:04:41:be:dd:8f:
5d:f4:cb:f8:6f:37:76:d7:78:7a:8c:0b:d2:d3:b1:4b:62:33:
98:e6:7e:7a:22:ef:c5:ba:e4:b7:e1:a5:30:44:ff:65:ca:c9:
c5:a0:3f:8f:57:99:07:52:d7:65:15:57:b9:10:04:87:60:9b:
fe:2d:dd:81:70:22:1d:c0:e8:04:16:5a:36:81:45:30:2d:e0:
68:2d:10:59:80:f9:23:04:a8:d8:b8:cb:8c:2d:34:98:b7:5a:
43:9e:03:51:0e:d2:25:95:97:a3:2e:7a:8d:72:5b:b4:6d:66:
74:96:da:a7:c1:d3:90:15:4e:30:12:2d:79:5d:ad:68:8e:d7:
cd:5a:c8:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:20 2024 by rpki-client on console-fra.rpki-client.org