Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HL8vxdIgxYQB4SMY0Xl4eVHYBfs.roa
File: HL8vxdIgxYQB4SMY0Xl4eVHYBfs.roa (raw, json)
Hash identifier: 0f36LGvNmQiyDFbPoXpWwBBmXow5LDQRnQemAu0xlS4=
Subject key identifier: 1C:BF:2F:C5:D2:20:C5:84:01:E1:23:18:D1:79:78:79:51:D8:05:FB
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01897B8A95F993387D91526CE8754BCE9159
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HL8vxdIgxYQB4SMY0Xl4eVHYBfs.roa
Signing time: Sat 22 Jul 2023 03:00:27 +0000
ROA not before: Sat 22 Jul 2023 03:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199524
IP address blocks: 45.130.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jul 2023 04:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7b:8a:95:f9:93:38:7d:91:52:6c:e8:75:4b:ce:91:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 22 03:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cbf2fc5d220c58401e12318d179787951d805fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c4:9a:d2:6c:13:eb:f4:72:8e:48:d3:f1:2e:
c3:3e:a0:30:77:89:21:95:da:02:4f:c4:6f:57:e0:
1d:7c:e2:44:27:d3:a1:03:a2:2c:58:34:1a:85:9d:
b6:12:58:d6:d6:0c:bc:6c:48:b3:16:55:74:51:2f:
f2:dc:45:af:4e:5b:e9:7a:e8:40:c7:8a:f7:55:c2:
a2:d6:b3:d6:92:7f:2e:f0:42:d9:d4:41:32:15:f9:
c8:61:3d:13:b9:50:8d:ff:d3:84:89:98:2c:11:d5:
1e:59:8b:a3:53:be:64:a7:55:a8:e9:6c:df:e3:29:
f0:f5:1c:6d:9f:a6:b1:5a:fe:af:a3:fa:6f:3a:2e:
fa:ee:94:b8:93:89:16:5b:1b:2d:fb:9e:95:81:cf:
61:d7:f6:cd:f0:41:de:c2:81:3f:16:d6:b8:99:fc:
5b:cc:c8:7a:9a:88:e4:fc:c9:0c:8e:ed:dc:93:2f:
d0:2a:f1:33:92:b3:de:81:48:71:65:2b:36:4f:02:
0a:b9:f8:74:b6:2d:30:28:f3:42:ac:37:10:93:e6:
c6:7f:51:5c:06:3f:f7:63:a1:aa:e5:68:be:06:65:
52:08:eb:4f:d9:7c:0d:b6:58:36:d5:db:de:ce:de:
07:6b:e7:fc:47:6c:ff:82:43:21:c0:77:a5:46:da:
4e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BF:2F:C5:D2:20:C5:84:01:E1:23:18:D1:79:78:79:51:D8:05:FB
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HL8vxdIgxYQB4SMY0Xl4eVHYBfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.137.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:19:7a:97:a4:dd:a9:de:3a:2c:69:a7:de:34:3d:2b:55:e9:
38:69:fc:95:a0:15:60:27:3f:97:b2:26:1d:f0:8b:05:6f:3d:
a0:57:04:c4:7d:4b:da:e5:57:8f:86:f2:ec:a7:00:25:9b:8b:
05:34:a9:0e:ae:85:78:6e:04:ff:c4:0e:87:bb:13:4a:5f:38:
e7:9b:62:20:9d:cd:ab:5d:f3:33:42:26:dd:f6:f5:2b:20:c3:
88:d9:03:58:f0:88:d3:80:57:11:64:da:6a:f7:c8:31:93:fc:
f6:b4:25:9f:8a:e7:1c:fb:c9:a7:74:8d:37:d4:5f:1a:3c:6a:
93:27:94:8a:ac:ef:51:89:c5:ff:25:44:0f:c8:3a:6c:87:f2:
36:65:6d:28:38:51:01:f3:45:65:4f:12:fc:1d:c7:2c:10:9c:
08:3b:07:ea:9d:cd:60:77:86:78:26:d8:e6:21:44:43:82:ef:
3f:cb:10:24:57:d1:70:dc:7b:ed:9f:66:75:f0:8b:4c:15:7d:
09:a9:e8:b2:f1:cc:6e:09:f1:09:e1:90:26:7d:11:aa:8a:1f:
33:03:17:29:cd:16:ea:6e:90:4b:fa:83:da:81:87:37:57:f7:
33:88:cc:e5:4a:8a:cd:02:87:ca:1c:2a:5b:0d:2d:92:1a:2a:
61:67:bf:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org