Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/HmU_fF7SI3ny22HClxnCbUJXajo.roa
File: HmU_fF7SI3ny22HClxnCbUJXajo.roa (raw, json)
Hash identifier: bKqi1PXFbUr655eJ0rrEm2xTkCqVA3EECdEJ1kRgl7M=
Subject key identifier: 1E:65:3F:7C:5E:D2:23:79:F2:DB:61:C2:97:19:C2:6D:42:57:6A:3A
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0188351F9FC83AA2A6ACC43101119F68D036
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/HmU_fF7SI3ny22HClxnCbUJXajo.roa
Signing time: Fri 19 May 2023 17:47:24 +0000
ROA not before: Fri 19 May 2023 17:47:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 212.192.195.0/24 maxlen: 24
212.192.196.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 14:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:35:1f:9f:c8:3a:a2:a6:ac:c4:31:01:11:9f:68:d0:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 19 17:47:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e653f7c5ed22379f2db61c29719c26d42576a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fa:89:6e:9a:bc:ee:bf:8b:29:3e:a5:40:cf:
d6:4c:21:d3:5f:48:70:3a:0c:e6:84:26:96:dd:55:
4c:90:d2:2e:51:d3:de:4d:09:e7:32:44:51:a8:ae:
79:76:50:bf:bc:8d:dc:8c:ca:9a:66:51:e3:69:18:
e5:53:e7:e3:30:13:8d:c7:55:7d:5c:40:3e:4c:f0:
03:0f:93:65:66:90:1a:d9:c0:96:68:1c:9f:af:e4:
4d:d3:4e:82:06:51:30:56:8c:c1:6c:ee:de:99:95:
b0:4b:59:a6:22:81:e7:00:d8:3c:a5:19:af:10:c9:
6e:e5:f7:7f:40:d0:c7:6f:81:04:7f:11:08:9d:44:
48:be:46:de:92:dc:bd:39:a6:44:a3:3f:6e:cf:c8:
0d:59:26:5f:3b:be:68:ba:f4:81:0e:c3:fa:22:4d:
82:24:27:c9:a8:be:47:ca:65:7f:36:b9:a4:03:ab:
35:16:65:99:cf:95:d5:a8:ae:6b:a7:7b:94:c8:0b:
22:e6:f6:58:26:14:e9:27:28:7e:d3:6c:c9:1e:a1:
ff:cd:1d:c6:16:1d:c6:11:e2:8f:9b:1d:55:c2:7f:
80:a0:4f:ed:81:44:1b:09:5c:90:68:f8:59:02:10:
04:13:03:9a:be:fc:9b:d6:c7:60:fb:b0:8d:6c:3c:
82:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:65:3F:7C:5E:D2:23:79:F2:DB:61:C2:97:19:C2:6D:42:57:6A:3A
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/HmU_fF7SI3ny22HClxnCbUJXajo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.195.0-212.192.199.255
Signature Algorithm: sha256WithRSAEncryption
41:e4:35:f5:67:82:ef:b4:72:62:db:cb:0d:91:88:05:30:23:
fa:f7:cd:f8:86:d5:be:8d:c2:2d:a8:ad:c7:72:4b:a3:2a:00:
f3:8e:ee:dd:1f:4d:fa:a2:13:f4:c5:f9:27:c3:ac:eb:bd:e5:
3e:89:ff:2e:03:07:f9:82:c8:8d:8e:9d:86:94:cd:39:03:1d:
8c:8a:79:32:65:cb:6b:67:bb:94:52:ab:88:b5:be:ee:ac:45:
bc:32:d1:05:9f:60:6a:34:80:03:01:8e:76:53:09:d1:fd:49:
d4:05:1e:64:ef:b3:74:f3:3f:1d:dd:45:16:a5:e9:66:0f:fa:
55:7d:2c:c9:6c:dc:fc:6f:74:5d:f2:e9:17:f5:87:28:f9:23:
7d:59:c1:e2:f3:17:75:68:1c:8a:dc:6f:d7:f7:88:13:1d:d4:
ec:93:aa:ab:1a:eb:ef:eb:0b:0f:7c:0e:11:3c:08:71:86:a1:
fc:73:26:eb:b7:00:ba:7e:54:98:5e:b5:4b:e3:f5:5c:73:e1:
88:8c:f3:1d:00:a5:27:4f:a7:9b:98:34:49:7b:da:48:65:d3:
26:71:88:38:32:dc:a4:cc:aa:e2:8d:4c:73:ed:6c:66:39:94:
55:ff:42:88:65:df:b9:9c:fb:fa:43:86:23:ab:ba:ce:68:8c:
db:99:32:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org