Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/hvQj0VwHvBaKe3YgBWJyxx4-uJM.roa
File: hvQj0VwHvBaKe3YgBWJyxx4-uJM.roa (raw, json)
Hash identifier: VQRMasYXJZmn6W9ccD6DMeSeFxeY8y3bodV+HkY91E8=
Subject key identifier: 86:F4:23:D1:5C:07:BC:16:8A:7B:76:20:05:62:72:C7:1E:3E:B8:93
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 01857139AF69EAC317250F3517535246D1AB
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/hvQj0VwHvBaKe3YgBWJyxx4-uJM.roa
Signing time: Mon 02 Jan 2023 06:44:43 +0000
ROA not before: Mon 02 Jan 2023 06:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 185.154.150.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 22 Nov 2023 18:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:af:69:ea:c3:17:25:0f:35:17:53:52:46:d1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Jan 2 06:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86f423d15c07bc168a7b7620056272c71e3eb893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0d:2f:ef:4b:e8:72:99:4f:e6:bf:fc:2c:8d:
28:41:be:ff:5d:9b:2d:dd:17:f7:1b:8d:6a:de:4c:
7c:3e:9f:33:d5:ca:81:99:be:3a:b0:e0:0b:66:b6:
50:da:7e:e9:3c:42:55:fa:f4:31:dd:ea:d8:c6:3f:
3b:04:f4:fc:81:f0:58:f7:63:97:b3:89:62:48:0b:
3d:fd:ac:30:9b:9f:c1:8b:b6:53:1a:94:4e:5a:47:
1c:04:8c:70:48:c7:ba:3c:f2:81:78:37:91:b5:f5:
5f:42:a9:57:80:f6:86:94:b1:ae:1e:dd:d2:fd:82:
a4:10:e0:ff:09:f1:7c:4e:57:3e:ea:44:3d:ec:02:
98:71:6f:76:9e:2f:a3:ac:34:80:8e:06:0f:42:25:
8d:d9:5c:3d:05:c9:71:1b:d8:42:d7:41:6a:32:17:
7d:eb:d6:34:55:88:f0:69:a4:8b:a9:fc:be:de:0d:
c6:d8:25:00:08:42:67:cd:63:de:28:a9:ab:cc:58:
a2:de:31:64:ed:46:8f:c9:b4:48:51:d4:0f:78:9a:
57:aa:02:b3:2d:b9:93:23:cc:51:40:c4:4b:80:ab:
5a:98:ef:01:5c:11:ee:d0:bd:e7:3c:91:aa:54:be:
80:f3:89:42:a1:08:38:3d:74:b5:85:12:08:28:d1:
15:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F4:23:D1:5C:07:BC:16:8A:7B:76:20:05:62:72:C7:1E:3E:B8:93
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/hvQj0VwHvBaKe3YgBWJyxx4-uJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.150.0/23
Signature Algorithm: sha256WithRSAEncryption
67:d3:51:a9:9d:24:63:75:b0:6b:55:a2:7f:e3:95:89:64:e5:
5f:a2:f7:96:28:e2:39:91:8d:ab:2e:59:83:dd:80:c9:ce:3f:
f9:3f:db:7f:3c:42:13:63:e7:59:d7:b8:08:b4:12:44:c9:ce:
c2:1f:37:9e:ee:b2:76:d1:13:61:1c:2d:87:0d:fe:01:07:2a:
aa:d4:78:5a:84:b6:6b:53:36:8a:c4:20:6e:99:60:fa:e7:28:
86:ca:e5:2b:1c:37:be:5b:d0:00:cb:11:38:ab:31:3f:5d:b1:
f0:78:25:b6:d5:0c:b0:2c:3d:1f:04:d7:13:b7:00:63:2a:75:
1d:9d:07:7d:11:e1:5b:86:e8:53:2e:41:43:31:89:70:fa:65:
60:2e:e6:e5:11:6f:88:cc:24:f7:c7:b2:5f:63:77:de:f8:63:
63:36:e6:19:c9:6b:b0:31:9b:20:a7:9d:b8:5a:03:a2:07:a6:
fd:38:7c:58:65:b0:80:73:31:f4:ba:71:06:45:b6:eb:62:7c:
fb:2d:8b:ed:9f:7d:29:4e:f5:1c:71:f4:14:ed:c5:ee:12:f9:
a9:ea:d2:5c:c3:86:f9:08:1f:b3:77:c0:94:9f:3b:53:f0:22:
81:88:54:39:9c:d6:cf:dc:3b:d0:67:18:1d:64:21:0d:f9:d5:
57:7d:11:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org