Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/HU23KNPl-NlSG_UWPfTnVdGZvMc.roa
File: HU23KNPl-NlSG_UWPfTnVdGZvMc.roa (raw, json)
Hash identifier: vBskzYf1Qfn1oYVXP9tkh6BOzxLwgh/kQEWu6F0uG5A=
Subject key identifier: 1D:4D:B7:28:D3:E5:F8:D9:52:1B:F5:16:3D:F4:E7:55:D1:99:BC:C7
Certificate issuer: /CN=73fba682d69c1d10708ed7b6aeaa232ee89b901d
Certificate serial: 01856CAF2B86899C15B9596DA654B1A1135F
Authority key identifier: 73:FB:A6:82:D6:9C:1D:10:70:8E:D7:B6:AE:AA:23:2E:E8:9B:90:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_umgtacHRBwjte2rqojLuibkB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/HU23KNPl-NlSG_UWPfTnVdGZvMc.roa
Signing time: Sun 01 Jan 2023 09:34:57 +0000
ROA not before: Sun 01 Jan 2023 09:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29121
IP address blocks: 195.69.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:2b:86:89:9c:15:b9:59:6d:a6:54:b1:a1:13:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73fba682d69c1d10708ed7b6aeaa232ee89b901d
Validity
Not Before: Jan 1 09:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d4db728d3e5f8d9521bf5163df4e755d199bcc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:1d:13:d7:02:fe:52:20:e7:f9:59:c3:ba:
60:2b:bb:10:22:e1:68:3e:3a:4e:1f:b8:92:b0:4d:
b5:f8:d3:50:ac:25:29:f0:3b:92:4d:94:4d:cb:1f:
66:00:01:66:38:83:7a:cf:ca:0e:eb:c9:4b:6d:45:
64:36:96:10:ee:9a:26:0d:7c:d4:65:b1:73:26:b3:
11:50:ec:96:54:17:fc:75:7c:9f:f4:a2:b9:ba:be:
fb:22:0e:48:a4:8c:87:0d:5c:d3:1c:21:3c:34:ee:
85:cc:61:66:a1:34:37:30:75:32:b4:1d:01:64:4f:
1a:1f:80:82:8f:f2:e1:a4:af:12:db:3b:cd:72:93:
35:b0:7a:02:fa:28:83:fc:f2:7c:19:e0:67:12:52:
5d:34:d5:f1:4f:e8:41:98:4b:9b:c0:cb:d8:72:db:
45:03:bd:e6:bf:cf:be:6a:fb:69:f7:81:b5:07:af:
68:49:e6:88:fa:d6:00:c0:c9:dd:20:58:2b:74:56:
50:51:c8:a8:00:1a:e0:bd:45:83:bd:f1:e7:64:73:
d6:e4:62:e0:82:3e:ee:c4:eb:de:4c:e4:5c:21:2f:
34:0b:99:2c:8c:09:f0:a3:af:8b:27:b5:0a:d1:88:
5f:76:c4:eb:f1:84:c8:e0:d2:24:06:71:6a:3e:a8:
ba:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4D:B7:28:D3:E5:F8:D9:52:1B:F5:16:3D:F4:E7:55:D1:99:BC:C7
X509v3 Authority Key Identifier:
keyid:73:FB:A6:82:D6:9C:1D:10:70:8E:D7:B6:AE:AA:23:2E:E8:9B:90:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_umgtacHRBwjte2rqojLuibkB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/HU23KNPl-NlSG_UWPfTnVdGZvMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d2cec5-b245-4547-a9cd-f6c644c94608/1/c_umgtacHRBwjte2rqojLuibkB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.96.0/22
Signature Algorithm: sha256WithRSAEncryption
32:71:55:60:b1:4f:86:34:f2:85:67:18:14:f7:1d:56:47:1a:
77:24:a5:05:9e:58:cf:05:cc:78:4f:c4:0b:1d:d5:38:2b:1b:
25:31:7a:e9:cd:8d:20:45:fb:a3:36:87:79:c6:cc:a4:1c:03:
bd:de:83:d2:5a:5b:ea:49:0b:29:59:48:ea:44:ee:77:0c:db:
b4:e0:b4:99:0a:e4:39:52:54:2b:94:16:77:68:e5:e7:be:4a:
f8:9d:ee:27:cf:04:4d:b6:88:52:8a:dc:6e:c8:31:04:8b:0d:
6d:5c:b0:a2:23:bf:1b:c5:06:a0:35:41:7a:3f:5f:9a:46:be:
7d:64:26:a3:fd:39:63:77:81:92:b6:8b:e1:ac:c9:56:3d:46:
e6:db:ce:f0:5e:f2:19:7b:bb:05:66:a2:91:74:d3:58:25:f3:
27:22:97:78:9e:7d:70:f5:8e:9f:b9:14:5b:d5:33:20:8b:85:
3e:c6:8d:60:45:cf:ab:14:91:4d:f0:cd:71:15:48:a8:9b:b2:
ee:2e:7a:90:a3:04:40:6e:0a:6c:3b:4f:9e:ca:96:6e:c5:03:
9b:de:a9:fb:5a:fc:f3:52:61:c2:3f:d6:02:6d:0a:80:20:0c:
04:9f:e7:61:b8:b0:d1:d1:47:e7:27:64:bc:75:b4:13:d6:ce:
c2:6c:12:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:10 2024 by rpki-client on console-fra.rpki-client.org