Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/hPaekoTBhJ-7W96YL7n80BYM4HQ.roa
File: hPaekoTBhJ-7W96YL7n80BYM4HQ.roa (raw, json)
Hash identifier: zTWlezA8ii404SxZn5wE95q9FckIAVtng5GLsJMgxos=
Subject key identifier: 84:F6:9E:92:84:C1:84:9F:BB:5B:DE:98:2F:B9:FC:D0:16:0C:E0:74
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 018AFA5AEF76AF5664BD55201CF4A5C4BB4C
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/hPaekoTBhJ-7W96YL7n80BYM4HQ.roa
Signing time: Wed 04 Oct 2023 11:02:58 +0000
ROA not before: Wed 04 Oct 2023 11:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42055
IP address blocks: 45.66.93.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:5a:ef:76:af:56:64:bd:55:20:1c:f4:a5:c4:bb:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Oct 4 11:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84f69e9284c1849fbb5bde982fb9fcd0160ce074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2b:a4:b2:5b:d7:23:6a:9d:47:43:03:ad:7d:
be:22:74:64:f6:30:86:ed:93:79:0c:6f:06:f9:58:
84:84:7b:a6:2b:ae:4f:31:8c:70:99:80:30:6e:bd:
6a:97:4c:ad:1c:f6:e5:6a:a0:bb:4a:a7:01:6e:0d:
a8:87:a8:e8:c8:6b:ec:5b:e9:3b:fc:44:f6:bc:c9:
8a:1a:a2:ac:ed:73:ac:ba:32:86:8b:9b:87:64:f6:
7e:79:09:b0:44:41:c7:f3:c9:a1:90:33:42:f0:5b:
e3:3d:26:18:bc:a9:a3:21:b6:d5:08:62:04:e8:70:
df:18:ea:e0:34:58:95:55:e8:d9:aa:ef:1e:35:4e:
2d:00:12:9c:f2:5e:bf:5f:3c:9f:cc:3a:8b:51:e9:
8a:98:e4:6a:f2:9b:32:a7:35:55:05:79:16:8c:1a:
96:3a:35:26:31:63:1e:51:34:3d:11:89:db:d9:07:
98:92:3d:0a:aa:31:7e:32:24:8e:e5:62:3a:ea:43:
87:0e:f1:df:02:d7:e7:77:b8:30:03:5f:1e:30:d9:
76:8d:e7:92:0f:14:a6:d7:f6:6a:09:ae:94:93:e7:
82:53:7a:0b:ea:22:a2:6e:b6:91:65:9a:1d:31:6a:
8e:9a:2a:c1:d9:76:c2:ad:ce:78:27:1e:20:f8:83:
fb:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F6:9E:92:84:C1:84:9F:BB:5B:DE:98:2F:B9:FC:D0:16:0C:E0:74
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/hPaekoTBhJ-7W96YL7n80BYM4HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.93.0/24
Signature Algorithm: sha256WithRSAEncryption
22:f5:cf:79:66:b0:3d:46:13:4b:c7:fe:e8:c6:28:92:02:98:
b4:ec:f5:01:95:ba:5c:96:99:b3:90:ed:89:eb:bd:25:bb:29:
7c:c4:a7:b0:81:f6:10:37:c6:35:1e:62:64:df:e8:2c:d8:40:
ca:23:16:86:b9:75:17:66:22:be:9e:55:b0:ac:14:bc:26:a9:
1d:43:00:e6:44:40:9f:c8:9d:ef:50:91:d1:d4:73:c3:48:65:
2d:21:31:9c:4f:55:45:26:a6:34:e7:8c:58:df:6f:b2:b6:8d:
3b:af:c9:ab:4c:50:25:fa:c4:11:ab:7f:ef:05:fe:e8:42:a0:
ee:3d:19:33:a3:50:6a:5f:a3:eb:a6:46:7f:5b:2b:ef:c7:ee:
6e:7d:13:b3:27:8c:ca:a4:d8:88:49:9a:22:65:38:a7:85:c2:
75:74:b2:af:bb:66:9f:eb:9d:70:92:d7:2e:fd:b4:25:bc:33:
83:41:9e:83:d6:57:25:b8:35:b0:86:6e:63:9b:6f:de:be:b8:
45:23:b4:64:7c:f9:5c:6b:84:49:2a:4c:c9:f1:14:03:4a:cb:
67:c9:ad:c2:44:66:f5:c0:e7:c6:de:35:28:a9:38:3b:8f:cf:
19:82:9c:d5:9d:3b:22:8f:50:a8:20:03:d7:65:9c:71:bc:7a:
f7:f8:36:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 12:33:16 2023 by rpki-client on console-fra.rpki-client.org