Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/HwLeZfclqYTx-6-r2AKA8glUrxw.roa
File: HwLeZfclqYTx-6-r2AKA8glUrxw.roa (raw, json)
Hash identifier: PMurAOoqH5xnyGez5PWCcC+Tb/hNo6MLAXjSc6EAD9w=
Subject key identifier: 1F:02:DE:65:F7:25:A9:84:F1:FB:AF:AB:D8:02:80:F2:09:54:AF:1C
Certificate issuer: /CN=00ca712bb4911b7674c7af047ddd86aa2063ce00
Certificate serial: 01869DEAE7A4DB0632C73F2E0BF3F078083D
Authority key identifier: 00:CA:71:2B:B4:91:1B:76:74:C7:AF:04:7D:DD:86:AA:20:63:CE:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMpxK7SRG3Z0x68Efd2GqiBjzgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/HwLeZfclqYTx-6-r2AKA8glUrxw.roa
Signing time: Wed 01 Mar 2023 16:04:22 +0000
ROA not before: Wed 01 Mar 2023 16:04:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200010
IP address blocks: 194.104.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:ea:e7:a4:db:06:32:c7:3f:2e:0b:f3:f0:78:08:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00ca712bb4911b7674c7af047ddd86aa2063ce00
Validity
Not Before: Mar 1 16:04:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f02de65f725a984f1fbafabd80280f20954af1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:da:83:96:2b:d5:cf:ea:d2:0b:86:2f:2c:c3:
86:52:14:52:b2:65:07:d1:a4:3e:98:32:97:72:1f:
9c:6f:49:f3:19:47:3b:0b:f7:f7:55:45:0a:8f:24:
db:0c:34:66:57:f7:78:8b:b2:1e:ab:30:d6:7c:25:
26:0d:8c:c1:ff:07:e1:8a:43:96:e7:b7:75:50:df:
8b:77:23:70:30:26:d9:3a:bd:42:30:2c:b8:ad:f1:
87:93:a1:a1:43:a4:ba:1d:1b:b7:85:47:9a:09:cd:
17:8a:41:9a:e4:9d:5a:d7:52:d7:e2:a1:bb:87:d8:
af:64:38:b0:1c:19:9b:d8:d9:e5:5a:72:1c:2f:94:
f1:de:5b:80:1a:d6:1c:5c:37:ba:86:2d:ee:b9:fd:
d5:4f:96:30:5b:9d:e4:ef:dd:73:31:1b:f6:57:71:
0f:10:b6:f8:a0:bb:4b:9c:de:3e:f5:19:0c:17:26:
b3:02:a5:8f:a0:25:93:fd:5a:b7:d0:ec:b7:c3:00:
44:52:ba:c4:1c:74:44:2b:1c:a7:36:c7:4b:42:2b:
f1:14:eb:6e:98:37:db:80:39:0b:6e:64:06:37:0a:
8e:0c:aa:09:1e:b2:c5:f1:0c:57:9e:d2:bc:ef:84:
eb:9f:15:d8:9e:48:b0:f5:03:71:ec:b3:f2:0e:be:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:02:DE:65:F7:25:A9:84:F1:FB:AF:AB:D8:02:80:F2:09:54:AF:1C
X509v3 Authority Key Identifier:
keyid:00:CA:71:2B:B4:91:1B:76:74:C7:AF:04:7D:DD:86:AA:20:63:CE:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMpxK7SRG3Z0x68Efd2GqiBjzgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/HwLeZfclqYTx-6-r2AKA8glUrxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3822e5-07a4-4a38-ae68-b6c04330ccd1/1/AMpxK7SRG3Z0x68Efd2GqiBjzgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.135.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:7d:e6:58:9c:bf:62:9f:44:8e:df:17:df:de:03:49:5d:73:
86:65:c1:48:ee:44:85:02:f9:ee:70:86:09:40:63:7e:68:24:
37:38:53:f5:20:e3:1e:a8:80:e0:58:a7:32:82:58:90:65:6a:
25:66:37:f6:0e:61:2f:5d:c2:5d:76:02:b5:20:fc:39:81:d7:
4d:9e:18:40:50:15:c8:b2:9e:a5:bd:12:a5:71:bb:a9:21:fb:
45:1b:c9:01:39:60:dc:87:e5:a2:37:1a:04:c2:96:39:bb:9d:
2a:9b:3a:f6:79:92:d6:89:fa:6a:34:f1:da:37:c0:99:0c:41:
58:46:50:7d:24:54:ae:d6:2e:eb:b0:46:f1:32:93:64:98:26:
07:29:45:62:4d:39:39:fa:29:5f:15:71:8c:bd:21:65:84:a5:
f6:69:80:f6:95:77:45:dc:7c:43:b7:ab:a4:9e:2d:61:c7:56:
1b:26:7e:47:22:fc:25:e5:d5:46:04:9a:67:84:c1:5f:f5:8a:
da:0b:75:c3:0d:73:ed:1d:d3:3b:7a:f0:ab:f9:02:b8:f9:a4:
27:ab:2f:2c:48:7c:1e:2a:15:46:89:b4:cc:eb:99:65:56:24:
7b:1f:e3:3f:04:e1:61:7d:09:d9:fd:cc:b3:fa:21:e2:f8:c3:
82:b2:36:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org