Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/HRkDrb3_he19sSXmGasvnFt7BPA.roa
File: HRkDrb3_he19sSXmGasvnFt7BPA.roa (raw, json)
Hash identifier: cuy4Ui9eFzceZmTpQ55tefEJoeEySB3AHw7eIlFC+Rg=
Subject key identifier: 1D:19:03:AD:BD:FF:85:ED:7D:B1:25:E6:19:AB:2F:9C:5B:7B:04:F0
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DBDAC6B83FCB9FA1476EBA85535AB
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/HRkDrb3_he19sSXmGasvnFt7BPA.roa
Signing time: Sun 01 Jan 2023 22:04:52 +0000
ROA not before: Sun 01 Jan 2023 22:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202251
IP address blocks: 81.12.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:bd:ac:6b:83:fc:b9:fa:14:76:eb:a8:55:35:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d1903adbdff85ed7db125e619ab2f9c5b7b04f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:aa:ab:74:68:8c:54:3f:7f:05:9a:8a:99:93:
4a:51:13:51:48:98:a6:54:16:1f:a5:01:45:10:49:
3e:b5:11:33:e8:0d:69:33:64:1e:39:7f:39:4e:db:
3d:36:72:ce:43:2f:0e:ac:f7:0c:0a:86:b6:7e:08:
6e:af:f5:56:4b:16:e3:b4:41:2f:6f:c1:cb:28:98:
e0:76:1a:cd:d7:ce:49:21:ef:07:26:25:e3:30:0a:
fe:42:2d:14:eb:19:65:13:12:43:7e:7d:0c:7e:35:
1c:ad:0a:f6:57:65:43:b9:0b:93:2d:60:a8:d9:4b:
3e:fe:ce:af:92:ac:42:82:8c:c5:92:bb:80:18:3f:
1e:c2:b9:f2:70:1f:98:40:8f:ac:b3:68:51:56:9e:
1d:03:01:bb:d1:bb:ae:86:b7:e1:60:76:57:29:eb:
71:10:eb:aa:4a:96:72:c6:2e:b7:95:87:78:f4:11:
89:da:20:5c:63:9c:81:48:7c:29:f7:c2:a9:39:3b:
90:16:a2:4a:f4:ac:10:52:d2:d0:d1:ea:b4:8d:16:
34:c3:27:d4:2a:d4:6e:42:12:bd:29:8c:fe:06:b5:
cc:17:f6:a6:7d:c8:a6:86:45:07:8a:6e:8a:d1:fd:
61:24:8b:b9:35:da:d7:24:b1:f6:b6:55:cb:6e:46:
50:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:19:03:AD:BD:FF:85:ED:7D:B1:25:E6:19:AB:2F:9C:5B:7B:04:F0
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/HRkDrb3_he19sSXmGasvnFt7BPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.39.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:1b:8c:67:98:c2:9a:ba:39:41:b3:03:31:74:03:3f:0a:4a:
fa:a6:87:21:7b:a2:c1:60:66:40:4c:a1:59:e5:a9:66:ed:5b:
f0:1d:69:1c:14:16:76:a3:69:e7:70:05:67:39:37:9f:41:7f:
b7:f6:a1:c5:b9:2b:a7:ac:16:28:67:df:34:08:04:85:6c:71:
38:a5:37:27:54:ac:1a:88:c1:37:61:b2:d8:08:c8:46:5b:40:
23:be:d5:3b:4f:b4:12:f4:03:0b:17:8a:22:18:a5:f6:c7:0d:
ed:85:d7:e3:b6:42:26:c2:10:40:22:1d:78:e5:f5:f6:5e:88:
f2:3f:aa:af:f5:fa:bf:9e:1f:08:98:1c:bc:2a:1a:63:61:39:
54:86:eb:c5:84:c1:47:94:81:f2:1c:d0:0e:db:ad:1d:c7:19:
4c:10:51:1f:2a:3b:29:20:4e:5b:71:1f:dd:be:29:eb:29:fc:
e2:da:d7:2a:20:07:1a:5d:e2:a7:6a:ed:b9:79:34:6f:61:be:
14:98:09:46:d4:d5:0f:04:e2:f1:f6:8f:09:8e:28:4f:f6:29:
c0:f6:de:5f:54:80:17:88:75:2a:2d:9f:c1:a3:9f:45:88:8b:
26:6c:87:e9:12:40:76:8c:18:4d:aa:0b:71:51:23:32:9d:b5:
3d:9f:3a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:54 2024 by rpki-client on console-ams.rpki-client.org