Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/hzUkZi6moDHJiwuwJk11biZfN5s.roa
File: hzUkZi6moDHJiwuwJk11biZfN5s.roa (raw, json)
Hash identifier: /6zFCuPrKEkheGSAS0HioG53rzgmGun4A6SjreVHsWg=
Subject key identifier: 87:35:24:66:2E:A6:A0:31:C9:8B:0B:B0:26:4D:75:6E:26:5F:37:9B
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018B8A364DAF4765CBDF70B4F4B53B856820
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/hzUkZi6moDHJiwuwJk11biZfN5s.roa
Signing time: Wed 01 Nov 2023 09:28:16 +0000
ROA not before: Wed 01 Nov 2023 09:28:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51026
IP address blocks: 81.12.24.0/22 maxlen: 24
81.12.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:36:4d:af:47:65:cb:df:70:b4:f4:b5:3b:85:68:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Nov 1 09:28:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=873524662ea6a031c98b0bb0264d756e265f379b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2b:85:cb:af:ce:c0:90:d7:73:4e:3e:e2:44:
55:01:f9:a5:08:50:be:4c:9a:44:c7:9e:40:11:c6:
2d:f9:9c:c5:00:e4:22:77:13:65:12:57:52:46:20:
70:38:f7:09:29:93:fe:84:10:71:bc:54:d1:8b:8f:
7c:b4:ff:00:25:4d:9e:29:3c:5d:34:40:b7:8c:8c:
37:ae:f9:2f:b8:c1:6a:d8:5e:02:55:35:e5:06:9a:
e1:86:53:46:8e:02:53:68:a2:f3:70:4f:ea:f2:cb:
d6:55:08:d8:b6:11:95:26:32:fd:12:91:d1:0e:70:
0d:be:50:d4:a4:4a:9e:d3:e5:df:62:34:1d:4c:23:
cb:d2:70:89:69:5f:38:33:5d:98:72:bc:8a:1b:e5:
7f:4c:4b:ed:eb:72:00:b9:dc:ed:1f:b6:59:92:35:
f1:77:a5:df:a7:b3:0a:42:94:43:46:fd:f7:c3:b6:
95:69:ac:8c:bb:ed:4a:af:78:8e:72:dd:a7:78:3d:
10:23:f6:8d:d7:6a:d3:c8:b0:84:25:be:89:7c:a7:
14:f0:2b:1e:77:5b:1c:ed:91:36:d8:2b:e5:10:91:
c8:d2:9c:4b:03:ed:da:e8:c6:de:7d:e1:7b:85:5c:
fa:18:e3:79:c9:3b:05:c6:6b:75:23:52:8e:4d:4d:
a3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:35:24:66:2E:A6:A0:31:C9:8B:0B:B0:26:4D:75:6E:26:5F:37:9B
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/hzUkZi6moDHJiwuwJk11biZfN5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.24.0/22
Signature Algorithm: sha256WithRSAEncryption
52:48:2f:f3:13:9a:51:9a:67:40:ba:32:45:aa:20:ad:f4:fc:
7f:6d:c6:99:f6:92:b7:16:a1:93:ee:77:97:a3:b2:cd:df:51:
bb:2b:9e:a2:33:44:e9:10:11:21:3e:3e:73:ac:c9:c1:31:05:
bb:31:65:c8:20:97:95:5b:de:74:5c:8c:b9:b9:b9:2a:ec:69:
df:86:b2:f1:a6:f8:4b:86:09:c0:0e:99:b2:c9:4e:b3:6a:1e:
a1:d9:35:23:a3:28:74:58:d1:96:f5:43:92:20:98:4d:b8:c4:
ec:87:9a:fe:48:1b:29:b8:3e:ab:e0:c7:f8:4b:9d:00:49:ff:
6c:41:c2:b0:66:bc:11:5e:3c:5e:4d:64:c6:d6:91:99:b1:c6:
a4:63:1b:b2:c5:1d:fa:99:1a:89:73:bb:00:70:1f:46:78:f6:
c4:24:a0:e8:4c:a7:72:16:ca:d5:16:68:00:80:e8:e0:c0:48:
db:09:8a:cc:12:d8:3e:18:0d:e3:95:fd:24:37:fc:72:92:ba:
27:a2:e2:0e:8c:83:4b:b7:04:39:a3:22:39:9a:17:eb:6e:98:
c5:d3:ea:6d:38:12:2d:08:f6:ad:80:90:c6:6b:80:aa:96:bd:
e2:74:1a:07:7f:e9:3e:45:05:22:4d:2d:9d:6c:fa:31:4d:01:
f6:4c:f3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:35 2024 by rpki-client on console-fra.rpki-client.org