Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/HNzrY8_wu7vwWc8P7kLr36LsexI.roa
File: HNzrY8_wu7vwWc8P7kLr36LsexI.roa (raw, json)
Hash identifier: dTTviuZkpPgfzmgVvfcfBXraD0lKRS/tI10/O5aPUdo=
Subject key identifier: 1C:DC:EB:63:CF:F0:BB:BB:F0:59:CF:0F:EE:42:EB:DF:A2:EC:7B:12
Certificate issuer: /CN=1c53911705ae860c299e6a1a412e50eda1c8228e
Certificate serial: 01856D386DB2822E63D9247010D2BB96FC25
Authority key identifier: 1C:53:91:17:05:AE:86:0C:29:9E:6A:1A:41:2E:50:ED:A1:C8:22:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFORFwWuhgwpnmoaQS5Q7aHIIo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/HNzrY8_wu7vwWc8P7kLr36LsexI.roa
Signing time: Sun 01 Jan 2023 12:04:52 +0000
ROA not before: Sun 01 Jan 2023 12:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51566
IP address blocks: 193.189.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:38:6d:b2:82:2e:63:d9:24:70:10:d2:bb:96:fc:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c53911705ae860c299e6a1a412e50eda1c8228e
Validity
Not Before: Jan 1 12:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cdceb63cff0bbbbf059cf0fee42ebdfa2ec7b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bd:3f:5a:b8:ea:22:1b:b6:f3:91:74:66:40:
10:30:be:f5:0a:0e:fd:24:37:01:b2:2d:b6:5f:af:
1f:97:3c:8d:fb:d8:24:1d:e0:df:4d:4d:18:c1:b4:
fc:e5:d8:2d:b7:b4:ee:6d:54:b9:c9:91:cf:86:4e:
24:6c:70:ac:2a:d8:c5:ee:b7:10:5d:82:92:59:47:
16:fe:b3:89:8b:22:34:35:cc:19:1f:36:d2:bb:ba:
8b:95:bd:57:1f:a5:13:41:01:84:72:bc:5e:76:2d:
66:a5:b8:44:3a:11:15:51:be:07:5f:72:32:cb:2f:
2e:e3:98:21:b8:b0:7e:dd:97:4d:04:75:f3:3e:0d:
f8:e3:e3:33:4b:e2:d7:84:af:d1:d1:23:71:af:45:
dc:ad:57:3a:4d:72:51:13:9b:d4:3b:a6:ae:66:aa:
58:43:3b:55:b0:95:49:16:49:77:6d:6a:fa:9c:43:
5d:cb:d0:f6:ba:c4:24:e7:43:db:b0:4c:c3:09:55:
52:49:f9:48:f0:c3:02:88:52:49:c5:dd:71:4d:b8:
67:3e:81:c8:95:69:ac:86:e9:e6:26:8e:66:f1:97:
d5:ea:df:c9:28:e9:54:5f:5a:66:20:8e:83:93:47:
b8:83:df:e8:26:05:5b:1d:5c:e5:c5:3a:f5:ab:0f:
a2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DC:EB:63:CF:F0:BB:BB:F0:59:CF:0F:EE:42:EB:DF:A2:EC:7B:12
X509v3 Authority Key Identifier:
keyid:1C:53:91:17:05:AE:86:0C:29:9E:6A:1A:41:2E:50:ED:A1:C8:22:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFORFwWuhgwpnmoaQS5Q7aHIIo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/HNzrY8_wu7vwWc8P7kLr36LsexI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ad6ef5-3216-46cb-965e-3e7f8308cc55/1/HFORFwWuhgwpnmoaQS5Q7aHIIo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.142.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:4e:65:a7:9e:a4:73:39:05:e0:94:01:66:ee:70:04:b6:d5:
b3:c6:f2:fa:1a:01:91:cf:03:59:6f:71:1b:bd:30:90:12:02:
bb:f9:bd:e4:8e:f0:dd:74:9f:ea:35:0a:01:54:b5:d1:1b:3c:
e8:03:9e:07:0d:78:4d:be:64:34:9a:11:53:c9:cc:a3:7b:1c:
5a:a0:08:d2:0b:99:6d:46:23:d7:ba:0e:8b:27:44:58:35:d3:
42:b3:15:7b:b3:fb:c1:ce:3b:19:d2:11:d0:01:99:53:15:fd:
24:92:3b:33:57:de:f9:08:ea:f6:dc:79:08:47:d0:3b:57:ac:
f2:17:fd:28:3f:eb:41:b4:c0:16:bd:ca:74:ef:47:90:7a:30:
fa:0d:b7:24:f4:aa:e4:d4:a1:e4:5f:15:be:a4:a5:0a:ec:03:
ba:66:40:28:30:55:78:83:6d:ff:b8:b7:86:c6:bc:93:25:53:
46:0e:3a:ca:1c:d8:f2:94:b5:7c:33:fe:a3:e6:4f:24:b9:2e:
9d:be:2b:e1:c2:ab:e7:8d:fd:da:f9:0d:c2:54:8a:a3:c4:22:
78:16:dd:90:5c:d4:df:b5:0a:14:d0:40:2e:01:3a:f1:46:d8:
dd:39:65:12:6d:ec:40:55:8f:c1:97:c3:7c:ce:60:54:f0:90:
e0:51:bf:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:49 2024 by rpki-client on console-ams.rpki-client.org