Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/hp5-Nvz8MG6Qhr_wNMmTpmategM.roa
File: hp5-Nvz8MG6Qhr_wNMmTpmategM.roa (raw, json)
Hash identifier: IrSbwNzo25XJId88AgDk/IamEhpOSYEeGnKj1S2B9D0=
Subject key identifier: 86:9E:7E:36:FC:FC:30:6E:90:86:BF:F0:34:C9:93:A6:66:AD:7A:03
Certificate issuer: /CN=5d370a48b59fb811495f11c49734482f22b1a392
Certificate serial: 01895478D421F0DCDC102038A0A51851D199
Authority key identifier: 5D:37:0A:48:B5:9F:B8:11:49:5F:11:C4:97:34:48:2F:22:B1:A3:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTcKSLWfuBFJXxHElzRILyKxo5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/hp5-Nvz8MG6Qhr_wNMmTpmategM.roa
Signing time: Fri 14 Jul 2023 12:55:52 +0000
ROA not before: Fri 14 Jul 2023 12:55:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.226.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Aug 2023 16:28:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:78:d4:21:f0:dc:dc:10:20:38:a0:a5:18:51:d1:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d370a48b59fb811495f11c49734482f22b1a392
Validity
Not Before: Jul 14 12:55:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=869e7e36fcfc306e9086bff034c993a666ad7a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:80:4f:4f:53:4e:13:ca:7e:a7:f0:4f:0c:5f:
02:10:e8:8c:18:88:dc:0a:52:f6:47:cb:ad:9a:1e:
31:b2:70:aa:17:79:04:17:45:9b:eb:35:de:cc:c1:
af:b7:7d:57:72:f3:5f:96:ce:e7:2e:08:47:e4:bb:
ff:b6:fd:40:cf:6b:e8:57:ae:24:c6:d7:31:86:84:
3c:7d:6d:53:34:f0:bc:37:54:e8:75:bd:3f:9e:32:
2e:56:20:b9:2d:4a:50:9b:91:30:9f:2c:55:f5:bd:
0a:6f:d4:59:31:72:d5:aa:78:16:7d:a2:af:00:11:
2f:23:88:d5:37:2e:67:07:64:a1:52:06:65:f8:86:
d2:86:55:37:0f:93:52:f3:c8:5f:c6:8c:13:50:de:
e2:c7:88:59:e5:a0:59:3a:0e:dd:59:b8:35:bd:25:
23:f3:e3:20:40:40:16:2e:65:bb:a6:75:6a:ee:f8:
ef:2f:35:ae:93:ba:5f:1f:22:31:aa:57:c2:5a:10:
48:56:a3:2f:20:9b:c1:1d:12:a4:2b:8f:9f:ee:4d:
cc:ae:04:7b:7a:21:f6:e3:5b:5e:66:3a:4a:9e:bc:
60:e3:f9:f8:f0:08:a3:7a:9d:6a:d6:4b:6e:a1:c0:
6e:38:35:42:f0:24:de:df:ca:9a:d9:6e:86:78:f8:
86:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:9E:7E:36:FC:FC:30:6E:90:86:BF:F0:34:C9:93:A6:66:AD:7A:03
X509v3 Authority Key Identifier:
keyid:5D:37:0A:48:B5:9F:B8:11:49:5F:11:C4:97:34:48:2F:22:B1:A3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTcKSLWfuBFJXxHElzRILyKxo5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/hp5-Nvz8MG6Qhr_wNMmTpmategM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70858a-6395-402d-9ace-e272013026b4/1/XTcKSLWfuBFJXxHElzRILyKxo5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.97.0/24
Signature Algorithm: sha256WithRSAEncryption
24:79:db:60:5e:df:fc:4e:e7:ad:e1:20:a5:72:f6:a1:da:92:
49:ca:42:29:15:c3:17:f7:c8:9c:e5:d7:01:ad:18:ea:eb:e0:
b9:7a:57:a9:3e:53:0d:31:da:83:0d:55:d6:89:41:79:23:3e:
ab:9e:cc:ea:d1:46:81:80:39:e1:18:74:c1:da:92:1a:2c:b7:
cd:3e:22:1f:d3:3a:d3:52:5e:df:d3:86:58:83:4a:61:6b:23:
5c:e9:81:fd:fa:92:7e:e0:39:d4:3f:29:1b:fb:c1:75:b5:67:
b2:3b:09:13:5d:f0:b4:2a:be:ee:64:46:1c:a2:9c:42:ee:67:
2d:96:6a:64:fd:65:d5:fc:91:8b:76:39:26:bf:3e:e6:35:2f:
ed:77:37:fe:90:ac:ce:f6:1d:d1:00:05:d5:91:ae:6a:5a:a4:
81:a1:ce:d9:35:1b:ab:5b:34:24:89:11:9f:43:ca:fe:1b:46:
ee:9c:ef:3e:29:26:4a:ab:8d:d4:c2:f7:da:80:fd:6e:79:27:
d7:ad:79:bd:e0:62:92:04:ca:11:9d:a9:89:b8:a4:d3:6c:5a:
99:47:57:92:1e:37:be:ec:b7:5e:95:8a:cb:25:93:db:7a:5c:
58:eb:0e:4f:2c:f7:ce:5b:fe:00:d2:29:70:b3:22:72:61:b5:
97:c1:bc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org