Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HJlaKNGC95zw_zWXWJgB1WFJKGs.roa
File: HJlaKNGC95zw_zWXWJgB1WFJKGs.roa (raw, json)
Hash identifier: m/LRG+EPXIgeKjjOuY9dCC6wVyK9JVL3JpzEwlVokmI=
Subject key identifier: 1C:99:5A:28:D1:82:F7:9C:F0:FF:35:97:58:98:01:D5:61:49:28:6B
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 0189DEBEE42003D93484C282A4DD9510909F
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HJlaKNGC95zw_zWXWJgB1WFJKGs.roa
Signing time: Thu 10 Aug 2023 09:19:59 +0000
ROA not before: Thu 10 Aug 2023 09:19:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209742
IP address blocks: 193.151.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:be:e4:20:03:d9:34:84:c2:82:a4:dd:95:10:90:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Aug 10 09:19:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c995a28d182f79cf0ff3597589801d56149286b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:57:a9:4f:27:1c:9c:bc:8c:da:24:14:8f:ad:
e1:51:be:cd:f0:99:8e:b6:b9:46:86:a9:6b:78:93:
f4:08:85:3c:9f:04:83:76:86:1a:4d:44:16:e8:af:
64:93:95:ea:95:8f:43:e7:fd:f2:bc:30:f6:dc:c6:
c6:22:3d:34:de:5b:43:79:03:8b:4b:41:b2:76:40:
78:f5:0c:58:ac:6a:be:f1:df:e4:bb:1b:ba:c6:74:
92:8e:a2:f2:e5:bb:30:e7:5c:9e:1c:65:ab:07:0d:
18:13:73:b6:5c:2d:7e:02:b9:d5:db:13:b6:8e:6e:
57:84:03:62:d4:ec:f6:93:4e:be:04:08:9b:6c:e7:
18:a6:44:79:0c:16:1d:54:a4:9e:90:86:b9:95:17:
6c:be:ee:b8:fa:75:5f:8f:93:03:40:c2:f4:29:37:
d3:ab:7e:53:11:49:49:b4:b7:1a:98:3e:b4:cb:44:
48:e2:8c:c7:fc:7b:81:93:f4:27:2c:a9:07:97:75:
be:a3:ba:a9:54:c1:fd:7d:6e:1a:03:a2:7d:8e:ff:
c6:64:45:cd:ef:32:47:bf:77:53:3c:19:a5:43:6e:
ad:7d:eb:f0:de:57:c0:4e:08:a6:bb:34:c1:af:a9:
35:16:26:0f:1d:a5:6b:1f:55:31:df:d6:c4:b5:2a:
e1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:99:5A:28:D1:82:F7:9C:F0:FF:35:97:58:98:01:D5:61:49:28:6B
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HJlaKNGC95zw_zWXWJgB1WFJKGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.166.0/24
Signature Algorithm: sha256WithRSAEncryption
58:61:4a:cf:40:c9:4d:3c:c3:f7:92:82:8f:70:7b:98:d2:5d:
54:e1:8d:9d:f3:a6:92:d4:5a:e2:a7:8f:55:6b:f1:7e:f7:7f:
2e:d4:ec:6f:a5:a0:e4:21:21:ea:6a:70:66:0b:7f:61:46:66:
a5:a1:07:be:43:63:83:1e:30:61:fe:79:14:f3:89:56:cc:94:
97:67:fd:bc:60:0a:bb:f6:ab:f5:21:d9:80:4c:3f:0f:69:b9:
16:d6:58:e6:b0:e6:58:e5:d7:f9:32:42:82:7a:0f:94:a1:1c:
f7:03:04:6a:c2:70:2c:8d:72:80:2b:9c:a8:6f:02:bd:3f:31:
56:90:82:a9:a9:26:ce:2f:cf:7a:2e:d1:93:09:07:d2:65:0a:
3b:20:e2:12:ab:1a:be:df:9e:fe:c2:1d:5f:8d:2a:cc:f0:48:
5c:ff:3a:64:74:f3:0a:8d:73:3e:e2:a1:f7:04:aa:0a:7b:c5:
a4:2c:34:1b:06:1f:fe:ac:5f:ff:de:ff:13:c4:b9:49:4a:52:
0e:71:a8:47:3a:71:d7:68:9b:9f:eb:8e:be:fc:71:e6:2c:fc:
57:b8:ea:59:57:1b:56:02:09:c5:85:9a:a6:28:cd:7a:95:7f:
42:ac:ba:08:92:b9:7e:90:af:2d:6b:38:0b:f4:44:f8:7e:4a:
e9:ca:89:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org