Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/hVrCI8DNMPI5TiKv2eLYgLg3zPc.roa
File: hVrCI8DNMPI5TiKv2eLYgLg3zPc.roa (raw, json)
Hash identifier: nA3u/FSKEC7U06NfXbaHtduBCckLdSTTl+jA5m70/Zg=
Subject key identifier: 85:5A:C2:23:C0:CD:30:F2:39:4E:22:AF:D9:E2:D8:80:B8:37:CC:F7
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018A7561B5DC5EEF05ACE191B3B779F12CC4
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/hVrCI8DNMPI5TiKv2eLYgLg3zPc.roa
Signing time: Fri 08 Sep 2023 15:20:52 +0000
ROA not before: Fri 08 Sep 2023 15:20:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35608
IP address blocks: 192.144.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:75:61:b5:dc:5e:ef:05:ac:e1:91:b3:b7:79:f1:2c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Sep 8 15:20:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=855ac223c0cd30f2394e22afd9e2d880b837ccf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:29:c3:7c:21:fc:ff:18:66:00:1e:65:02:ca:
25:7c:42:38:5c:5e:4a:09:61:81:97:59:f3:96:59:
5d:12:5d:73:45:0c:df:2e:5b:80:03:22:96:95:4e:
1e:52:ff:19:bb:7b:23:2b:69:25:c3:94:07:cf:dd:
bf:f6:48:c7:35:e2:b5:2b:1d:4e:bb:4c:9c:14:0f:
48:11:6c:01:71:1b:38:6c:2a:ad:ae:8a:47:22:44:
fb:13:18:e5:84:34:a9:6a:a9:a9:a5:94:4f:67:0f:
ce:6c:ed:1d:87:56:8b:35:64:d2:cb:38:10:b3:f9:
3a:34:f0:79:38:e7:41:60:93:77:e1:ac:88:1f:dc:
23:bc:16:2d:e2:b5:72:f4:8b:60:4d:11:73:81:22:
49:fd:25:ba:a3:9d:5c:e6:82:a3:4b:94:03:93:41:
f8:e3:c8:4d:e1:b7:98:97:90:dd:73:0c:c8:77:fb:
76:65:47:2b:55:32:a5:72:e1:d5:df:ef:ef:b6:88:
48:db:ec:aa:fe:a5:5e:90:84:54:1c:fd:58:a5:0a:
aa:cb:de:cb:a6:70:69:5f:ff:b4:c2:1f:55:44:fe:
53:ad:4f:21:1e:57:e3:d0:c8:5c:65:da:ea:91:40:
9d:ba:a0:f4:0a:41:84:a8:5c:85:48:59:3b:99:36:
f5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5A:C2:23:C0:CD:30:F2:39:4E:22:AF:D9:E2:D8:80:B8:37:CC:F7
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/hVrCI8DNMPI5TiKv2eLYgLg3zPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.17.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:39:2a:91:58:2c:67:bb:6b:05:4a:6a:d5:c2:a6:b1:c2:5a:
f2:28:69:a6:a7:c9:18:84:23:28:d5:02:a0:cd:9a:3e:1a:f3:
71:6a:cd:bf:49:73:05:f4:4e:6a:57:ee:3c:5c:51:40:61:f6:
c3:1d:e5:ab:5b:2c:2d:27:09:83:b1:52:e6:38:3a:fc:3d:d4:
b6:bc:ee:34:d2:6f:db:1c:40:53:60:20:b6:87:5b:0c:88:1b:
89:2f:36:b3:1a:88:91:f7:02:70:3d:1d:81:29:88:e8:1f:88:
af:fb:4f:0c:07:f8:df:b8:a7:0d:0a:0b:9e:dd:f4:05:b8:d6:
be:b1:56:ba:7d:8a:91:68:8b:05:d5:01:1a:1e:92:da:ed:06:
77:9d:4c:88:68:9d:54:b0:2c:d6:8d:3f:75:1b:ce:fc:cd:d0:
be:eb:bc:ed:57:c4:bf:7b:27:c6:3f:2a:73:9f:a4:45:9e:cf:
2b:fc:34:dd:7a:28:6e:c1:dd:b5:7e:07:ac:2a:2a:4e:f5:f7:
c0:8a:a6:26:9b:54:89:04:58:0c:fa:e7:ef:85:c8:7b:b4:2c:
31:f9:47:e8:9e:2f:03:32:4d:a9:6a:fd:12:dc:16:ce:af:f2:
d7:b8:da:36:5e:1e:f6:bf:c7:bd:6c:b3:79:89:5e:eb:76:88:
04:35:f9:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org