Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/HcxgYkfeGbkz6obZs7VN4pVcl2w.roa
File: HcxgYkfeGbkz6obZs7VN4pVcl2w.roa (raw, json)
Hash identifier: 4cGqAIHwkxXIt3A6utL05lAr8EGYBYTyVUzt6pTtFF0=
Subject key identifier: 1D:CC:60:62:47:DE:19:B9:33:EA:86:D9:B3:B5:4D:E2:95:5C:97:6C
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 01895368E8CDA410569FBC91634DD5176896
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/HcxgYkfeGbkz6obZs7VN4pVcl2w.roa
Signing time: Fri 14 Jul 2023 07:58:51 +0000
ROA not before: Fri 14 Jul 2023 07:58:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 45.85.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:53:68:e8:cd:a4:10:56:9f:bc:91:63:4d:d5:17:68:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Jul 14 07:58:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1dcc606247de19b933ea86d9b3b54de2955c976c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6e:db:a7:45:a7:3e:27:bf:cf:6f:f1:b3:e9:
f5:00:1a:72:55:30:51:a7:5e:46:61:d1:8a:d8:2a:
f1:53:cd:ac:34:87:e7:1e:3d:f3:72:2c:99:19:a1:
70:a4:8e:9c:4f:64:76:88:65:b7:01:ff:b3:09:c2:
72:94:00:9c:f8:a2:85:e9:50:3d:5f:f3:8b:5e:e7:
d0:46:7a:13:c7:30:5c:93:d6:6c:be:18:8a:c7:14:
0a:95:43:fd:f0:bd:0f:d2:71:5c:5f:65:eb:db:c8:
44:e6:ca:a6:48:60:76:9f:56:1c:e4:a0:c2:1f:98:
c1:37:35:1d:f4:d4:9c:bc:7c:66:11:19:58:20:3c:
c6:d6:be:ed:1f:5f:d6:55:99:3c:6b:ec:14:d5:66:
c9:b7:4d:17:b3:11:f8:be:da:48:f0:74:99:07:28:
52:1f:18:15:a7:78:f3:b9:ab:a6:f6:e5:a6:b6:16:
cb:cd:1b:0b:95:fa:de:40:64:30:c6:58:eb:df:47:
c1:67:cd:3c:6b:e7:f6:e7:48:75:a2:6d:6f:35:af:
f6:0d:be:07:3b:31:b1:f3:b3:7c:80:41:17:4f:06:
82:ee:a3:d5:0f:2d:5e:f6:e6:10:30:60:8b:7b:06:
75:1c:7f:4d:b4:19:9f:f4:88:3f:5e:a3:8c:eb:41:
2a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CC:60:62:47:DE:19:B9:33:EA:86:D9:B3:B5:4D:E2:95:5C:97:6C
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/HcxgYkfeGbkz6obZs7VN4pVcl2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.92.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:e2:51:7f:b7:d6:6b:95:3f:bf:6a:07:89:14:25:f2:cb:83:
c9:fa:2a:6e:8b:63:44:ef:23:68:78:33:0f:57:3e:62:08:35:
22:13:35:10:21:53:bb:cc:82:58:06:ac:c0:0d:b8:1d:5d:d6:
d2:93:ee:79:9f:22:8d:a4:73:bf:57:c4:fd:06:88:e9:42:b7:
06:5f:00:d2:8e:8b:f6:42:38:1e:69:fd:02:5e:dc:9e:66:e4:
f6:3d:f4:6d:5e:c1:53:b1:b9:72:78:f6:97:cc:a4:7c:c7:99:
88:37:b1:77:78:84:2a:aa:58:b6:96:21:cf:a9:9f:e6:f1:92:
f9:5e:a2:58:86:fe:ae:c3:4d:48:99:05:69:09:33:24:71:9b:
01:67:53:25:6e:63:b2:5a:eb:a8:49:4a:5d:49:cc:16:8a:a7:
9c:e5:23:e1:fa:04:cf:4f:7a:4e:08:de:c3:a7:fd:48:4b:04:
08:b6:e9:6c:7a:2a:44:63:1e:9d:f6:ef:25:6e:68:ee:4d:fa:
1d:b5:95:31:64:1e:fb:1b:29:34:8f:69:97:15:fa:27:a6:04:
74:9c:52:ee:89:a1:6b:fb:4d:24:25:62:ec:cd:db:45:86:4b:
c9:40:bc:66:63:bf:0c:2f:b3:1e:57:51:74:76:be:18:2b:5f:
41:0f:68:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:31 2024 by rpki-client on console-ams.rpki-client.org