Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/HKzAW5EXEDt9RrJzDEhNc8zypS4.roa
File: HKzAW5EXEDt9RrJzDEhNc8zypS4.roa (raw, json)
Hash identifier: nHtx3LQu0suiVv1re3+1rfXsOSMf6Yd2KP7ZVumPWVw=
Subject key identifier: 1C:AC:C0:5B:91:17:10:3B:7D:46:B2:73:0C:48:4D:73:CC:F2:A5:2E
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 018F535B9CE461FCD8FE6C38F7EA7B8B4618
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/HKzAW5EXEDt9RrJzDEhNc8zypS4.roa
Signing time: Tue 07 May 2024 14:01:03 +0000
ROA not before: Tue 07 May 2024 14:01:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.143.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 06:23:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:53:5b:9c:e4:61:fc:d8:fe:6c:38:f7:ea:7b:8b:46:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: May 7 14:01:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1cacc05b9117103b7d46b2730c484d73ccf2a52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:44:b9:c0:71:82:ec:07:fe:a3:bc:31:2d:58:
7c:94:9b:c4:3d:5d:7d:01:5a:5d:ef:97:c0:33:61:
19:b8:8f:62:86:68:9d:a4:1f:77:b3:b5:2f:f5:2d:
a8:ae:ee:bc:91:6f:13:fa:c6:cf:77:77:df:a6:f3:
e7:45:20:cd:af:16:86:a6:da:fc:1e:8b:d6:fb:50:
f9:3b:66:18:5f:49:67:63:f1:a7:25:1d:b8:c5:01:
f3:3c:55:8e:f6:ab:ed:7b:5d:4d:e0:48:c7:36:00:
c7:db:0c:8c:9e:e3:bf:54:d5:f0:f1:12:63:9c:8d:
59:23:38:0f:41:53:db:20:48:6c:10:a0:d5:16:37:
1e:25:f1:28:6c:c0:1e:91:d0:dc:e2:d0:8d:0c:43:
5c:30:ed:a6:10:db:68:96:cb:1b:78:86:1e:cc:6a:
6d:77:85:e7:1f:9c:14:73:4b:fd:eb:1f:3f:fc:70:
e3:2c:2a:d9:f8:fe:79:6b:71:dd:b4:33:e7:55:45:
48:ab:34:5d:c7:f0:30:83:bf:e6:48:01:8c:e5:a8:
9c:10:36:83:63:c1:49:55:47:4f:22:f8:17:a7:e8:
ee:78:eb:bf:3e:4e:b2:c7:10:6c:d7:d5:dd:eb:f2:
d3:64:71:a2:30:06:bc:25:4d:19:a7:60:88:b9:33:
78:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AC:C0:5B:91:17:10:3B:7D:46:B2:73:0C:48:4D:73:CC:F2:A5:2E
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/HKzAW5EXEDt9RrJzDEhNc8zypS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.214.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:fa:2e:93:9e:67:66:a1:74:a8:4d:6f:bf:34:5d:4e:47:3e:
d8:46:db:d9:bb:fb:44:18:0f:ad:79:69:3f:1e:f8:58:87:da:
7c:0c:f8:44:87:e0:15:95:e7:ed:3a:7e:51:5f:48:75:b4:9e:
cb:75:3b:f5:23:67:6f:68:e4:4f:f3:3f:9d:4e:22:4d:a1:f5:
78:87:98:6a:66:51:48:e4:e4:05:5e:35:4e:05:6b:fe:b4:f8:
38:83:94:ec:a7:f9:67:d6:1b:43:55:d3:73:53:6a:99:df:de:
f9:8a:1f:df:3a:47:3d:cb:1f:d8:04:3f:93:47:e4:4c:01:99:
d8:c3:c2:c9:e1:6c:2a:df:db:74:38:a6:b9:ec:b1:38:ee:a4:
ba:6a:62:bd:ab:9e:c2:dc:c2:cd:28:d6:5c:a9:e2:9f:30:c2:
b7:3e:bd:f7:60:63:f5:ce:0e:2a:d5:4c:08:f9:70:c6:20:eb:
e1:65:dd:6b:90:82:e1:9e:59:4e:dd:4d:cd:48:41:6d:db:91:
a9:b8:8f:cc:44:18:96:a5:41:f6:f2:7c:0d:b9:36:39:0c:cf:
14:1e:8d:c5:07:00:43:cf:1b:77:c3:0e:fb:03:df:94:40:a1:
c1:90:25:13:1f:14:0b:49:9b:22:57:83:34:d3:c5:56:ad:5a:
a0:7b:99:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:18 2024 by rpki-client on console-fra.rpki-client.org