Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/HPGi0vYgQnczv4Xq9HRgisnp9ww.roa
File: HPGi0vYgQnczv4Xq9HRgisnp9ww.roa (raw, json)
Hash identifier: IHmLmNMTIIBiIcb2cNRJ08bYNN9UWFWSz+HRTGhN0TM=
Subject key identifier: 1C:F1:A2:D2:F6:20:42:77:33:BF:85:EA:F4:74:60:8A:C9:E9:F7:0C
Certificate issuer: /CN=906d4fbf6ddc6f5cb745a68cc6818a942eaee20e
Certificate serial: 0187DFF6240270964FDDC25CA8C130C191FD
Authority key identifier: 90:6D:4F:BF:6D:DC:6F:5C:B7:45:A6:8C:C6:81:8A:94:2E:AE:E2:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kG1Pv23cb1y3RaaMxoGKlC6u4g4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/HPGi0vYgQnczv4Xq9HRgisnp9ww.roa
Signing time: Wed 03 May 2023 04:54:22 +0000
ROA not before: Wed 03 May 2023 04:54:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.213.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 08:47:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:df:f6:24:02:70:96:4f:dd:c2:5c:a8:c1:30:c1:91:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906d4fbf6ddc6f5cb745a68cc6818a942eaee20e
Validity
Not Before: May 3 04:54:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cf1a2d2f620427733bf85eaf474608ac9e9f70c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:be:2e:30:ba:52:ad:f6:1a:42:8a:c9:74:94:
37:89:48:67:6f:e1:1f:eb:82:51:49:1d:dd:d3:38:
e6:93:0d:03:0a:cd:c6:ca:b9:e7:0f:65:a4:a7:86:
be:61:af:4b:84:61:73:0f:07:88:a0:8f:57:fc:3d:
1e:78:38:e9:d1:27:92:59:fa:e6:37:a8:98:23:13:
7b:3d:77:ad:60:4c:63:d4:78:5b:6d:d4:21:eb:5e:
be:b3:b7:a6:1b:69:34:c2:b0:39:50:3c:fe:0d:c7:
44:e9:98:d6:0a:38:bf:02:f9:3e:c8:8b:74:ca:5d:
3e:a1:ba:97:e7:b7:ad:e4:73:6b:d8:03:7b:f7:67:
82:74:4a:14:e7:68:0f:16:69:ab:4a:fa:9f:ed:f3:
f1:b2:f4:e4:f9:3d:95:d4:36:7c:3b:84:36:03:23:
0e:ad:cf:a6:76:19:2c:85:2d:a8:ac:2c:3b:3f:f2:
6a:ef:8e:45:12:44:eb:a1:c9:dc:78:b2:d8:27:48:
f5:30:08:e6:4c:be:71:77:18:4b:f9:fc:28:1f:fa:
cf:70:9a:33:0c:ab:4e:08:a4:25:e3:9e:c8:b9:4f:
0e:ba:95:80:b0:39:fb:20:9f:46:bd:e4:68:4d:1a:
29:bc:d8:1d:70:28:86:95:cb:84:52:90:90:9a:73:
c2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F1:A2:D2:F6:20:42:77:33:BF:85:EA:F4:74:60:8A:C9:E9:F7:0C
X509v3 Authority Key Identifier:
keyid:90:6D:4F:BF:6D:DC:6F:5C:B7:45:A6:8C:C6:81:8A:94:2E:AE:E2:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kG1Pv23cb1y3RaaMxoGKlC6u4g4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/HPGi0vYgQnczv4Xq9HRgisnp9ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/30c84e-e0b0-491c-971b-f1d4629ccd77/1/kG1Pv23cb1y3RaaMxoGKlC6u4g4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.173.0/24
Signature Algorithm: sha256WithRSAEncryption
41:73:ac:17:97:66:fe:fe:33:0d:85:0d:2c:8b:d9:ed:22:3e:
e0:d7:e6:f2:46:c0:38:af:4c:18:3e:4a:cb:01:e3:de:e7:cf:
0e:2b:11:c3:dc:42:d0:49:2a:95:d6:4d:e4:83:49:a6:95:06:
64:c4:08:5e:ee:18:08:32:98:4b:3d:6c:0a:b9:30:71:3e:c3:
af:c8:c1:b5:3d:39:2d:cb:43:d3:54:e6:d7:e3:14:9b:4f:b0:
fb:40:8b:3f:9f:67:a4:8d:64:52:5f:0d:3f:ad:06:c5:29:91:
c9:fa:ea:3c:61:49:50:40:fc:3c:36:fa:b0:8d:d3:65:64:cc:
f8:a3:ce:2e:06:5b:e9:a8:bf:c1:3b:7a:5f:74:21:e9:d7:df:
38:70:14:a3:83:be:9c:6d:33:93:b7:12:1b:b8:b9:d9:b0:27:
50:a9:19:b5:83:59:5a:06:57:b9:91:5f:b2:00:5b:4a:14:a1:
92:f4:99:e1:34:ab:3d:2c:0f:35:17:69:fb:1e:33:f9:d6:a7:
51:19:ac:2a:1b:77:76:b1:08:97:43:64:7b:19:c2:f9:ed:61:
9c:9f:d6:ba:51:ab:4b:3d:6f:b5:1d:3e:7b:d7:eb:64:14:d1:
08:da:5b:04:b7:af:da:9f:6b:e2:ee:74:41:b0:2d:f3:59:b7:
ff:52:d7:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:24 2024 by rpki-client on console-ams.rpki-client.org