Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/hhOuFzJUxjgUgfjTot183KooU9M.roa
File: hhOuFzJUxjgUgfjTot183KooU9M.roa (raw, json)
Hash identifier: y9XYDdvKtD3bcTGK61Zk+f9p0whKX6NbIXUHszhmLG0=
Subject key identifier: 86:13:AE:17:32:54:C6:38:14:81:F8:D3:A2:DD:7C:DC:AA:28:53:D3
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 01856D2F31FECC3C9FB7119D20562AD6F5F8
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/hhOuFzJUxjgUgfjTot183KooU9M.roa
Signing time: Sun 01 Jan 2023 11:54:47 +0000
ROA not before: Sun 01 Jan 2023 11:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3215
IP address blocks: 193.163.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:31:fe:cc:3c:9f:b7:11:9d:20:56:2a:d6:f5:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Jan 1 11:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8613ae173254c6381481f8d3a2dd7cdcaa2853d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:eb:bc:42:2d:f2:ad:10:3a:76:79:18:2f:fa:
b8:2a:2b:25:a3:d6:29:1a:b5:cc:f7:df:01:33:38:
89:24:33:27:f6:40:4e:54:88:68:51:cb:cb:17:c7:
de:d8:b1:fc:c0:d0:fe:d3:2a:25:c7:2e:3e:8c:72:
b4:f7:46:e0:94:7e:d1:e6:41:fe:04:67:43:d1:5c:
f2:2c:15:d4:64:74:cf:a3:d9:45:35:c2:33:65:82:
77:89:80:25:b5:c7:b7:dd:2c:59:fc:53:c5:d4:e1:
7f:cf:2b:00:df:1c:b2:31:97:93:4d:90:42:44:2b:
a7:20:6f:90:06:e7:06:d3:d5:e4:a5:1c:0e:1f:71:
c4:71:46:b7:08:62:1a:14:dc:48:20:ad:e2:96:81:
a8:9c:0b:e5:b4:29:2a:32:b3:19:91:e6:9f:51:17:
5d:0e:53:5d:5d:33:c8:16:92:84:a9:fe:cb:25:c1:
3e:2d:f8:c9:f9:27:e2:e3:17:4e:83:4b:ff:b2:4f:
60:93:31:3a:13:b7:f9:ad:a4:b1:6d:fb:da:19:6b:
93:00:5e:58:ec:55:d1:b8:a7:f2:ba:10:4a:f0:91:
14:1c:2b:e8:7f:f4:12:56:73:67:5d:78:31:1f:34:
60:d1:fc:f8:7a:a4:bb:88:60:8f:8b:92:fd:79:97:
83:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:13:AE:17:32:54:C6:38:14:81:F8:D3:A2:DD:7C:DC:AA:28:53:D3
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/hhOuFzJUxjgUgfjTot183KooU9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.99.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:f3:6b:d3:55:b0:8d:86:b7:c4:1d:58:f3:c2:ca:d4:52:ce:
ce:e1:18:36:8f:d0:4d:4f:a6:2b:34:43:29:20:d5:8a:3f:b6:
e2:a3:63:10:e2:a3:69:0a:7f:9e:1b:e8:c8:2e:29:03:f3:61:
05:d2:cf:ec:31:67:a6:3f:83:d6:0e:d1:54:73:59:76:fe:27:
a1:b3:58:f4:80:52:1d:43:6d:cd:54:f0:e3:17:8c:e9:9d:a1:
69:74:b5:b3:06:8e:ab:db:fb:da:74:dc:fe:d4:f3:e4:19:84:
d6:73:f3:88:ef:0f:d8:f7:df:b8:a2:35:56:9a:0b:1c:16:53:
c3:b6:40:0a:10:63:2c:57:f1:6d:3e:e7:c5:7c:3b:6d:4e:72:
9c:eb:f7:12:d8:9a:47:bf:3f:bc:df:35:62:30:ef:ec:c7:80:
4e:e6:06:39:71:cf:0d:fa:71:9a:6d:ee:ac:67:d1:8c:ee:6c:
cb:d7:4a:b6:3a:72:cd:28:b7:bf:6d:ed:4e:92:7c:ac:f0:95:
2c:67:80:a6:57:c6:7c:f1:65:09:d5:bb:59:46:ed:c6:55:24:
58:7c:e3:76:cb:50:fe:48:2b:c9:cf:07:12:b6:14:fa:8b:21:
e5:9e:25:de:3c:1b:24:a2:ce:ad:1b:1e:99:2d:a5:e4:6a:27:
67:96:e2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:08 2024 by rpki-client on console-ams.rpki-client.org