Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/hlI4WWGSv5cxLr0734t1wx9afOg.roa
File: hlI4WWGSv5cxLr0734t1wx9afOg.roa (raw, json)
Hash identifier: xDNnieCPJsCkH+b3jg54ZCprjiptCKHRGa7Y2nawNeE=
Subject key identifier: 86:52:38:59:61:92:BF:97:31:2E:BD:3B:DF:8B:75:C3:1F:5A:7C:E8
Certificate issuer: /CN=0de7f26db43ad43205beb067fd0ab3e30027865d
Certificate serial: 0185711E7B7FDEC21FDE1E8E71CAE30AB08A
Authority key identifier: 0D:E7:F2:6D:B4:3A:D4:32:05:BE:B0:67:FD:0A:B3:E3:00:27:86:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DefybbQ61DIFvrBn_Qqz4wAnhl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/hlI4WWGSv5cxLr0734t1wx9afOg.roa
Signing time: Mon 02 Jan 2023 06:15:01 +0000
ROA not before: Mon 02 Jan 2023 06:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57364
IP address blocks: 194.110.152.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7b:7f:de:c2:1f:de:1e:8e:71:ca:e3:0a:b0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0de7f26db43ad43205beb067fd0ab3e30027865d
Validity
Not Before: Jan 2 06:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=865238596192bf97312ebd3bdf8b75c31f5a7ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:6b:a2:44:55:20:fd:25:c5:b7:c4:d1:9e:
98:72:2e:09:e3:d0:8d:8c:ed:63:c5:06:fb:44:25:
b3:11:48:1d:83:61:63:1c:99:b3:84:e4:94:cf:a6:
5b:1e:57:76:f3:a9:5b:50:13:db:24:78:69:4f:15:
ee:fa:1b:5e:0d:50:07:a8:80:a1:81:ba:e1:19:1b:
a1:a2:ab:db:7c:78:38:6c:d5:2b:2e:1b:ca:6a:62:
24:53:4f:1e:dc:0a:9c:2f:e7:9d:3a:56:3c:0e:fb:
60:5f:e3:de:c0:eb:89:64:17:33:a0:ad:06:6b:31:
5f:64:4f:37:e5:1e:76:ba:a0:f7:81:76:38:d9:3f:
fe:ce:dc:56:9b:a0:23:69:10:4a:d3:a6:ae:41:e9:
af:c2:98:82:b5:93:b7:9f:65:8f:53:3f:26:c8:ef:
0f:ff:a2:7c:ce:4f:cd:a3:08:a7:2b:e9:67:28:0d:
56:9f:03:cc:8b:f5:c0:e0:b9:fb:5c:26:0c:d4:35:
b4:4e:f8:50:97:67:f9:06:a6:d0:92:05:23:36:3b:
77:91:2c:5e:7f:de:cb:69:c9:a7:69:5b:e4:bc:11:
af:5f:1d:07:ea:ae:ee:23:09:23:95:46:5b:b6:51:
cc:da:e3:65:3a:75:89:3e:41:60:ad:50:d4:ca:5d:
7c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:52:38:59:61:92:BF:97:31:2E:BD:3B:DF:8B:75:C3:1F:5A:7C:E8
X509v3 Authority Key Identifier:
keyid:0D:E7:F2:6D:B4:3A:D4:32:05:BE:B0:67:FD:0A:B3:E3:00:27:86:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DefybbQ61DIFvrBn_Qqz4wAnhl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/hlI4WWGSv5cxLr0734t1wx9afOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ae32b9-5c9d-4ef0-9b92-d22123397b50/1/DefybbQ61DIFvrBn_Qqz4wAnhl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.152.0/23
Signature Algorithm: sha256WithRSAEncryption
98:f5:26:77:e8:91:3a:bc:b3:f6:a2:c7:38:a4:7f:37:72:06:
3b:73:2c:2b:d5:2c:36:ca:4b:11:0a:e1:da:cf:3e:9f:82:71:
2e:90:f9:a3:3e:83:82:fb:05:45:13:68:e7:35:32:65:48:a5:
ce:52:ea:f5:4a:24:dd:1e:7d:f5:83:ad:b5:53:d3:55:c3:db:
e2:82:b0:49:b7:f0:17:e4:bf:55:f2:dc:c8:b6:1e:ac:bb:3d:
1b:c4:b8:cf:bd:65:54:c8:4d:4c:b8:f6:c7:1a:bc:52:42:8c:
a4:03:df:99:a7:4a:a8:97:c1:fe:86:61:07:21:10:d0:49:3c:
d1:1a:1e:8c:ee:b3:5e:b7:6b:5c:64:a1:ef:0c:4d:f1:0b:9e:
a1:b5:fb:0f:7b:b5:77:21:0a:40:65:b9:c2:ad:0d:b6:0f:3a:
29:5c:0f:c6:93:0b:7c:62:5a:cb:5d:d1:1c:0b:01:b4:e9:33:
79:fb:94:31:54:4c:77:56:14:9e:46:0f:19:0f:dd:4b:ba:b6:
77:17:35:23:f5:69:e6:06:1f:76:e6:17:b2:86:57:4b:3e:bd:
34:aa:ac:1b:ee:a3:b3:3d:26:b7:ee:b3:39:11:38:50:12:cb:
19:7d:e6:a4:29:4c:48:18:17:e0:9a:f2:29:6a:01:88:94:3a:
5d:92:c7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:48 2024 by rpki-client on console-fra.rpki-client.org