Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/HAn3GLcJbaxulsMJkfEN3bOm9uE.roa
File: HAn3GLcJbaxulsMJkfEN3bOm9uE.roa (raw, json)
Hash identifier: doSLLl5h8HyIwrJoxGxZBy8K4hyZJtmHWqJYbk/IGK4=
Subject key identifier: 1C:09:F7:18:B7:09:6D:AC:6E:96:C3:09:91:F1:0D:DD:B3:A6:F6:E1
Certificate issuer: /CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Certificate serial: 018E18223DD38E3407DBEA1C318061447972
Authority key identifier: 8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/HAn3GLcJbaxulsMJkfEN3bOm9uE.roa
Signing time: Thu 07 Mar 2024 08:58:00 +0000
ROA not before: Thu 07 Mar 2024 08:58:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 91.210.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 16 Apr 2024 17:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:22:3d:d3:8e:34:07:db:ea:1c:31:80:61:44:79:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Validity
Not Before: Mar 7 08:58:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c09f718b7096dac6e96c30991f10dddb3a6f6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:5e:94:c4:3f:a6:4f:cf:32:b9:c4:a6:94:
31:ff:21:e7:70:e0:b3:1b:b0:41:16:20:95:e1:ee:
a8:25:2b:96:16:52:20:0e:bb:d3:f0:23:0c:61:75:
10:5d:b7:b1:8b:b9:31:cb:d0:2f:ad:b1:d8:e6:1d:
76:ec:2e:c1:a9:9c:0d:0a:cf:a3:29:b7:d3:0b:bf:
14:e1:7c:25:f9:76:3d:39:65:1f:7c:f8:0c:40:49:
11:3b:f7:e7:e5:9f:64:43:73:aa:3c:02:0a:ac:51:
46:61:e8:99:b1:37:32:4b:39:ab:f5:03:51:c1:64:
cd:9b:ae:78:a4:f6:46:b9:8a:0d:c3:05:f7:5b:ef:
0d:89:f1:72:72:6d:58:14:ea:8a:50:db:8f:b5:dd:
06:0d:fd:c9:98:f3:79:25:2f:13:a8:28:71:d8:66:
2f:a8:7a:cb:74:22:7a:5c:fd:ef:1f:13:31:76:6c:
17:57:0b:8b:79:9c:e0:3d:ea:3f:1c:b9:0a:1d:70:
4b:2a:29:dd:dc:31:90:aa:d2:b3:4c:ee:00:09:cf:
c5:54:ab:9c:3b:25:4f:6b:ee:d3:64:81:6d:26:4f:
1c:e0:f8:d6:c5:c5:fc:69:be:57:3e:e6:e5:d4:c8:
af:ba:13:aa:e5:b3:30:68:98:b8:df:03:f1:b2:4c:
db:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:09:F7:18:B7:09:6D:AC:6E:96:C3:09:91:F1:0D:DD:B3:A6:F6:E1
X509v3 Authority Key Identifier:
keyid:8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/HAn3GLcJbaxulsMJkfEN3bOm9uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:e2:01:52:68:08:d8:9a:65:27:e8:2c:ac:3f:32:c3:f0:87:
78:5f:ab:80:1d:35:73:27:2b:a8:93:ea:43:96:b6:55:be:f8:
f2:82:f1:cd:8d:dc:a6:44:0f:df:71:e6:f7:e5:d5:6f:ba:f2:
3e:0d:3e:48:63:ce:e3:26:74:18:6f:50:e1:e8:23:38:e5:13:
16:80:4d:34:e5:57:56:3f:b2:44:9a:44:c1:a6:fe:14:f4:7f:
e1:1b:e9:5e:1d:d8:30:88:59:a1:3f:3e:f0:ac:63:aa:81:74:
5a:e9:ce:2a:3c:db:c1:63:62:ce:51:b1:66:6b:aa:7c:d9:7b:
fb:c2:2a:34:39:2a:f9:e1:68:ed:4c:ff:46:5d:a1:d9:d7:ad:
2e:b7:49:99:50:02:a1:3d:5b:fc:f4:ee:b7:11:c3:ff:50:a9:
02:1b:b5:8d:42:70:7d:cd:9b:4f:16:97:1e:35:fe:c2:9f:81:
cf:00:80:a8:02:59:7d:7c:f0:d0:1e:10:d8:12:72:d8:14:62:
1f:8a:31:70:f0:38:03:9d:65:fd:5b:14:5f:c5:75:1a:f9:4c:
52:a2:bb:54:48:b8:d5:4c:4c:ce:53:a8:9a:ce:fa:2d:58:72:
78:ff:17:ae:9c:7d:b7:c5:d7:f5:8d:40:05:33:4d:57:e7:d5:
dc:92:8c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:17 2024 by rpki-client on console-fra.rpki-client.org