Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/hoITKQLjksXM0nRC501VnB9Jt0M.roa
File: hoITKQLjksXM0nRC501VnB9Jt0M.roa (raw, json)
Hash identifier: vtnFatR01QsCU/0PbxwLi//+W6ZBgINWl4rK8upK1NU=
Subject key identifier: 86:82:13:29:02:E3:92:C5:CC:D2:74:42:E7:4D:55:9C:1F:49:B7:43
Certificate issuer: /CN=6f930698733bad33c081719c7b68bd19723a5a77
Certificate serial: 0187744FEF1DAA4C1465720A8F6A74447C8E
Authority key identifier: 6F:93:06:98:73:3B:AD:33:C0:81:71:9C:7B:68:BD:19:72:3A:5A:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b5MGmHM7rTPAgXGce2i9GXI6Wnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/hoITKQLjksXM0nRC501VnB9Jt0M.roa
Signing time: Wed 12 Apr 2023 07:13:28 +0000
ROA not before: Wed 12 Apr 2023 07:13:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207928
IP address blocks: 194.153.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:4f:ef:1d:aa:4c:14:65:72:0a:8f:6a:74:44:7c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f930698733bad33c081719c7b68bd19723a5a77
Validity
Not Before: Apr 12 07:13:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8682132902e392c5ccd27442e74d559c1f49b743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:58:2b:a7:ce:94:5e:c2:6a:5f:9f:fa:83:a0:
70:e5:1b:09:21:84:c7:26:2e:3d:ff:44:7f:51:28:
ae:f0:ae:9c:61:f7:8b:bc:5e:b9:ac:c7:5c:89:86:
f4:a7:b3:c6:11:f9:13:96:61:52:35:08:70:4a:a6:
6a:f9:e7:e3:f3:dc:76:41:78:e3:ca:e4:db:d8:81:
e0:a5:a8:1e:ee:12:b6:8a:b8:94:9e:f6:42:7c:0f:
2f:4e:07:7a:03:aa:74:05:49:0c:5e:3c:31:8e:c2:
73:cd:c5:29:db:d7:f2:28:07:aa:e2:61:b2:c4:7e:
46:0e:5a:a6:d8:28:af:e2:50:98:3c:9d:1e:e0:bc:
35:1c:4c:0f:2e:99:33:26:f0:09:c5:ef:ad:31:5d:
5b:b1:aa:a1:a2:f7:c4:ca:f0:ce:ae:15:42:b0:50:
cb:66:60:02:13:3e:a1:3b:62:52:9c:19:19:3c:0a:
e2:88:58:23:5f:9e:3c:73:b6:9d:e0:28:0d:20:29:
0c:45:34:41:82:5e:53:c5:74:78:d0:54:b2:0d:ed:
b9:08:62:7b:cb:d1:39:03:de:9a:e2:b0:f5:b4:6a:
e2:6e:98:2e:d7:4e:9b:42:9e:85:22:3d:94:d3:ec:
a3:73:01:e9:ae:b3:36:bf:a0:9f:52:37:88:f5:a1:
ae:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:82:13:29:02:E3:92:C5:CC:D2:74:42:E7:4D:55:9C:1F:49:B7:43
X509v3 Authority Key Identifier:
keyid:6F:93:06:98:73:3B:AD:33:C0:81:71:9C:7B:68:BD:19:72:3A:5A:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5MGmHM7rTPAgXGce2i9GXI6Wnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/hoITKQLjksXM0nRC501VnB9Jt0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/b5MGmHM7rTPAgXGce2i9GXI6Wnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.103.0/24
Signature Algorithm: sha256WithRSAEncryption
85:de:98:47:ee:47:fb:34:b9:e4:4d:74:d6:36:b2:dd:69:92:
e0:62:fc:e3:7c:de:e2:cc:8c:d6:4d:fc:7d:a2:63:bd:43:c5:
45:72:ea:6d:be:c5:fb:c1:ae:9a:ec:73:63:2c:99:07:63:bc:
55:63:36:93:07:dd:ef:2e:8e:74:3b:b8:42:f8:c2:d9:61:e6:
f9:8f:01:1e:37:f5:96:c4:53:e8:94:9c:3e:a1:09:b2:d7:b2:
f2:ba:37:f7:8f:1d:93:81:28:38:3c:0c:8b:2b:5c:f9:0d:fc:
55:37:1d:66:75:b5:d0:36:88:ca:a7:77:02:3e:46:69:52:c0:
88:d7:4e:97:48:f4:0f:69:61:01:a9:67:2e:fc:94:4c:82:03:
17:13:de:eb:03:b4:e6:da:f3:e7:3e:42:ac:33:34:23:6d:6e:
b7:51:a8:f7:a5:41:80:f5:a6:ac:8f:e1:07:38:14:29:06:4d:
5b:00:e7:44:55:ad:4c:03:2e:f7:14:3a:7f:d6:e9:55:99:de:
74:d0:f0:90:84:20:ed:a6:e0:85:7e:90:cf:13:6b:02:f2:86:
68:89:97:45:b8:3f:41:8b:22:34:c0:c7:43:1c:b1:e0:61:31:
e1:73:bd:a9:cd:3d:3d:1d:66:49:e1:7f:79:00:e4:49:e1:2c:
b4:20:22:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:53 2024 by rpki-client on console.sobornost.net