Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/HFet12DxV3OiH9OXB0vzyHklhsg.roa
File: HFet12DxV3OiH9OXB0vzyHklhsg.roa (raw, json)
Hash identifier: vFNf9A+gwKvztuzppUzignXxZdFzgr1BogJMWB9l+rY=
Subject key identifier: 1C:57:AD:D7:60:F1:57:73:A2:1F:D3:97:07:4B:F3:C8:79:25:86:C8
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018570B98804005E166F465E4893232693D9
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/HFet12DxV3OiH9OXB0vzyHklhsg.roa
Signing time: Mon 02 Jan 2023 04:24:45 +0000
ROA not before: Mon 02 Jan 2023 04:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3313
IP address blocks: 194.20.8.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:88:04:00:5e:16:6f:46:5e:48:93:23:26:93:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Jan 2 04:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c57add760f15773a21fd397074bf3c8792586c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7d:3b:1e:2f:8a:d0:c7:90:d8:58:a4:a4:3b:
38:9c:02:07:ab:2a:4f:bb:c9:7e:f5:ee:11:ab:57:
47:9d:cb:14:d7:36:d8:f5:a7:39:7a:cb:f6:c0:18:
61:e5:ed:77:2d:36:68:36:8f:50:60:2d:af:d5:aa:
5d:7c:1a:89:ff:1f:15:1e:64:18:04:f1:de:e8:7b:
58:49:a9:2e:98:a1:1e:53:d5:bd:8f:26:1f:1a:38:
93:2e:60:bb:4f:0b:5f:8d:fa:e8:4a:72:61:ad:9a:
33:08:41:a9:eb:c2:76:0d:b5:43:2b:b3:58:b2:57:
06:a5:43:ee:77:35:5f:75:01:19:5f:f1:da:1c:03:
94:e7:da:f9:25:3f:66:9e:a9:c8:3e:3b:46:9b:35:
2e:b6:53:57:b2:73:2b:5b:b7:d1:cb:0b:d2:29:ca:
bf:6d:07:c9:c7:9a:ef:79:13:ad:f0:e5:20:69:6b:
c9:d6:41:6f:fa:e3:35:13:f0:ed:65:d4:25:87:f6:
30:dd:d2:09:58:9f:24:1d:60:1d:80:2e:a4:00:df:
c4:e4:be:fe:51:c0:ec:92:7a:84:db:28:af:2a:33:
f4:76:73:e6:66:f2:18:19:fd:2a:02:82:fa:b4:3d:
19:31:92:63:16:ba:5d:7a:21:b9:51:bf:fa:91:3f:
f3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:57:AD:D7:60:F1:57:73:A2:1F:D3:97:07:4B:F3:C8:79:25:86:C8
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/HFet12DxV3OiH9OXB0vzyHklhsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.8.0/21
Signature Algorithm: sha256WithRSAEncryption
b5:0c:cb:54:af:7a:94:3f:f5:24:2a:bf:8b:b5:c7:c9:49:6f:
d7:6c:1a:b7:de:54:e7:19:d6:5d:89:86:7a:01:fc:f9:de:46:
57:1c:9f:27:fe:1e:b5:ad:1d:4e:78:31:7b:02:a8:37:47:92:
58:9c:c1:11:3b:8a:ef:7f:61:6f:b4:9b:33:09:dc:17:f7:60:
27:37:5b:9a:c5:d9:2f:b6:03:11:24:ef:7c:19:51:4f:54:40:
91:e8:a3:64:1a:54:c5:b1:9d:b2:de:29:04:4f:e9:d6:1c:f8:
42:93:ec:ce:e9:79:b2:3d:0e:68:0c:7b:88:0d:a7:49:d3:f5:
9f:bc:c8:f9:c6:f1:29:12:0b:55:4c:be:9c:24:b5:26:24:e4:
bc:d6:7a:fb:98:37:e5:cd:1d:08:0f:e9:3d:a0:83:5c:86:2a:
a5:f8:91:b2:f3:a0:4b:63:c6:10:89:da:9a:24:b8:32:19:4e:
54:96:a2:76:7d:92:35:1c:d5:71:7e:b7:e7:ed:3d:77:5e:20:
38:ec:04:38:fa:ec:e1:f5:82:d9:69:e4:c7:1f:c7:57:c1:10:
f6:4d:b3:16:74:51:f9:56:e4:71:a9:ed:91:9f:eb:49:76:35:
89:2d:b4:24:07:6e:67:35:a7:70:40:cf:80:f9:5c:94:c9:43:
bc:69:fb:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:49 2024 by rpki-client on console.sobornost.net