Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/hz-eDSkbakpaCoGeC4nmu62ymLA.roa
File: hz-eDSkbakpaCoGeC4nmu62ymLA.roa (raw, json)
Hash identifier: HvDZIEaBahfryYJZC7NraYgqWLvca4jT6PgXcxnxFB8=
Subject key identifier: 87:3F:9E:0D:29:1B:6A:4A:5A:0A:81:9E:0B:89:E6:BB:AD:B2:98:B0
Certificate issuer: /CN=62117a1e6f699c322b6b983494f42c2209127553
Certificate serial: 01856C6F072761FAD6E9E608B3EA21F61C89
Authority key identifier: 62:11:7A:1E:6F:69:9C:32:2B:6B:98:34:94:F4:2C:22:09:12:75:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhF6Hm9pnDIra5g0lPQsIgkSdVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/hz-eDSkbakpaCoGeC4nmu62ymLA.roa
Signing time: Sun 01 Jan 2023 08:24:53 +0000
ROA not before: Sun 01 Jan 2023 08:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203754
IP address blocks: 185.124.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:07:27:61:fa:d6:e9:e6:08:b3:ea:21:f6:1c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62117a1e6f699c322b6b983494f42c2209127553
Validity
Not Before: Jan 1 08:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=873f9e0d291b6a4a5a0a819e0b89e6bbadb298b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:90:92:82:ad:38:cb:7d:21:98:88:37:5f:4b:
0e:0f:05:19:04:31:fd:85:83:93:b8:d5:61:02:35:
50:fd:94:1f:d8:cb:79:d9:d2:18:0f:65:4e:b9:bd:
43:57:80:a6:f5:8f:3f:7c:0d:1c:ab:f3:ba:05:28:
a0:a5:e3:81:1a:96:6b:41:17:00:dc:78:db:92:47:
50:96:26:47:0c:82:d1:c1:a9:f7:9e:81:57:e2:c4:
8b:72:71:b5:47:c0:a2:07:7f:ab:0b:87:ab:eb:82:
41:83:29:1e:09:1a:5d:72:72:6e:75:a2:51:c9:f0:
48:68:60:2f:27:ad:15:01:7d:1d:a3:91:9e:78:d5:
3f:a2:27:3f:19:b8:e4:2c:a4:8f:fa:a6:83:21:3b:
f7:c6:2a:92:e5:6c:82:ac:5c:e0:87:6c:c1:c1:12:
63:2a:c7:98:ee:7c:64:60:8e:cf:c3:c5:11:7f:53:
90:f3:52:e6:e0:fc:bb:cd:e5:20:d0:eb:55:9f:b6:
64:a4:70:bf:e6:77:bd:fe:22:13:4e:4b:17:ab:e6:
09:a5:0c:41:9b:b9:10:0f:af:74:6b:c1:d9:e8:58:
6c:fd:82:1f:97:fc:f0:5c:be:89:41:aa:b7:df:24:
f4:ac:04:62:b8:86:82:46:16:9e:b2:35:aa:51:11:
11:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3F:9E:0D:29:1B:6A:4A:5A:0A:81:9E:0B:89:E6:BB:AD:B2:98:B0
X509v3 Authority Key Identifier:
keyid:62:11:7A:1E:6F:69:9C:32:2B:6B:98:34:94:F4:2C:22:09:12:75:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhF6Hm9pnDIra5g0lPQsIgkSdVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/hz-eDSkbakpaCoGeC4nmu62ymLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/70ee21-d93f-4a71-8474-5bcc8458aa2c/1/YhF6Hm9pnDIra5g0lPQsIgkSdVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.204.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:d1:3a:55:9e:6e:32:81:89:21:cc:12:92:8c:50:e5:0b:77:
28:a1:c4:b7:3b:25:c7:42:4a:46:0e:13:48:58:2a:fd:9e:1e:
49:66:fb:3f:23:6c:75:b9:db:2a:19:fb:c6:62:80:02:92:fb:
0a:e6:f8:27:d1:87:18:b1:cd:53:3f:6e:19:6d:8e:91:aa:6e:
fb:36:56:ef:20:37:1d:ec:4f:38:1d:58:9f:f5:f9:92:48:6b:
e7:5d:ad:2f:3a:41:db:ca:90:2c:c5:22:d8:a6:8d:6a:17:28:
85:f2:db:35:64:91:b1:80:8a:40:f3:ad:5d:da:8e:3c:82:ec:
71:09:14:fa:78:24:9c:34:e3:99:22:c5:a6:5c:03:56:c9:3e:
75:42:26:50:1a:11:09:00:85:b4:27:6f:42:dc:4e:c7:d1:9d:
73:8d:ef:4f:9d:82:12:a7:66:9f:72:d7:c1:78:c3:15:6a:81:
c4:5a:34:99:cb:dc:2d:52:83:ff:f5:6d:10:40:a6:8b:86:e3:
a7:a2:23:38:e0:38:8f:4e:7a:54:8d:01:54:ab:d2:4c:3f:be:
23:86:34:90:99:8b:ec:26:96:67:ea:cf:3d:df:18:04:25:e2:
02:9f:34:3b:bd:6a:17:72:d6:4a:7c:49:63:03:71:85:62:5f:
74:96:b5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:35 2024 by rpki-client on console-fra.rpki-client.org