Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/32ce7d-fb46-419c-af1d-9394924c3c76/1/hnMFC4mdpqebtjfqFv7xp-DBSgI.roa
File: hnMFC4mdpqebtjfqFv7xp-DBSgI.roa (raw, json)
Hash identifier: gJuCfcJLpSb0P4pCg0Pgl+XQUe913iqSqNGjPNtzvdw=
Subject key identifier: 86:73:05:0B:89:9D:A6:A7:9B:B6:37:EA:16:FE:F1:A7:E0:C1:4A:02
Certificate issuer: /CN=94046108b54261442422c0fbc80b3fa986ebe93a
Certificate serial: 01857295D1794665F1B0D7F6E2389CB2149A
Authority key identifier: 94:04:61:08:B5:42:61:44:24:22:C0:FB:C8:0B:3F:A9:86:EB:E9:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lARhCLVCYUQkIsD7yAs_qYbr6To.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/32ce7d-fb46-419c-af1d-9394924c3c76/1/hnMFC4mdpqebtjfqFv7xp-DBSgI.roa
Signing time: Mon 02 Jan 2023 13:04:59 +0000
ROA not before: Mon 02 Jan 2023 13:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12453
IP address blocks: 185.230.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:d1:79:46:65:f1:b0:d7:f6:e2:38:9c:b2:14:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94046108b54261442422c0fbc80b3fa986ebe93a
Validity
Not Before: Jan 2 13:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8673050b899da6a79bb637ea16fef1a7e0c14a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:59:77:dc:e9:91:d2:a3:c3:02:4e:b5:e7:47:
a9:c1:ae:2b:86:ee:4d:17:07:9f:0b:44:9a:95:d9:
e8:7c:1f:4b:af:fd:f7:ba:18:ab:dc:7b:6a:c8:69:
8b:f9:cd:32:b8:77:76:bf:de:6d:2a:c5:27:73:8f:
f2:7c:b4:1c:13:e2:14:c5:63:c2:c8:94:a8:30:54:
2e:81:36:18:f3:45:bc:13:04:8d:1c:7d:45:a4:33:
e2:05:93:4d:4b:3e:fc:fc:81:ab:14:b8:67:45:f8:
c3:31:61:3c:9f:90:e5:6a:20:de:4e:07:42:d9:80:
04:f4:62:a6:44:7d:1e:6c:22:24:81:d9:85:0e:da:
45:ac:b4:91:17:d6:8b:1c:fd:08:36:05:50:f4:af:
35:2a:3c:33:a0:54:76:7a:2c:93:59:41:24:17:b3:
59:33:b8:30:4e:70:bb:b8:e0:d3:1b:b2:27:28:77:
ab:c9:eb:c1:ff:5e:00:3c:24:fb:09:58:29:ba:54:
e5:67:2e:21:ab:c1:80:46:e7:1a:0e:01:11:d0:d8:
a6:d2:6e:5b:23:e0:a8:56:3b:25:2f:bc:30:62:79:
82:48:95:56:57:10:5b:ca:ff:a0:64:8f:72:91:39:
70:fc:60:22:bc:54:c2:b9:01:94:57:70:0b:86:bd:
a4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:73:05:0B:89:9D:A6:A7:9B:B6:37:EA:16:FE:F1:A7:E0:C1:4A:02
X509v3 Authority Key Identifier:
keyid:94:04:61:08:B5:42:61:44:24:22:C0:FB:C8:0B:3F:A9:86:EB:E9:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lARhCLVCYUQkIsD7yAs_qYbr6To.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/32ce7d-fb46-419c-af1d-9394924c3c76/1/hnMFC4mdpqebtjfqFv7xp-DBSgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/32ce7d-fb46-419c-af1d-9394924c3c76/1/lARhCLVCYUQkIsD7yAs_qYbr6To.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.132.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:b6:fd:af:d1:83:be:3a:ae:c9:68:27:a9:17:d7:23:06:53:
09:26:7b:59:48:57:88:3e:0c:39:bb:d7:69:0e:fe:62:d8:18:
d4:5b:81:29:87:70:78:db:95:c7:1a:1c:84:a4:7e:11:07:bc:
26:66:f5:ee:7d:c6:69:46:3b:e6:c8:ca:af:62:23:e7:63:c3:
09:ff:38:7b:44:55:e9:f0:d7:f1:fe:61:fe:1a:f9:f0:83:a2:
ea:1d:2b:4c:ae:a9:b0:d2:e8:65:c9:6d:9d:6d:bd:1b:a2:00:
1d:d9:0b:2c:08:cb:03:62:84:f2:56:f8:3b:e6:cb:16:a7:05:
6e:5f:b9:2d:de:20:e8:e6:5a:c4:64:31:aa:56:23:da:77:91:
60:e7:99:3e:c8:d3:9a:0c:1b:fd:7d:9f:4b:a6:52:55:f3:6f:
bd:5f:0d:56:8a:65:c5:fd:5e:70:f9:e8:90:07:64:54:aa:c7:
07:f9:56:dc:53:bd:5e:b2:b5:41:9e:51:be:3c:de:81:97:53:
56:bb:66:10:0c:32:1e:ae:4c:04:f5:c9:56:34:9d:8c:a1:4d:
9e:18:81:af:39:02:94:24:a4:a7:cd:e7:42:9a:eb:4d:37:5d:
4a:1f:f5:5e:fc:7a:6e:1f:c7:6e:b5:e6:72:66:43:c7:ba:1b:
e9:43:5d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:19 2024 by rpki-client on console-ams.rpki-client.org