Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/HXnWJj9id5e9JtU810knuYNfpUI.roa
File: HXnWJj9id5e9JtU810knuYNfpUI.roa (raw, json)
Hash identifier: j7OPcAs5V5P6vaTMYwJLqRisjGRk9wo5v5oKRA7yZ0I=
Subject key identifier: 1D:79:D6:26:3F:62:77:97:BD:26:D5:3C:D7:49:27:B9:83:5F:A5:42
Certificate issuer: /CN=734fa61b08651038faf81ebf125ec845b1961883
Certificate serial: 018AAE0E09ABAA33CC526A9A4980D273B0ED
Authority key identifier: 73:4F:A6:1B:08:65:10:38:FA:F8:1E:BF:12:5E:C8:45:B1:96:18:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/HXnWJj9id5e9JtU810knuYNfpUI.roa
Signing time: Tue 19 Sep 2023 15:27:50 +0000
ROA not before: Tue 19 Sep 2023 15:27:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 185.135.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ae:0e:09:ab:aa:33:cc:52:6a:9a:49:80:d2:73:b0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=734fa61b08651038faf81ebf125ec845b1961883
Validity
Not Before: Sep 19 15:27:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d79d6263f627797bd26d53cd74927b9835fa542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:05:fd:68:fc:ef:2a:8e:38:f4:05:01:85:2b:
b7:c3:39:3e:c9:37:eb:60:e0:8c:4f:b0:34:37:6a:
58:6d:9e:52:dd:a7:fd:69:52:8f:31:e4:c0:44:b8:
88:b1:3e:73:f4:d9:af:d4:2e:38:8a:60:65:b0:11:
7e:6a:71:79:51:94:bc:ff:99:65:da:61:8e:cd:a6:
09:da:ce:60:1e:e5:f0:73:1b:f7:e9:ae:f9:50:00:
65:77:8c:45:74:2d:8a:2c:af:1b:a3:eb:99:31:df:
78:23:39:ff:76:22:64:b2:10:b1:e1:e8:e6:a5:1b:
b2:55:59:a1:09:9c:bb:82:03:7b:ca:a7:56:ba:51:
c8:9a:5f:76:07:1e:56:ea:d8:4e:2d:fe:b4:a2:b4:
73:1d:1b:c6:78:43:2a:53:2d:d3:88:62:82:21:98:
1a:17:cf:61:f2:aa:90:f8:43:ed:68:44:86:82:0f:
d2:d5:f7:c9:38:fa:1b:ac:e4:7e:cc:45:ca:42:b5:
ec:87:a2:db:b7:af:82:dc:19:8b:8a:20:93:4c:37:
cd:d3:0c:34:72:29:4e:f5:8e:a4:c7:5a:9c:82:58:
6d:b4:c5:4b:08:58:bd:27:e3:01:fe:9c:08:f7:63:
ae:10:aa:13:fe:ce:76:c5:07:e9:c1:3d:d4:23:8c:
30:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:79:D6:26:3F:62:77:97:BD:26:D5:3C:D7:49:27:B9:83:5F:A5:42
X509v3 Authority Key Identifier:
keyid:73:4F:A6:1B:08:65:10:38:FA:F8:1E:BF:12:5E:C8:45:B1:96:18:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/HXnWJj9id5e9JtU810knuYNfpUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/c0-mGwhlEDj6-B6_El7IRbGWGIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.43.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ea:26:49:41:34:84:aa:b8:aa:45:0b:78:a9:32:38:7a:a2:
5b:52:4b:96:f4:28:ee:4c:49:34:a4:4f:d4:e6:58:b2:0d:45:
ee:12:a1:9a:18:b2:bc:11:5b:0d:73:2d:be:69:19:63:d7:91:
d4:dc:68:85:a7:e3:f9:72:94:c4:1e:d7:44:cc:27:3f:28:54:
77:44:51:6b:a4:d7:09:00:5a:df:63:2b:25:10:44:9d:7f:b2:
4f:d7:84:e3:7e:93:42:2c:0d:06:ce:57:23:6d:d5:95:b7:c8:
ba:49:38:d3:70:8f:29:e5:bd:0c:5e:46:d3:1c:8d:7d:dd:c8:
42:55:1e:34:40:6c:90:de:0d:45:2f:62:a3:a1:dd:9f:05:87:
8f:dd:b5:ff:b6:47:e2:ac:73:8b:09:ff:c7:73:08:a2:9e:40:
04:91:1b:84:28:7d:e6:b8:67:33:ed:68:0d:e0:36:c9:93:ee:
6d:d2:35:eb:99:65:c2:ba:0a:fb:e5:43:14:ac:5a:f2:1a:bd:
fe:60:3f:84:d4:e0:4f:ed:ed:2e:01:b7:9a:94:8c:96:25:e8:
4b:1d:44:14:c4:7e:45:4c:58:99:0b:49:16:b6:92:04:6b:a0:
b2:e8:68:59:05:d5:cb:c2:df:fc:58:67:c3:e8:45:ee:84:4d:
25:d7:53:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:10 2024 by rpki-client on console-fra.rpki-client.org