Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/hxEjoOJKNr6inYxx2FLEBrJWPtk.roa
File: hxEjoOJKNr6inYxx2FLEBrJWPtk.roa (raw, json)
Hash identifier: rO3cJ0lBZFHQPuyWnCeILIwS2cegmdaUawvx/GkgZqw=
Subject key identifier: 87:11:23:A0:E2:4A:36:BE:A2:9D:8C:71:D8:52:C4:06:B2:56:3E:D9
Certificate issuer: /CN=773e3278baa249c14de605dc964b2c2755dfecfa
Certificate serial: 018BE276D94F36BD97F57A1536E8843CE51E
Authority key identifier: 77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dz4yeLqiScFN5gXclkssJ1Xf7Po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/hxEjoOJKNr6inYxx2FLEBrJWPtk.roa
Signing time: Sat 18 Nov 2023 12:45:21 +0000
ROA not before: Sat 18 Nov 2023 12:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201782
IP address blocks: 185.229.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e2:76:d9:4f:36:bd:97:f5:7a:15:36:e8:84:3c:e5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=773e3278baa249c14de605dc964b2c2755dfecfa
Validity
Not Before: Nov 18 12:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=871123a0e24a36bea29d8c71d852c406b2563ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:00:0d:b0:53:3d:9d:7f:a7:1c:f0:ba:47:31:
ab:eb:13:da:c4:d8:b3:b4:97:cb:67:6c:fe:13:d5:
4f:78:7f:ec:b0:84:b7:a4:cf:1d:b9:a8:74:64:f0:
38:74:0f:57:f5:28:11:30:1a:8a:8d:ee:d1:5f:86:
5b:1c:f9:94:5a:55:b6:f2:6d:40:28:cc:45:a7:cb:
bf:cf:fc:b6:43:a3:73:69:25:84:cb:7d:f7:ac:66:
58:e6:cf:72:57:4d:86:d4:e6:e7:e0:2b:52:3a:7f:
4e:2d:03:57:d6:d3:5c:d2:16:cb:b2:c0:c6:ed:7c:
65:b2:b6:6a:9d:ae:12:ad:29:3b:77:cc:78:3e:5c:
ab:bc:f2:51:a8:66:f0:f7:de:38:97:0b:a9:1c:fd:
2f:86:5e:ea:f4:5e:94:12:b7:15:b5:94:89:06:e7:
e4:c3:74:20:c8:aa:c1:15:89:76:8b:f6:52:23:c6:
18:e6:4c:97:b4:78:db:8c:35:68:73:64:dc:3c:d1:
6b:58:64:09:dc:39:be:2a:ac:bc:2b:2d:90:2d:ef:
bd:01:9c:ef:89:da:37:db:54:68:7c:ad:c2:13:bf:
1e:68:e7:26:6a:97:0b:84:64:0c:43:a7:82:8f:37:
2a:40:df:f7:40:90:b8:c7:39:23:4a:f8:ad:53:5a:
f8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:11:23:A0:E2:4A:36:BE:A2:9D:8C:71:D8:52:C4:06:B2:56:3E:D9
X509v3 Authority Key Identifier:
keyid:77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dz4yeLqiScFN5gXclkssJ1Xf7Po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/hxEjoOJKNr6inYxx2FLEBrJWPtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.60.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:fe:be:0d:0d:86:c9:b4:b5:28:92:da:f7:4b:5c:ed:ac:7d:
29:92:47:5e:09:e7:be:b4:96:f5:43:04:e6:6f:78:30:ba:5b:
c5:ca:ed:81:0c:ad:8b:84:57:08:f9:c0:c4:0a:34:d5:c3:a8:
f7:57:28:4e:a3:2f:cf:06:8b:6c:32:97:4c:f7:6c:01:17:1e:
70:42:e9:33:93:7e:be:7a:9b:33:4b:5d:f0:f8:70:d2:fe:b7:
53:f9:1e:88:3b:37:8a:48:0f:1a:9b:e0:a4:31:fd:5e:15:47:
4d:7c:0e:d8:d5:c2:ec:63:c0:2f:68:81:aa:02:9e:08:05:f8:
a5:f4:28:17:3b:4a:ac:d3:9e:d4:e8:18:e1:61:e6:eb:22:3c:
b2:42:93:90:aa:d1:b5:34:96:d3:71:65:a6:93:d0:78:66:45:
55:54:c9:ba:82:ca:25:30:b9:1a:55:1d:ea:66:b1:22:20:4e:
04:64:a2:8e:97:14:ee:f4:6a:db:a4:fc:16:b0:89:4f:cf:fb:
dc:05:34:19:05:76:59:8e:4c:8a:f2:4c:5a:b8:ad:0c:5b:cf:
ce:e3:66:7b:84:98:65:95:bd:cd:01:ed:1c:ca:20:c7:81:b7:
b3:64:89:a4:e7:1a:0a:d9:71:58:bb:37:61:fb:55:f3:c5:c7:
4b:8d:b7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:37 2024 by rpki-client on console-fra.rpki-client.org