Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/_1hbbFvY9J1mlOzWGoRQL1Oc39c.roa
File: _1hbbFvY9J1mlOzWGoRQL1Oc39c.roa (raw, json)
Hash identifier: K9BCo24ubXSM8f/eRicCzjDkW6iVBXQkTyEJQFnzm0E=
Subject key identifier: FF:58:5B:6C:5B:D8:F4:9D:66:94:EC:D6:1A:84:50:2F:53:9C:DF:D7
Certificate issuer: /CN=1aa0a328c6fe0f1bca5e6599042dff59e513b25d
Certificate serial: 018572C3923EF1EFD308C8931AC333E27B98
Authority key identifier: 1A:A0:A3:28:C6:FE:0F:1B:CA:5E:65:99:04:2D:FF:59:E5:13:B2:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GqCjKMb-DxvKXmWZBC3_WeUTsl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/_1hbbFvY9J1mlOzWGoRQL1Oc39c.roa
Signing time: Mon 02 Jan 2023 13:54:57 +0000
ROA not before: Mon 02 Jan 2023 13:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 185.252.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:92:3e:f1:ef:d3:08:c8:93:1a:c3:33:e2:7b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aa0a328c6fe0f1bca5e6599042dff59e513b25d
Validity
Not Before: Jan 2 13:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff585b6c5bd8f49d6694ecd61a84502f539cdfd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a2:82:54:61:22:03:08:52:62:f4:b6:79:0f:
60:95:af:67:97:30:26:68:af:8f:36:c9:5d:af:ab:
3f:86:16:d6:2c:b7:d0:64:9c:f7:23:fc:fa:34:44:
80:32:8a:5d:04:ff:69:67:09:63:1e:d2:eb:7a:b8:
1a:0e:f2:d6:ab:74:fe:d0:7d:1d:5e:bd:ee:bb:fe:
b9:10:08:c5:10:c9:52:cd:17:5c:b6:21:66:88:5d:
eb:1e:f4:44:08:31:40:e1:3e:93:bf:da:93:12:18:
af:49:2f:ee:07:22:b7:6d:7c:d8:0c:33:87:c1:10:
c7:45:43:31:65:f3:05:06:13:05:37:89:34:35:9b:
c6:4f:8d:34:bc:cc:6e:97:8d:02:80:21:cc:24:d1:
fd:84:5a:c2:ba:17:59:6c:9d:be:51:fc:18:2c:93:
a6:08:fa:63:59:46:e4:65:73:4c:58:17:07:49:d7:
17:91:ab:c3:cb:39:1d:99:97:ba:86:79:aa:28:6d:
43:36:6a:a1:03:66:9d:e9:06:60:01:b7:fd:0b:51:
ba:cb:fa:e7:f8:08:5b:bf:f8:ac:26:3a:ac:99:69:
eb:72:4c:c5:ba:f5:6e:54:5f:d4:34:18:5a:41:40:
58:14:d6:33:37:a6:49:4b:82:e9:57:68:8e:d4:91:
cb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:58:5B:6C:5B:D8:F4:9D:66:94:EC:D6:1A:84:50:2F:53:9C:DF:D7
X509v3 Authority Key Identifier:
keyid:1A:A0:A3:28:C6:FE:0F:1B:CA:5E:65:99:04:2D:FF:59:E5:13:B2:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GqCjKMb-DxvKXmWZBC3_WeUTsl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/_1hbbFvY9J1mlOzWGoRQL1Oc39c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/344d24-2e11-466d-8ade-38e846148c78/1/GqCjKMb-DxvKXmWZBC3_WeUTsl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.7.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:09:62:93:ff:f4:61:be:9d:a3:95:a4:27:f0:be:dc:36:18:
ba:31:8d:d2:af:8f:fa:87:72:11:99:55:1e:c7:be:b3:a8:94:
1a:6b:8b:27:64:c9:9e:a5:cc:74:9f:1b:b1:47:d1:8a:e7:68:
75:3d:6f:50:ad:a0:dd:9e:bd:b6:2a:1f:61:f0:e8:b6:2f:d7:
fd:bf:f7:e1:56:14:ea:22:ff:ac:5a:42:13:16:45:ce:57:1b:
af:a9:29:72:db:17:d5:4b:4c:5d:a0:c9:6f:f8:4f:b7:63:dc:
11:de:fb:ae:93:dd:da:4d:50:7a:56:74:f5:26:1b:dd:c5:62:
35:83:a5:a7:6c:a9:b5:ee:13:0c:9e:b9:92:3d:79:4e:07:f0:
80:7e:7b:71:6b:bc:5e:bd:b0:18:da:d1:b6:c3:a7:0a:84:a4:
90:28:2e:b8:21:83:9a:52:20:92:ae:0d:2f:c0:20:54:09:69:
8a:c3:90:d9:6b:dc:04:5b:ba:2c:62:d8:fb:57:de:10:dd:57:
2f:12:21:e9:ab:24:e2:83:d9:9d:27:20:e7:32:4e:d8:44:fe:
37:cc:a9:11:fc:d9:a2:b2:a6:51:fb:90:07:ac:c6:ee:24:ba:
8f:74:42:b6:28:12:63:28:70:1b:56:6e:e9:36:fa:de:c7:5f:
0f:31:1d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:00 2024 by rpki-client on console-ams.rpki-client.org