Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/fcad2d-86d9-42b1-b115-2fcf396253b8/1/hywPTc5g8WfF6XIVFDE9bW1LLVs.roa
File: hywPTc5g8WfF6XIVFDE9bW1LLVs.roa (raw, json)
Hash identifier: erGG+BEfzl8csUALIJQbaoO8kPyaLBMmlgNsNqdlVvs=
Subject key identifier: 87:2C:0F:4D:CE:60:F1:67:C5:E9:72:15:14:31:3D:6D:6D:4B:2D:5B
Certificate issuer: /CN=36f76211f3c58f6c98af99cf65a6f1e8ff7c43ba
Certificate serial: 0185708CC978BC19F490E93D51B0555F5143
Authority key identifier: 36:F7:62:11:F3:C5:8F:6C:98:AF:99:CF:65:A6:F1:E8:FF:7C:43:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NvdiEfPFj2yYr5nPZabx6P98Q7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/fcad2d-86d9-42b1-b115-2fcf396253b8/1/hywPTc5g8WfF6XIVFDE9bW1LLVs.roa
Signing time: Mon 02 Jan 2023 03:35:52 +0000
ROA not before: Mon 02 Jan 2023 03:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205093
IP address blocks: 185.230.236.0/24 maxlen: 24
185.230.238.0/24 maxlen: 24
185.230.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c9:78:bc:19:f4:90:e9:3d:51:b0:55:5f:51:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36f76211f3c58f6c98af99cf65a6f1e8ff7c43ba
Validity
Not Before: Jan 2 03:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=872c0f4dce60f167c5e9721514313d6d6d4b2d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:91:d8:9e:40:ee:59:ea:a3:36:bd:d2:1d:
e7:e7:99:36:ac:10:0e:ee:02:a1:be:1e:7b:81:d2:
15:19:51:fd:e0:21:a0:2e:13:9c:73:b3:c6:5a:38:
d2:d2:b9:cf:53:38:fb:79:99:51:01:45:39:6d:7d:
6f:87:48:7c:ca:3f:5a:a2:0e:ab:d1:2a:78:be:64:
65:95:e7:05:61:4d:e9:c0:4f:a7:4a:77:fd:b2:8a:
58:97:20:87:1f:48:fb:27:5e:6f:d3:0f:ea:62:9d:
c0:b1:6d:91:83:2c:aa:7e:b3:92:cc:91:41:04:63:
74:3f:ea:86:1c:19:a4:69:ab:12:e7:b6:1d:9b:9b:
03:4e:c7:a8:e5:78:3b:0c:58:b2:9c:f8:9e:b7:91:
a9:9e:c5:91:26:40:af:60:c1:18:d3:07:a4:5c:d6:
c9:32:23:75:f3:b7:27:bb:04:61:50:6f:1f:0c:8c:
cb:86:e4:05:fb:36:76:1a:d1:de:1b:02:d8:4f:7b:
23:c6:e2:f8:c5:2a:32:29:3d:58:12:e7:1e:a7:e7:
43:c8:8a:01:d4:d0:f1:d6:ce:d1:18:4e:13:cd:60:
03:09:b1:65:7f:f7:09:dc:30:05:d5:28:74:20:89:
7b:4e:17:9e:67:dd:5a:d0:2e:fa:d6:49:3c:e8:e3:
aa:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2C:0F:4D:CE:60:F1:67:C5:E9:72:15:14:31:3D:6D:6D:4B:2D:5B
X509v3 Authority Key Identifier:
keyid:36:F7:62:11:F3:C5:8F:6C:98:AF:99:CF:65:A6:F1:E8:FF:7C:43:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NvdiEfPFj2yYr5nPZabx6P98Q7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fcad2d-86d9-42b1-b115-2fcf396253b8/1/hywPTc5g8WfF6XIVFDE9bW1LLVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fcad2d-86d9-42b1-b115-2fcf396253b8/1/NvdiEfPFj2yYr5nPZabx6P98Q7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.236.0-185.230.238.255
Signature Algorithm: sha256WithRSAEncryption
51:3a:eb:23:13:9d:2d:6e:0a:5a:eb:be:38:72:ef:dd:9c:58:
d7:65:a3:71:3a:41:2e:77:dd:84:e6:9b:46:ef:52:d9:ff:50:
53:b2:52:4a:19:98:07:2d:c0:a8:f7:54:51:0b:ad:68:eb:3d:
ca:fe:07:f5:20:e2:d5:de:85:20:b4:99:43:19:7d:01:5a:36:
33:0d:49:1b:35:bc:a5:81:74:ab:5d:e5:ab:0e:67:e4:fe:99:
95:6f:0d:87:e9:1b:21:c7:92:10:bc:9b:80:1f:ba:73:6d:a5:
bb:90:b7:53:3b:f1:45:32:90:5c:af:0f:dd:f7:7c:48:1a:1b:
f9:25:1e:f8:d5:6d:9e:a1:ff:35:d8:cd:44:5f:9a:7d:0d:cf:
5c:49:8d:dc:70:3d:42:d2:3f:f3:44:f0:96:29:20:16:e0:4a:
9d:9c:74:bf:3c:dd:7c:3e:f0:62:25:2c:2a:7f:0e:aa:3f:62:
42:06:ba:13:35:c7:88:41:21:e3:1f:4d:05:70:1f:ff:5a:41:
cb:18:08:24:f7:55:fb:9c:9c:07:0e:3d:49:c1:48:cc:21:56:
14:39:17:72:23:66:c5:db:77:94:5e:de:77:9a:c6:23:a1:6f:
8d:9c:43:f4:2a:b2:41:8c:3f:98:90:d6:7c:3a:7c:e3:6c:6f:
35:d9:29:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:17 2024 by rpki-client on console-fra.rpki-client.org