Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/ffc204-d4d2-4a67-85af-f9a33ff011cb/1/Hap0UmMysx0sDVFU2ndG3jjGWlw.roa
File: Hap0UmMysx0sDVFU2ndG3jjGWlw.roa (raw, json)
Hash identifier: uE8RHOYs/AfUCcWS4cuQoNCBFSWmqbu18f78Io4NCC4=
Subject key identifier: 1D:AA:74:52:63:32:B3:1D:2C:0D:51:54:DA:77:46:DE:38:C6:5A:5C
Certificate issuer: /CN=bef6650582c00dbb2591cedc298c0cd3c5968ab0
Certificate serial: 01856D13A462F1C0ACC0341AF2A644D37448
Authority key identifier: BE:F6:65:05:82:C0:0D:BB:25:91:CE:DC:29:8C:0C:D3:C5:96:8A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vvZlBYLADbslkc7cKYwM08WWirA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/ffc204-d4d2-4a67-85af-f9a33ff011cb/1/Hap0UmMysx0sDVFU2ndG3jjGWlw.roa
Signing time: Sun 01 Jan 2023 11:24:41 +0000
ROA not before: Sun 01 Jan 2023 11:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 185.253.192.0/22 maxlen: 22
2a04:4c00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:a4:62:f1:c0:ac:c0:34:1a:f2:a6:44:d3:74:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bef6650582c00dbb2591cedc298c0cd3c5968ab0
Validity
Not Before: Jan 1 11:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1daa74526332b31d2c0d5154da7746de38c65a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:53:80:ef:de:43:9e:77:80:44:d3:61:be:68:
72:48:19:fb:88:4d:05:d2:f2:f8:66:25:26:4a:17:
67:62:ef:a5:ae:ce:45:d9:74:1c:0b:d5:6c:ea:6b:
28:cb:42:ee:b2:24:c9:eb:b5:67:25:a7:f5:87:b4:
e3:67:fd:bd:81:be:4b:91:bd:89:77:be:7b:e1:e1:
d7:fe:66:d8:cc:3e:ec:1d:e4:95:d1:8c:bc:a3:a5:
0c:f4:07:fb:16:4c:f6:5c:78:61:19:75:60:b3:1a:
66:3d:6d:49:1a:95:b5:14:5b:b3:24:0e:fd:a5:e1:
09:aa:0e:c7:0c:2e:1f:d7:90:cb:a8:5d:0d:00:a0:
d8:bf:39:c0:ff:58:79:d0:75:1c:f3:bb:19:81:e5:
65:56:2c:0d:6f:c8:4e:7a:37:83:ec:4b:4c:39:4f:
e5:8a:bd:98:f7:a5:72:71:2c:16:fe:bd:42:8d:ba:
7d:ee:63:7c:03:60:f1:90:89:1d:04:cb:09:6e:70:
6d:50:7a:5b:db:68:87:26:a2:e3:6a:4b:d9:1a:33:
d0:72:2f:8e:8e:60:b7:ef:78:c7:45:5d:ab:f6:d0:
86:e4:31:10:f2:1d:1d:72:64:58:73:eb:a0:07:74:
97:a5:3d:22:78:8a:cb:2b:3f:e7:0c:1c:2c:80:88:
6b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AA:74:52:63:32:B3:1D:2C:0D:51:54:DA:77:46:DE:38:C6:5A:5C
X509v3 Authority Key Identifier:
keyid:BE:F6:65:05:82:C0:0D:BB:25:91:CE:DC:29:8C:0C:D3:C5:96:8A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vvZlBYLADbslkc7cKYwM08WWirA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/ffc204-d4d2-4a67-85af-f9a33ff011cb/1/Hap0UmMysx0sDVFU2ndG3jjGWlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/ffc204-d4d2-4a67-85af-f9a33ff011cb/1/vvZlBYLADbslkc7cKYwM08WWirA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.192.0/22
IPv6:
2a04:4c00::/29
Signature Algorithm: sha256WithRSAEncryption
75:16:59:09:75:be:50:dc:53:f1:86:a4:18:4c:3a:c9:12:a6:
39:9f:cb:e9:e8:97:92:57:db:1c:e3:ac:b1:ae:2f:d9:0d:8d:
df:f7:6b:f1:c2:65:e2:ab:5b:14:e7:e2:a3:19:5a:ae:a1:8b:
82:3f:95:65:c4:fb:ed:e3:d5:95:88:f4:35:db:fc:90:a6:9e:
f7:d0:c3:ac:0b:75:b6:72:ea:6e:68:2a:42:a4:2d:10:9f:00:
ad:67:42:4a:0a:ed:bf:38:0e:e7:1b:cf:95:0c:dc:bc:68:7a:
eb:27:05:9f:1e:b7:3e:ed:b3:b4:1c:88:5b:60:f9:a8:fb:ed:
cb:f8:97:e1:c8:6a:25:51:44:17:a6:c9:26:ac:0d:b1:00:ba:
fc:d0:96:b9:c4:c3:dd:ea:fd:af:8e:de:87:8e:67:8b:6f:8f:
be:a8:63:11:5c:93:a9:23:68:bf:05:d9:ae:24:df:c4:a6:9c:
65:6f:e6:8b:54:57:25:55:c4:32:b3:a7:1c:d1:43:9d:0c:67:
c9:b9:4c:87:de:c5:a1:dd:f9:3b:16:68:4b:61:37:8a:24:b8:
9b:00:3f:65:52:1b:96:0e:e2:ba:91:5e:19:94:c9:78:09:bd:
53:a2:a3:70:21:34:32:88:81:94:3b:cc:b4:55:ac:bd:d0:9d:
1f:43:de:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:08 2024 by rpki-client on console-ams.rpki-client.org