Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/HLUee6-P7MHl9xmdNdXkO6svV-E.roa
File: HLUee6-P7MHl9xmdNdXkO6svV-E.roa (raw, json)
Hash identifier: sqPfeSIWfdqT/yumhI4qypHfMM6W36BRl/sXnXiuX1g=
Subject key identifier: 1C:B5:1E:7B:AF:8F:EC:C1:E5:F7:19:9D:35:D5:E4:3B:AB:2F:57:E1
Certificate issuer: /CN=e5de0de73e73874bbc66738805d373cab833b7a5
Certificate serial: 018572A7FEA8E36AE574D0BC31B01DF8120C
Authority key identifier: E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/HLUee6-P7MHl9xmdNdXkO6svV-E.roa
Signing time: Mon 02 Jan 2023 13:24:50 +0000
ROA not before: Mon 02 Jan 2023 13:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.137.156.0/24 maxlen: 24
2a10:a100::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:fe:a8:e3:6a:e5:74:d0:bc:31:b0:1d:f8:12:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5de0de73e73874bbc66738805d373cab833b7a5
Validity
Not Before: Jan 2 13:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cb51e7baf8fecc1e5f7199d35d5e43bab2f57e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:db:16:28:6a:ee:73:c3:8b:53:f1:b9:23:35:
13:4d:9b:0f:8f:1f:ae:b7:70:1f:43:32:df:33:35:
82:ae:e7:a9:39:07:af:8c:d9:53:01:3c:d4:c4:e5:
38:b5:02:c7:29:0b:68:10:0e:00:ed:3d:36:61:b1:
a6:47:0c:9c:cf:6b:a2:7e:76:c4:34:68:03:60:63:
c9:47:0b:1d:f4:9d:d3:16:75:fd:9f:ff:28:02:f7:
4a:49:0e:14:a0:3e:ed:83:d2:ae:0a:0a:78:6e:50:
75:1f:b1:3c:6d:16:56:37:c2:01:50:cc:1f:96:ac:
ae:b9:14:5e:5b:67:e0:1e:e5:93:71:54:fe:5a:bf:
0a:ad:cc:e9:a2:67:88:3b:04:69:d4:ee:b8:68:53:
f5:0d:1d:47:38:4c:0b:a7:7f:e7:ad:ec:c4:43:8a:
9d:bd:ab:6e:3c:51:fa:43:56:4f:9f:c7:b3:51:9e:
f2:f3:ff:42:1a:c3:36:77:09:24:bc:f3:ec:24:cf:
d8:4c:d9:8f:4f:dc:c1:fd:f5:d9:36:f4:9a:fa:47:
48:a2:87:55:2d:13:ea:9e:58:4e:82:cd:f9:f6:45:
3c:d5:0a:56:11:dd:40:4f:d9:19:b5:66:a4:87:61:
9e:3e:28:c2:86:db:9b:2e:8a:b1:4c:38:4b:a3:1c:
07:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B5:1E:7B:AF:8F:EC:C1:E5:F7:19:9D:35:D5:E4:3B:AB:2F:57:E1
X509v3 Authority Key Identifier:
keyid:E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/HLUee6-P7MHl9xmdNdXkO6svV-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.156.0/24
IPv6:
2a10:a100::/32
Signature Algorithm: sha256WithRSAEncryption
78:87:e1:d4:d4:1f:ed:97:fd:11:c9:51:22:8b:7d:11:1e:1a:
b8:82:b2:49:82:20:d4:6d:87:af:be:0c:cd:59:8e:f7:81:c1:
0b:7a:8d:b9:f1:8d:35:61:d4:64:50:bc:34:ac:0d:e2:12:8d:
53:d7:92:d5:95:e9:13:9d:ec:21:24:f4:a5:74:4c:f6:5a:03:
ee:6f:f8:bd:be:ee:5c:3d:48:0a:df:39:e2:b9:b0:96:09:61:
33:22:f4:11:d0:84:e6:32:30:5f:9e:ed:36:3d:15:10:37:3b:
f7:0c:ce:10:3b:b5:1d:bc:c3:17:28:ad:7d:87:10:df:10:82:
2f:e2:b7:2a:87:e4:64:46:f8:32:01:0e:71:a2:a7:ec:55:5d:
38:16:a6:52:35:0a:64:1b:65:22:1a:e5:e0:26:ce:7a:ce:2e:
53:8e:80:be:20:87:23:d7:72:59:8b:55:7e:31:6f:78:d5:50:
da:3f:c8:c7:7c:7d:de:21:05:04:4b:ac:77:29:c5:3a:02:95:
8c:a5:a1:07:56:a6:cb:49:3b:bf:39:61:78:8b:b0:84:1d:3f:
80:a2:77:e5:ac:22:d6:3c:41:f9:3e:a9:1e:71:84:00:a9:61:
82:fc:d9:06:46:b3:79:80:3d:58:f1:7c:1d:7e:dc:b6:bc:5d:
e2:6b:28:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:46 2024 by rpki-client on console-ams.rpki-client.org