Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a135b2-791e-41da-afd7-da1c4175802b/1/HySLC-5ob-LeLKkzr4CUkblmM3s.roa
File: HySLC-5ob-LeLKkzr4CUkblmM3s.roa (raw, json)
Hash identifier: xHqzAUR5gEDeHcKauRnBENjy8RaXljtQwilVyuFzXnc=
Subject key identifier: 1F:24:8B:0B:EE:68:6F:E2:DE:2C:A9:33:AF:80:94:91:B9:66:33:7B
Certificate issuer: /CN=4f6148965f7affeb58609615e6ad4e3eea8cebca
Certificate serial: 018E2E4C700A7FB5B6DD2B2222436D417755
Authority key identifier: 4F:61:48:96:5F:7A:FF:EB:58:60:96:15:E6:AD:4E:3E:EA:8C:EB:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T2FIll96_-tYYJYV5q1OPuqM68o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a135b2-791e-41da-afd7-da1c4175802b/1/HySLC-5ob-LeLKkzr4CUkblmM3s.roa
Signing time: Mon 11 Mar 2024 16:15:45 +0000
ROA not before: Mon 11 Mar 2024 16:15:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215404
IP address blocks: 185.218.227.0/24 maxlen: 24
2a14:dc0:100::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 17:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2e:4c:70:0a:7f:b5:b6:dd:2b:22:22:43:6d:41:77:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f6148965f7affeb58609615e6ad4e3eea8cebca
Validity
Not Before: Mar 11 16:15:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f248b0bee686fe2de2ca933af809491b966337b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:0f:c3:31:e7:e4:b4:74:b4:51:87:45:b2:d0:
10:4e:f8:51:4a:8c:cc:f5:d2:06:19:1d:e1:4a:ba:
64:6e:9e:5e:8a:14:8c:37:96:ed:b2:3e:d0:bf:38:
6e:a9:c6:c1:9c:10:33:1e:c3:d3:51:cb:c4:33:8e:
8c:ae:cd:02:74:df:4d:ff:48:f9:f0:e5:80:03:fb:
90:9a:a2:b8:e1:c1:ef:11:f5:cd:bc:a3:35:b5:c0:
db:bf:2b:cb:60:22:f5:90:8a:74:4b:ad:c4:55:f8:
cb:73:00:71:20:71:02:38:c8:d2:f5:c8:a3:93:3e:
51:3a:36:bf:a0:3b:ee:48:f6:b5:45:5a:03:33:87:
ae:78:a1:88:66:16:b8:26:1e:76:e6:32:dd:6f:4a:
14:ab:c3:9b:67:3f:30:be:43:e3:7d:d5:6f:89:79:
ad:d4:26:03:89:c7:a9:db:2d:83:ba:7d:08:e5:d0:
20:15:99:0b:97:41:07:be:d5:c9:48:ff:54:ab:3e:
ea:c4:85:30:fb:56:84:29:cd:c5:5b:b2:d7:6a:51:
4e:81:9b:51:6c:0e:e0:28:2d:b2:e9:e0:da:e9:3d:
52:c6:ad:f0:06:c9:37:71:7c:76:88:4e:41:c2:c5:
f9:27:13:2b:b2:bd:11:0f:d2:c2:f1:5b:30:f4:2f:
a3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:24:8B:0B:EE:68:6F:E2:DE:2C:A9:33:AF:80:94:91:B9:66:33:7B
X509v3 Authority Key Identifier:
keyid:4F:61:48:96:5F:7A:FF:EB:58:60:96:15:E6:AD:4E:3E:EA:8C:EB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T2FIll96_-tYYJYV5q1OPuqM68o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a135b2-791e-41da-afd7-da1c4175802b/1/HySLC-5ob-LeLKkzr4CUkblmM3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a135b2-791e-41da-afd7-da1c4175802b/1/T2FIll96_-tYYJYV5q1OPuqM68o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.227.0/24
IPv6:
2a14:dc0:100::/40
Signature Algorithm: sha256WithRSAEncryption
aa:96:bf:89:13:96:f7:61:5d:81:52:de:7b:f7:49:10:95:09:
9e:ee:59:46:62:98:4c:4f:0c:56:9d:ca:33:46:ff:49:bb:75:
f2:42:74:47:e8:89:da:33:a2:23:d3:e8:d0:3c:8a:fe:b8:aa:
87:d9:0d:d5:56:50:99:dd:17:31:ba:ad:f9:6d:f5:ad:d1:84:
9f:9e:3c:a9:ac:d7:db:96:bc:59:e2:b2:f4:b7:bc:95:67:12:
d1:23:e5:ce:ac:09:de:30:a0:91:46:38:4a:01:b0:61:9d:4e:
83:a2:f2:6a:01:ad:0b:fe:94:fa:0f:46:c3:72:cf:6f:23:ce:
98:8f:6c:03:d8:cc:ac:e5:73:1d:72:cb:a3:9e:2b:11:52:59:
d3:28:d0:f2:f1:1a:07:41:b1:4e:d6:4b:af:24:e8:84:67:4d:
5f:c9:70:b6:fc:90:5a:1b:cb:0b:30:30:f2:66:4c:81:19:1c:
88:ce:db:3d:bf:90:22:3b:20:94:60:ee:ec:7a:fb:6d:61:14:
e9:31:84:46:87:0f:c4:96:69:f3:27:7c:32:3d:86:12:a2:4b:
ec:4a:9c:4e:c2:08:1e:61:dd:bf:52:5b:f5:7a:28:9a:32:48:
20:03:f6:cf:38:3f:9d:8e:7a:bc:98:c5:a4:26:c5:1a:7c:29:
6c:90:53:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:52:28 2025 by rpki-client