Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/33e508-127d-4946-b3cc-4c9f43f878ab/1/H_1-MXmVS2BTo-LhnxoQ0bzUyxI.roa
File: H_1-MXmVS2BTo-LhnxoQ0bzUyxI.roa (raw, json)
Hash identifier: RHuFCbOAhzCDCCsa9HBG2zzNoBA7SYP4Jy3eK0uPIxM=
Subject key identifier: 1F:FD:7E:31:79:95:4B:60:53:A3:E2:E1:9F:1A:10:D1:BC:D4:CB:12
Certificate issuer: /CN=a749aca85dc66c83ce55ecdc045c96075ca7debc
Certificate serial: 01856C135CE79D34FC3888703998405F55BC
Authority key identifier: A7:49:AC:A8:5D:C6:6C:83:CE:55:EC:DC:04:5C:96:07:5C:A7:DE:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0msqF3GbIPOVezcBFyWB1yn3rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/33e508-127d-4946-b3cc-4c9f43f878ab/1/H_1-MXmVS2BTo-LhnxoQ0bzUyxI.roa
Signing time: Sun 01 Jan 2023 06:44:46 +0000
ROA not before: Sun 01 Jan 2023 06:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61025
IP address blocks: 185.17.236.0/23 maxlen: 23
2a03:dd40::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 19 Nov 2023 11:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:5c:e7:9d:34:fc:38:88:70:39:98:40:5f:55:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a749aca85dc66c83ce55ecdc045c96075ca7debc
Validity
Not Before: Jan 1 06:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ffd7e3179954b6053a3e2e19f1a10d1bcd4cb12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:17:bf:33:ae:21:07:b5:f3:79:d7:05:81:
f2:d1:ab:3d:7f:2e:e3:82:f9:0b:a8:5f:26:d8:48:
c5:43:c1:aa:b2:9a:91:15:47:b6:06:a8:b0:08:d9:
93:8a:10:fb:c0:df:b8:3a:c8:c0:1b:7c:89:bc:27:
24:09:68:8b:e7:ee:fb:0e:48:54:49:f6:61:2f:ae:
b5:13:33:b3:ec:dd:0e:e1:d4:a1:ce:0b:7c:05:1d:
97:61:a4:d6:28:48:91:b9:ec:e3:0f:0d:45:75:65:
d2:ab:5e:3e:33:52:33:ba:25:44:59:5b:17:58:35:
b5:3a:27:fa:19:12:7c:58:a3:96:73:cb:3e:b0:61:
9c:b5:ab:a1:ab:0b:9c:b6:33:28:86:49:20:f4:aa:
85:2f:2e:e9:65:cd:fb:e0:14:1d:cb:11:0f:26:36:
0e:a6:9e:4c:75:28:6c:de:61:68:f4:8e:47:98:e2:
cb:39:a5:50:60:c8:56:63:2d:88:89:89:e3:bb:bd:
a6:3c:de:dc:b6:2d:96:4d:c3:7c:5e:2d:a1:92:7a:
b3:b1:af:be:41:1a:99:2a:20:9a:a4:b8:68:06:66:
fa:1b:81:fe:24:9d:36:e1:28:46:c8:00:ca:a8:dd:
19:a2:76:5d:d2:8a:93:eb:6f:dd:10:9f:3f:ad:d2:
09:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:FD:7E:31:79:95:4B:60:53:A3:E2:E1:9F:1A:10:D1:BC:D4:CB:12
X509v3 Authority Key Identifier:
keyid:A7:49:AC:A8:5D:C6:6C:83:CE:55:EC:DC:04:5C:96:07:5C:A7:DE:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0msqF3GbIPOVezcBFyWB1yn3rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/33e508-127d-4946-b3cc-4c9f43f878ab/1/H_1-MXmVS2BTo-LhnxoQ0bzUyxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/33e508-127d-4946-b3cc-4c9f43f878ab/1/p0msqF3GbIPOVezcBFyWB1yn3rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.236.0/23
IPv6:
2a03:dd40::/32
Signature Algorithm: sha256WithRSAEncryption
a2:b0:1c:3f:c2:81:3c:c7:9c:58:fa:ba:71:78:23:7a:fd:11:
9d:f7:88:33:6a:f8:8c:d1:8b:a9:08:0d:f8:fe:38:82:33:67:
89:e4:a3:c4:ee:60:4c:fc:5b:1c:af:91:3e:f6:51:82:49:36:
49:7f:c3:31:c9:54:48:c3:1f:ca:24:65:46:63:52:60:72:fe:
58:50:7c:78:df:76:cf:50:45:87:a9:ac:35:d8:f3:ad:97:1f:
0c:4f:34:42:d2:e5:d4:72:db:7d:62:20:f3:de:4c:07:42:c4:
e2:8f:2d:c1:b5:2a:39:78:06:67:72:a6:a4:25:98:8e:96:14:
0a:50:11:6e:87:fc:cd:eb:ff:6b:e9:95:38:dc:75:70:30:97:
28:e4:b2:c7:48:3e:2c:90:66:8e:21:0c:77:a0:17:37:5b:1e:
2f:eb:3a:3b:a9:f2:5d:c8:b8:8c:9c:1e:0f:f7:25:02:be:00:
c8:09:ff:a1:56:3d:8d:0d:6d:cb:5e:24:e9:20:2c:ba:71:7c:
bf:f0:74:02:28:27:53:7c:ff:9d:cb:3a:e8:bc:de:e5:10:39:
5d:71:3a:01:60:d8:51:12:18:85:e4:18:c7:3e:28:f0:72:96:
8a:1d:0b:cb:9b:b3:f5:0d:4c:8f:2c:e0:3a:a0:6e:52:c2:e3:
f7:0a:2d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:19 2024 by rpki-client on console-ams.rpki-client.org