Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/8huomjanpQPqRcqVBKlPV_cvZfU.roa
File: 8huomjanpQPqRcqVBKlPV_cvZfU.roa (raw, json)
Hash identifier: e0Qbg1QyZqdTRGM300MOEA66bs8fNUEyvTY8af5GX6k=
Subject key identifier: F2:1B:A8:9A:36:A7:A5:03:EA:45:CA:95:04:A9:4F:57:F7:2F:65:F5
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 0185730C9E2EA76514C712693B58A0CC20E4
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/8huomjanpQPqRcqVBKlPV_cvZfU.roa
Signing time: Mon 02 Jan 2023 15:14:44 +0000
ROA not before: Mon 02 Jan 2023 15:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 185.177.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 10:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:9e:2e:a7:65:14:c7:12:69:3b:58:a0:cc:20:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Jan 2 15:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f21ba89a36a7a503ea45ca9504a94f57f72f65f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5b:0f:13:81:aa:ef:69:d1:81:e8:84:ac:85:
5a:f8:94:bb:2b:3c:9d:f5:d1:70:6e:c8:fc:15:5a:
10:1c:98:71:1c:d4:c8:db:1c:fa:ac:39:24:b5:17:
21:47:8e:13:43:c3:79:f8:a3:44:92:b3:bc:92:64:
e3:c1:ef:3c:0d:03:dc:0d:59:d6:93:6c:79:22:2c:
3a:36:dd:b7:96:53:d1:a1:d1:a6:95:0d:3e:1b:5a:
41:e6:95:87:4f:46:1e:bb:d1:8b:5d:de:63:d7:de:
37:3f:c8:53:58:e0:76:e5:c7:a3:68:9a:2a:24:c5:
1f:01:ab:28:5a:6d:22:82:1b:aa:85:39:fd:4f:ab:
49:a3:c9:0d:6e:28:b9:47:79:40:09:52:7c:fb:4d:
21:c6:b1:ba:63:b4:62:18:e3:7e:06:da:aa:94:d8:
37:bf:4a:51:1b:fd:46:d3:27:c1:90:10:ec:c1:ab:
ca:68:1b:f2:87:83:d1:44:7f:1e:bc:00:a2:53:29:
45:df:e2:a4:fe:a6:ba:42:67:75:48:81:90:cd:d6:
81:e7:82:47:d5:fc:94:01:ab:c6:54:e0:31:92:5d:
1f:af:0f:cf:28:5c:b6:77:e2:0b:30:a1:0f:09:90:
94:4f:2e:d3:bf:28:ad:b1:58:fa:87:70:19:38:7b:
96:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1B:A8:9A:36:A7:A5:03:EA:45:CA:95:04:A9:4F:57:F7:2F:65:F5
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/8huomjanpQPqRcqVBKlPV_cvZfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.228.0/24
Signature Algorithm: sha256WithRSAEncryption
08:99:bf:bc:ce:24:41:a8:8e:1d:57:d1:30:9e:5b:45:64:1f:
5e:a0:a2:0e:e2:15:f6:b1:4b:4d:10:87:f3:70:ca:27:6a:88:
7f:41:14:02:cc:fe:03:97:44:11:50:b8:33:06:a7:de:91:9d:
3b:d9:26:90:d4:48:1c:71:ab:cd:a8:1c:c8:5f:c4:cd:0f:1d:
3f:10:56:89:60:ee:60:8b:ba:49:b3:60:7b:f8:41:ab:42:f7:
87:17:1f:6c:88:13:86:e7:c6:30:b2:8a:c1:d2:5b:42:9e:05:
29:2c:ca:6b:ab:07:6a:5d:74:0b:fa:43:84:cd:5f:bd:9f:05:
e6:49:b4:55:89:ff:14:28:03:c0:3e:4c:57:7e:a8:d4:f0:cb:
03:98:da:79:3f:49:24:9e:17:c6:28:47:f9:68:4f:0d:ad:95:
7f:1d:52:fa:0c:fc:e9:cb:ed:53:26:d3:c8:0d:f3:fa:8a:52:
e4:89:10:ce:54:76:61:df:4a:7e:e6:83:85:d6:08:6e:7f:b5:
c5:43:f8:8c:c2:26:d6:77:63:cc:ea:d7:f3:6f:a9:c9:75:03:
8e:3a:d6:a9:66:05:de:a1:e2:49:a3:ec:04:c1:cc:e6:88:0f:
ed:ef:eb:97:8a:15:87:da:b4:47:70:93:22:8e:cd:75:28:7e:
ec:b3:89:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:30 2024 by rpki-client on console-ams.rpki-client.org