Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/HQ18OB0Ss28Z2fa6amwdWQBjRRY.roa
File: HQ18OB0Ss28Z2fa6amwdWQBjRRY.roa (raw, json)
Hash identifier: ob/EC8eDOc/lUCdCVJTyOunVjCIRfSfYJsohUhCZrPY=
Subject key identifier: 1D:0D:7C:38:1D:12:B3:6F:19:D9:F6:BA:6A:6C:1D:59:00:63:45:16
Certificate issuer: /CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Certificate serial: 0186C533D1D3684F3D0E7BF4BD893B89E1B2
Authority key identifier: AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/HQ18OB0Ss28Z2fa6amwdWQBjRRY.roa
Signing time: Thu 09 Mar 2023 07:09:12 +0000
ROA not before: Thu 09 Mar 2023 07:09:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58075
IP address blocks: 185.187.100.0/22 maxlen: 24
2a0a:47c0::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c5:33:d1:d3:68:4f:3d:0e:7b:f4:bd:89:3b:89:e1:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Validity
Not Before: Mar 9 07:09:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d0d7c381d12b36f19d9f6ba6a6c1d5900634516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3c:11:ed:cb:36:51:ea:3f:b5:21:b5:7b:06:
d1:7a:67:cc:c4:f0:fb:37:f2:12:fa:6f:bf:66:71:
3d:79:cc:d2:20:e3:3b:bb:80:44:48:49:6d:18:67:
14:29:9e:f0:cc:26:65:fb:91:dc:56:6c:20:a7:a4:
7c:f3:e2:bd:07:09:c6:a9:24:ca:2e:bb:c7:e5:59:
a4:76:61:53:0e:79:6f:f4:c9:21:2a:60:aa:8b:41:
ce:b6:02:3e:ae:a5:8a:7a:7b:5f:63:aa:0f:d3:55:
45:20:08:38:fd:b5:57:62:50:da:e3:e7:a0:8f:8d:
4e:69:a1:f9:09:4b:1d:99:4e:3a:1c:df:d4:8f:f3:
80:61:26:b5:2f:78:3b:d8:b8:4c:fe:32:9a:28:c9:
02:ae:74:a4:c2:41:58:30:1b:ab:d1:bd:8d:1a:3e:
05:01:36:06:41:5a:a5:6f:52:eb:e7:3b:1d:4e:71:
28:b2:07:3a:dc:39:c6:dc:36:f9:c8:15:d2:78:01:
fb:f4:c2:48:c6:03:a0:92:5b:5f:39:5a:01:dc:49:
bb:3d:ef:41:2b:30:12:35:6c:aa:be:34:12:fc:fa:
81:27:49:3b:76:9b:87:08:34:10:71:0d:ee:56:ba:
30:10:8b:86:57:ba:a4:3d:d7:62:99:ee:e0:f2:38:
6b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0D:7C:38:1D:12:B3:6F:19:D9:F6:BA:6A:6C:1D:59:00:63:45:16
X509v3 Authority Key Identifier:
keyid:AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/HQ18OB0Ss28Z2fa6amwdWQBjRRY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/q5-ExqSNXG3-ZBSYc7FI0RILAJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.100.0/22
IPv6:
2a0a:47c0::/29
Signature Algorithm: sha256WithRSAEncryption
70:ae:d7:8d:aa:fd:c4:e1:9f:f4:7b:69:89:d7:c1:55:2b:c3:
ce:8b:f4:74:63:e4:4f:ff:20:aa:c8:c2:78:dd:89:91:f8:44:
8d:d9:25:35:33:c6:d6:2b:42:d9:60:b5:a9:18:69:e7:fa:c5:
4c:85:98:91:41:2e:24:77:d7:13:af:4c:53:fc:a6:92:24:5a:
44:2c:51:65:89:6a:65:8e:cd:8c:32:9d:07:93:fb:7c:50:f3:
0f:fc:69:40:04:a6:54:76:80:fe:4c:a2:8a:f2:b8:52:71:b7:
0c:f2:c4:7a:88:c9:14:91:61:05:c3:1d:93:18:e3:96:b7:1f:
eb:4e:10:61:d9:e1:fd:d9:4d:ec:fe:15:ee:73:dd:79:8d:b9:
16:66:71:a1:04:a2:a7:17:1a:70:05:46:53:1b:65:0c:9d:11:
ae:94:bf:84:c0:61:87:4b:bf:44:6b:37:be:47:06:48:af:b2:
3c:07:83:d7:66:0d:56:51:1f:97:87:e1:fd:8c:b8:55:f0:f2:
c6:06:34:f7:76:14:eb:f0:e8:46:ee:cb:3e:31:69:75:f6:d3:
c5:4a:d4:8f:33:cb:ef:e2:4d:62:44:9a:c2:f7:88:c6:c4:8a:
bc:d7:c3:42:a3:18:e3:bc:46:9b:11:dc:ff:e2:d9:be:dc:73:
24:e4:11:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-ams.rpki-client.org