Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/1HanLeX2jjZ-DD4NFC3kjQYD56E.roa
File: 1HanLeX2jjZ-DD4NFC3kjQYD56E.roa (raw, json)
Hash identifier: 1aqS2xRQ3rK8B1NSporyu6NtzFy4ZcIXLSN4UXDLA2s=
Subject key identifier: D4:76:A7:2D:E5:F6:8E:36:7E:0C:3E:0D:14:2D:E4:8D:06:03:E7:A1
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 018CC6B8344EEF216D2E5204F49171EADA00
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/1HanLeX2jjZ-DD4NFC3kjQYD56E.roa
Signing time: Mon 01 Jan 2024 20:30:09 +0000
ROA not before: Mon 01 Jan 2024 20:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 185.93.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 12:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:34:4e:ef:21:6d:2e:52:04:f4:91:71:ea:da:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jan 1 20:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d476a72de5f68e367e0c3e0d142de48d0603e7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b2:87:ba:f6:b4:f3:69:fe:1a:d5:65:4a:93:
19:e7:64:c7:15:90:a1:e4:ed:1d:bf:c8:a1:66:0d:
e2:c1:9c:37:60:4a:ba:fe:bf:8c:bc:48:79:e6:dd:
ee:ec:f7:a8:64:b6:af:b4:dd:51:cd:d8:f5:3f:60:
a0:f1:5b:80:da:a4:e1:c0:33:9b:ed:7a:1d:ad:33:
2d:08:29:e0:69:f7:4e:4d:a5:6f:ba:fd:98:2c:a1:
4b:d1:f7:74:cf:b4:36:f8:86:75:00:5c:96:7b:27:
cf:57:1b:28:bf:70:71:14:59:5b:64:7e:4b:79:09:
89:f4:e3:cb:4e:6d:88:da:a7:56:a4:e7:c4:c5:1e:
fc:90:40:1f:ef:b4:a6:22:c8:75:6f:75:6c:12:ec:
c0:cd:8a:e5:76:75:d2:01:ea:bd:52:13:99:2e:8c:
5b:56:dd:8d:70:18:82:b3:9d:95:62:d7:a8:4b:87:
54:0a:d7:48:0c:df:d1:4c:31:99:a4:4b:70:a4:af:
2c:c8:a1:9f:b2:ac:e4:75:8f:f9:00:65:33:79:8a:
7c:bc:41:0a:77:00:6b:eb:d2:63:ba:36:c7:3b:c6:
a0:53:ec:a2:73:b1:37:80:05:33:21:30:46:79:06:
9b:6d:44:fa:27:02:d7:11:27:aa:3f:fc:c4:2c:40:
c2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:76:A7:2D:E5:F6:8E:36:7E:0C:3E:0D:14:2D:E4:8D:06:03:E7:A1
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/1HanLeX2jjZ-DD4NFC3kjQYD56E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.221.0/24
Signature Algorithm: sha256WithRSAEncryption
21:3f:ac:1b:41:b2:e7:00:d3:39:8a:14:a1:b4:ce:70:9b:59:
2f:7c:19:12:eb:3f:dd:bc:af:e3:4e:8d:3f:20:6c:66:e5:f5:
5f:09:34:4b:3c:e8:1e:63:4e:eb:9b:49:41:6e:bf:8d:00:75:
d1:4a:a8:b9:d8:85:b4:38:46:b1:dc:79:11:b0:ed:d7:c9:38:
fc:35:45:b8:89:87:4b:f7:b5:90:5b:3a:72:13:ed:db:55:a2:
e4:64:93:ef:36:c2:7e:6f:cd:4a:17:ee:a9:f0:43:bd:d5:d3:
da:b0:be:ae:7c:7a:47:68:34:7d:2c:bc:e7:66:36:a6:f1:c7:
df:24:b0:3f:49:ef:d5:00:a8:08:c9:8d:03:e7:5a:e0:ca:97:
c8:57:5e:97:0d:50:54:62:98:25:11:a5:e4:4c:4b:e3:9e:28:
ad:57:00:39:c7:a0:b2:42:0e:ca:63:bf:4b:0b:53:13:d9:6d:
8f:e8:e0:9f:a8:43:d4:bb:3d:50:e8:0d:cf:69:ba:49:69:8a:
ca:ce:81:1f:11:67:0b:67:d1:0a:a7:3b:20:28:0d:69:10:a6:
a9:3e:ed:f6:64:87:fc:0d:45:7e:4c:ff:1f:60:46:7b:a0:3d:
92:17:4a:d5:f1:37:8a:e9:fa:7c:90:39:cc:0b:bb:d8:11:c9:
15:ab:4b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:16 2024 by rpki-client on console-ams.rpki-client.org