Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/HnR14PklLaT1fm89vqJywuY9ZQQ.roa
File: HnR14PklLaT1fm89vqJywuY9ZQQ.roa (raw, json)
Hash identifier: nHczU1EYFwQ9BpUaaV116ZKD2gUgEbl+NWFUnyN8O1Y=
Subject key identifier: 1E:74:75:E0:F9:25:2D:A4:F5:7E:6F:3D:BE:A2:72:C2:E6:3D:65:04
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 018B20588BC734D15813E73E52E6753AA43C
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/HnR14PklLaT1fm89vqJywuY9ZQQ.roa
Signing time: Wed 11 Oct 2023 20:05:55 +0000
ROA not before: Wed 11 Oct 2023 20:05:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.179.91.0/24 maxlen: 24
185.151.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:58:8b:c7:34:d1:58:13:e7:3e:52:e6:75:3a:a4:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Oct 11 20:05:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e7475e0f9252da4f57e6f3dbea272c2e63d6504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:14:4c:11:cd:87:91:10:6f:9d:8e:83:70:
57:e8:86:3a:fb:cd:a0:03:bd:1f:fa:d3:66:21:7c:
58:c0:ef:cb:00:f3:9d:7e:bc:6c:42:a0:37:03:1e:
3c:32:77:2f:36:2d:f7:3f:40:f6:ad:17:0e:74:05:
43:0a:62:4b:4e:fb:c6:67:53:da:e5:20:4b:31:a5:
ee:b6:62:20:98:15:e7:e9:51:8d:b3:13:f8:d9:85:
78:41:84:e0:b0:2b:8d:64:a0:9a:c7:cb:94:be:70:
43:df:72:ca:10:00:03:6b:11:5f:d1:5a:24:a0:3c:
d8:e3:d6:e9:32:f5:63:aa:2e:b1:c1:39:c4:46:1e:
49:3f:2b:ad:10:96:21:11:7f:a4:64:6d:c5:25:8d:
d2:98:5c:d7:43:33:02:12:d7:80:48:a7:0a:ef:73:
f1:ae:6f:2a:67:28:82:a4:61:22:7c:cf:d8:aa:97:
98:15:0d:12:54:01:c0:10:82:a0:17:06:9d:05:fc:
73:61:a5:53:d3:19:1b:9a:37:e2:43:94:91:18:52:
ee:0c:36:fa:08:9a:f6:16:b8:f6:bf:2f:86:c9:cc:
78:2a:61:ff:dd:0e:2b:c6:0f:a1:0a:e1:2a:38:36:
53:8f:ff:e5:e1:dc:0e:42:d3:48:a9:08:23:61:19:
1e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:74:75:E0:F9:25:2D:A4:F5:7E:6F:3D:BE:A2:72:C2:E6:3D:65:04
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/HnR14PklLaT1fm89vqJywuY9ZQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.146.0/24
185.179.91.0/24
Signature Algorithm: sha256WithRSAEncryption
87:a5:2e:63:45:19:bf:75:c7:18:75:fa:d0:c2:d7:b6:c7:68:
9e:9e:cd:b7:27:10:72:41:5e:12:1b:44:fa:23:4b:af:f1:b6:
b2:c1:92:ba:7c:6b:a9:51:8f:1d:bd:47:ad:7b:ec:5a:7d:ae:
09:9d:11:19:14:e2:d4:bb:f5:97:a2:63:31:4f:a4:9e:07:5a:
e9:9e:cb:24:f5:39:9b:8e:22:33:fd:02:10:b1:ac:99:aa:71:
19:9b:18:6d:24:fa:72:0e:b1:57:0c:81:8f:6d:4a:73:7d:e3:
0b:f6:28:8a:28:c0:c2:25:71:a5:80:6c:49:34:b3:92:ad:80:
bb:e6:46:72:44:3c:34:de:25:2c:cd:ae:db:f4:6c:d2:5a:b2:
f6:85:4e:6a:a2:02:e7:45:45:95:cb:5e:fa:1a:cc:8f:1c:eb:
da:39:63:23:92:64:0a:55:ab:2b:fa:90:10:c8:61:88:4f:b4:
58:12:d4:d9:d6:68:8d:00:4d:83:55:79:c3:aa:01:06:9e:58:
01:7a:31:95:ff:f6:a8:6b:9b:4e:4b:07:fa:d4:52:b5:76:cb:
d6:38:09:c3:dd:c9:66:c9:1f:f3:30:52:46:38:7e:87:3f:fe:
42:cd:4b:89:83:93:8d:44:3d:68:69:03:90:02:ab:2f:eb:7d:
d3:5b:da:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org