Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/HHPV76LpCQn0QzRW1AY8yFUnEs8.roa
File: HHPV76LpCQn0QzRW1AY8yFUnEs8.roa (raw, json)
Hash identifier: UvdnYV8DCQwfFy3AF74dAv0xn6o6Kw3h3aoLyd4mdiw=
Subject key identifier: 1C:73:D5:EF:A2:E9:09:09:F4:43:34:56:D4:06:3C:C8:55:27:12:CF
Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33
Certificate serial: 018C026CEB6300D3DB6FC23F7A711B998DFC
Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/HHPV76LpCQn0QzRW1AY8yFUnEs8.roa
Signing time: Fri 24 Nov 2023 17:42:21 +0000
ROA not before: Fri 24 Nov 2023 17:42:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200393
IP address blocks: 185.186.223.0/24 maxlen: 24
2a11:1e40:5aa5::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:02:6c:eb:63:00:d3:db:6f:c2:3f:7a:71:1b:99:8d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335ca521362226d03c1829003d81d498aa838f33
Validity
Not Before: Nov 24 17:42:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c73d5efa2e90909f4433456d4063cc8552712cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:83:07:7f:9c:d0:0e:95:66:90:94:4c:76:6d:
4c:2f:01:d2:b8:ec:c5:c3:45:89:5c:fa:a2:41:d3:
12:26:70:bb:d8:66:fa:a4:82:21:05:99:db:ce:1f:
4b:7f:dc:b7:e8:41:3c:ae:ed:ee:2a:25:9b:8f:09:
44:00:6d:a3:b0:bd:ad:2e:8d:41:05:7b:5a:7b:cd:
b4:94:0e:27:34:bb:36:e6:90:f7:4d:1d:ca:fc:7d:
19:96:29:3b:a2:88:aa:8b:e7:1a:e6:42:38:95:d1:
87:6a:ee:79:2c:01:dd:7a:42:cd:6f:35:8f:11:9e:
17:6c:f8:08:6c:d2:84:b7:f7:41:7c:68:fe:f7:e4:
51:32:0a:9d:06:6b:1f:54:83:0d:ef:45:fc:2f:02:
06:e0:56:6d:78:e3:f1:db:98:7b:13:68:03:2b:94:
87:e3:df:aa:2e:fb:7d:5e:4d:70:a4:77:fa:17:69:
1b:c0:27:58:a3:38:4c:d1:71:88:a5:7a:c1:7b:05:
bc:de:91:03:88:a0:ab:2e:c6:74:1b:2e:66:fc:e1:
06:95:ac:b8:72:b1:fc:b7:58:42:08:a0:35:2c:aa:
25:f0:75:47:74:82:e0:9b:35:20:04:95:92:a6:a2:
cd:5f:f5:fa:b2:5d:26:d3:fa:e7:1b:93:ed:e1:37:
37:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:73:D5:EF:A2:E9:09:09:F4:43:34:56:D4:06:3C:C8:55:27:12:CF
X509v3 Authority Key Identifier:
keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/HHPV76LpCQn0QzRW1AY8yFUnEs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.223.0/24
IPv6:
2a11:1e40:5aa5::/48
Signature Algorithm: sha256WithRSAEncryption
90:07:12:72:70:10:35:32:fd:24:0e:5f:fd:66:79:ea:21:bc:
7c:09:e9:3d:7e:86:5a:16:6e:d9:2d:fd:f7:41:3c:08:dd:06:
30:88:95:bc:06:15:86:d7:16:d0:5f:6f:0e:89:8c:be:b1:36:
be:1a:ff:21:95:b7:fa:21:c5:c6:a3:91:19:85:38:c7:c1:ca:
34:ee:0b:23:0a:66:fc:07:52:6e:d8:2c:05:97:02:b5:1f:51:
c4:a9:fe:e6:27:3a:92:13:56:0c:b3:31:a5:c7:4a:fb:18:05:
fe:de:18:a5:6f:3a:5e:3b:32:bb:e8:a8:88:8b:38:2a:19:9d:
59:70:4a:02:bb:3c:c5:fd:80:9d:9a:72:20:81:b5:66:a7:d7:
b6:d2:09:f0:a7:45:ab:7f:38:22:0b:4a:2b:6d:95:0f:2b:44:
7d:a8:d4:62:f6:6b:83:42:20:31:56:5a:ab:a4:02:af:eb:94:
38:03:46:59:1e:21:8f:6c:31:8c:72:0a:5b:ee:0f:74:82:36:
22:80:fc:ea:81:ab:b6:f8:bc:51:c6:ac:ce:98:33:3a:59:87:
cc:90:5c:13:a7:6e:37:c2:f7:1c:f7:ef:6e:cd:bb:bb:99:f3:
ba:8b:87:11:e6:5b:30:2a:c8:e0:43:e9:63:70:35:0b:a0:e6:
b4:10:b9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org