Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/HoI9y5WoK9S-p-RPOrA0Y8ACJ2g.roa
File: HoI9y5WoK9S-p-RPOrA0Y8ACJ2g.roa (raw, json)
Hash identifier: JPPE9IKD/f1tN4xvs478mnqOgMgGQLqavLSEDysVUyE=
Subject key identifier: 1E:82:3D:CB:95:A8:2B:D4:BE:A7:E4:4F:3A:B0:34:63:C0:02:27:68
Certificate issuer: /CN=335ca521362226d03c1829003d81d498aa838f33
Certificate serial: 01856E4B03ECF056CF2B5C87752269835DF2
Authority key identifier: 33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/HoI9y5WoK9S-p-RPOrA0Y8ACJ2g.roa
Signing time: Sun 01 Jan 2023 17:04:48 +0000
ROA not before: Sun 01 Jan 2023 17:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209257
IP address blocks: 185.186.221.0/24 maxlen: 24
2a11:1e40:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Feb 2023 17:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:4b:03:ec:f0:56:cf:2b:5c:87:75:22:69:83:5d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335ca521362226d03c1829003d81d498aa838f33
Validity
Not Before: Jan 1 17:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e823dcb95a82bd4bea7e44f3ab03463c0022768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:73:d6:b4:9a:e8:43:93:c0:0a:60:ff:b0:92:
d5:79:e8:d7:b1:74:e6:f1:a3:a9:7e:d9:df:ee:4c:
9e:d9:8a:58:df:76:ab:88:1f:21:c0:6f:d6:73:2a:
c3:a2:78:88:de:8d:3a:08:df:95:90:d1:06:e6:2b:
a8:7c:bd:8f:8a:52:f1:b9:42:dc:84:90:48:48:19:
cc:31:3b:66:0a:b0:ea:d6:c8:a8:b6:f8:ca:2d:7b:
d1:d0:a5:89:14:5b:24:cb:fe:d3:a7:d1:da:21:05:
5a:ac:12:8a:f9:c2:83:c1:da:ea:aa:70:78:57:5a:
14:03:5c:97:ad:a4:97:31:f4:c7:12:93:db:6e:97:
f1:fe:ad:da:0f:83:ad:41:f4:68:88:4a:cc:8d:b2:
79:12:d2:65:1e:55:cf:fe:11:30:09:77:fb:5d:05:
c7:e2:48:4d:68:22:ea:2a:73:7d:99:6a:73:d1:3b:
66:6a:9c:11:c0:6e:b9:5e:47:91:91:cb:a8:d7:06:
a0:90:99:20:cb:57:33:a4:45:98:b2:c4:0f:b2:c4:
65:31:20:9f:8a:62:b4:9e:b1:f6:c4:5d:58:12:e1:
17:00:df:b5:ff:2f:74:74:c7:25:7d:cf:98:a0:fe:
54:08:c8:09:09:e7:1a:15:89:be:22:34:e8:2a:f9:
d5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:82:3D:CB:95:A8:2B:D4:BE:A7:E4:4F:3A:B0:34:63:C0:02:27:68
X509v3 Authority Key Identifier:
keyid:33:5C:A5:21:36:22:26:D0:3C:18:29:00:3D:81:D4:98:AA:83:8F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1ylITYiJtA8GCkAPYHUmKqDjzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/HoI9y5WoK9S-p-RPOrA0Y8ACJ2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/dc608a-175e-42d3-93d8-974c44ab9cfb/1/M1ylITYiJtA8GCkAPYHUmKqDjzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.221.0/24
IPv6:
2a11:1e40:1::/48
Signature Algorithm: sha256WithRSAEncryption
60:c2:21:14:16:93:b2:03:77:c3:f0:7e:f4:60:ce:5d:d3:98:
f9:45:47:40:d3:0c:f7:c4:53:8d:49:dc:02:12:d2:d7:94:91:
69:91:d2:26:92:fe:9c:11:6a:4c:8e:98:a4:64:6b:1f:26:5d:
dd:2e:18:28:b4:4a:17:76:fd:b0:0f:3c:f0:6a:14:21:47:39:
d0:07:b7:a2:34:a8:0e:0f:3b:29:1b:8c:6a:d0:29:1c:a8:64:
7a:db:6b:dc:fd:88:9f:bd:cc:3e:a0:db:52:f7:6c:ff:1a:9e:
24:c9:28:4f:69:b2:66:f3:ae:b5:e9:14:29:1a:f7:1b:61:72:
f8:67:b0:58:c1:bc:f0:a9:3a:80:69:98:75:5d:d2:2f:84:3b:
07:4a:89:8b:9d:f4:cb:50:1b:bf:c1:51:45:ae:ee:ef:69:69:
ae:89:93:0f:ca:f6:5a:2c:ce:6f:1d:2b:ee:1b:94:c0:0a:ed:
33:7b:42:3f:c7:f3:19:24:e2:bd:69:4b:48:d7:45:bf:07:20:
64:7d:d5:73:93:fa:aa:7f:93:dc:0b:d0:16:0c:81:6f:ae:99:
0a:1f:46:6e:ed:cd:f6:94:d5:38:cb:62:ac:38:59:92:61:c1:
17:fd:a7:f9:2c:8c:09:3f:d6:ae:64:50:c7:90:57:b4:d3:15:
41:4e:b9:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org