Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/HKgxP_Cy2oXe9CLpjmAs3HBX6BA.roa
File: HKgxP_Cy2oXe9CLpjmAs3HBX6BA.roa (raw, json)
Hash identifier: bzRzOp452QrsZD0UhW7afLb6cTpQwSh0oMUI8xWmevA=
Subject key identifier: 1C:A8:31:3F:F0:B2:DA:85:DE:F4:22:E9:8E:60:2C:DC:70:57:E8:10
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018A2895CD3E387ABEAA83E13E3B3C546BDA
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/HKgxP_Cy2oXe9CLpjmAs3HBX6BA.roa
Signing time: Thu 24 Aug 2023 17:27:00 +0000
ROA not before: Thu 24 Aug 2023 17:27:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.104.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 10:45:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:28:95:cd:3e:38:7a:be:aa:83:e1:3e:3b:3c:54:6b:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Aug 24 17:27:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ca8313ff0b2da85def422e98e602cdc7057e810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:68:d5:df:3d:ea:3e:73:a7:4e:99:61:86:02:
90:a0:5b:d6:3d:1f:82:82:ae:70:f9:a5:19:38:e1:
30:87:c8:ed:6e:41:6b:96:f8:4f:ee:df:b3:5f:0b:
af:a4:52:c8:5a:f8:66:68:8a:7a:07:1e:f2:c8:a9:
ab:9f:4a:60:20:0b:ce:4e:ee:04:b6:07:23:ab:a4:
c4:ac:7f:07:cc:43:1a:c4:4d:1b:7c:ec:d4:dc:e7:
fe:2f:81:ce:92:0a:4c:62:44:93:e8:51:6b:88:e2:
ca:63:50:e0:59:a4:53:08:84:ac:3b:9e:19:33:1c:
ae:a2:b8:6c:8f:da:2d:6d:eb:57:69:26:99:c2:fa:
e6:cc:e9:44:ae:eb:e2:96:d6:31:7b:ed:99:53:6c:
2e:51:52:db:b0:98:fb:c2:16:08:5f:40:55:6e:6c:
fe:95:a2:5a:a3:3d:de:72:0f:a8:93:68:33:c1:1d:
32:55:89:e8:87:b3:90:fa:8c:0e:86:c6:31:21:7f:
0c:0e:47:a5:a6:5e:7a:cd:b8:51:a0:72:40:0a:05:
77:56:c1:f5:c2:03:f2:ac:dd:1c:90:11:79:fc:53:
72:8e:35:20:d1:da:db:ef:45:e0:17:cc:15:75:25:
6c:ed:b5:54:53:28:fd:c6:d4:39:21:75:14:65:6c:
2e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A8:31:3F:F0:B2:DA:85:DE:F4:22:E9:8E:60:2C:DC:70:57:E8:10
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/HKgxP_Cy2oXe9CLpjmAs3HBX6BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.12.0/24
Signature Algorithm: sha256WithRSAEncryption
03:57:89:b8:67:6e:b9:8a:00:34:41:f3:f4:36:8d:c6:50:7d:
da:7a:ad:64:eb:2c:d5:a6:46:6f:67:39:c6:4b:78:53:d3:41:
88:fb:b3:46:5b:2d:86:29:91:df:83:c2:0b:cf:98:b2:f1:4c:
43:cb:c8:76:a1:29:73:39:7e:e2:fd:a2:50:6a:97:54:1b:fa:
15:81:86:b8:83:d4:b5:26:6e:62:30:dc:56:74:a4:a6:aa:81:
0c:ef:f4:54:18:38:60:fd:50:ea:58:0e:c5:ea:a3:56:9a:d0:
d6:3f:20:e9:a6:63:17:6c:dd:c5:3a:16:b8:80:ba:01:ce:42:
fb:6d:4a:80:61:97:43:86:6b:0a:3b:95:b5:e7:cc:cb:35:41:
1c:9d:7b:ed:cc:5a:61:ec:72:ad:20:ce:a4:fa:e4:cf:15:a9:
e8:c2:4d:9d:8c:b6:6d:16:2f:c7:23:57:ec:09:36:ab:45:99:
33:d4:85:c8:1a:27:d9:66:97:89:1f:2f:5b:d9:9d:9d:27:fe:
50:85:4f:b0:0f:a0:e0:48:03:34:a9:f5:98:ea:d1:e2:d0:db:
3a:f8:a4:3a:ad:1a:98:05:02:98:13:c5:ff:f2:8b:b1:68:64:
a9:de:22:5a:b5:93:5a:55:0f:fb:4e:4d:0e:be:cc:6c:a8:86:
e9:9e:e8:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:23 2024 by rpki-client on console-ams.rpki-client.org