Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/hbXEDVxR9rwcOLlRgueUCFikJJM.roa
File: hbXEDVxR9rwcOLlRgueUCFikJJM.roa (raw, json)
Hash identifier: 3JLpGSiOsgDU2+wxe+TiKKesedoHF14nEA3s68z4x28=
Subject key identifier: 85:B5:C4:0D:5C:51:F6:BC:1C:38:B9:51:82:E7:94:08:58:A4:24:93
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01856ED4BAEA0EC5969D09F613114D2D11CE
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/hbXEDVxR9rwcOLlRgueUCFikJJM.roa
Signing time: Sun 01 Jan 2023 19:35:13 +0000
ROA not before: Sun 01 Jan 2023 19:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41378
IP address blocks: 185.83.202.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ba:ea:0e:c5:96:9d:09:f6:13:11:4d:2d:11:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 1 19:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85b5c40d5c51f6bc1c38b95182e7940858a42493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3b:ed:ec:04:4c:c1:2c:75:4d:70:51:65:c3:
05:75:fb:9d:04:41:c0:c6:fc:6a:06:d6:40:34:e5:
2d:a7:95:e2:c1:b6:16:ab:44:c3:c1:9a:bc:e5:f2:
66:c1:87:a4:96:92:20:be:26:71:37:ce:8c:7b:f9:
30:21:5b:e8:a9:02:d2:4b:1b:34:37:fe:2f:26:95:
f4:ba:60:b5:ea:b4:4f:67:12:6f:31:95:ce:43:7c:
b1:6e:37:aa:12:be:dd:4e:da:0e:a0:bb:af:e8:87:
b2:eb:7a:b3:e2:87:98:8b:38:93:b8:4a:01:ae:74:
f3:96:cf:f2:3e:ab:4c:bc:c1:15:5b:35:4f:e5:4d:
ac:53:a3:0e:cc:88:f7:a7:13:9b:50:3e:08:c7:2a:
b2:b2:01:9c:b0:ad:ae:a4:02:8e:dd:1a:8b:0c:82:
b9:c7:dd:f6:9b:d8:a3:93:94:92:ec:b1:e8:0f:56:
4d:98:8c:40:12:1e:0d:ad:9f:3b:49:92:b0:73:56:
74:f4:f8:d4:84:56:99:2b:f4:20:2d:55:14:0a:8c:
77:39:7c:87:b5:4c:f5:9d:e9:b2:3b:d2:26:39:61:
f6:a1:2a:92:fc:a4:1f:9f:dc:e7:28:b9:6d:2f:9a:
e9:8b:e4:b8:c8:24:ae:e7:10:bb:0a:c9:d3:86:f4:
c8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B5:C4:0D:5C:51:F6:BC:1C:38:B9:51:82:E7:94:08:58:A4:24:93
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/hbXEDVxR9rwcOLlRgueUCFikJJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.202.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:ab:0c:5c:a7:6c:3b:5b:73:f8:9b:99:96:0a:1f:30:15:ef:
d1:ff:c3:a9:51:30:a3:1e:37:ac:7b:cc:b2:d3:db:68:72:ae:
57:3d:da:33:92:c3:ed:da:2b:1b:65:20:69:fb:f1:12:9b:06:
6b:ec:8e:00:31:bc:f1:e8:25:5c:b5:e4:fa:89:63:1c:37:cf:
52:e1:4d:fe:9a:bd:eb:36:09:8d:42:a3:df:70:35:da:4e:59:
b7:e3:22:8b:b0:70:68:da:20:45:b7:60:cf:fe:c8:52:d9:49:
78:bd:92:b0:03:e9:1b:25:0a:a8:cf:b0:dc:62:8f:f5:9e:b3:
45:6a:8b:de:66:df:b8:14:be:99:31:f1:61:95:7e:f0:e4:c9:
7c:dd:70:7d:2d:37:ce:10:4d:a4:7a:a5:0c:32:e4:25:58:67:
f6:5b:43:87:43:fd:0f:98:4e:84:1c:90:81:c1:a4:d5:ce:34:
89:67:21:92:66:3a:88:c2:1d:fe:49:b6:28:05:40:92:c0:f7:
f7:1c:1c:b7:95:70:7f:f0:bc:56:e0:c4:fb:f1:97:56:30:90:
f5:a9:b1:ec:5a:68:bd:76:11:56:84:89:b7:2f:9f:69:7b:74:
66:df:f1:99:a6:c9:ae:e1:83:35:de:71:cd:9d:e0:45:39:02:
52:d4:cc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:08 2024 by rpki-client on console-ams.rpki-client.org