Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/HFe28-gjX1lcbXocWn-ipWS1KYc.roa
File: HFe28-gjX1lcbXocWn-ipWS1KYc.roa (raw, json)
Hash identifier: aef3o46sqzoMa7i1j/UhHj3KwLYl9H41mrBMHBE+FQs=
Subject key identifier: 1C:57:B6:F3:E8:23:5F:59:5C:6D:7A:1C:5A:7F:A2:A5:64:B5:29:87
Certificate issuer: /CN=15cc880f0a12c7b94f71d9b2e5b028a70d1fa34a
Certificate serial: 01856F42B584F5DD9FD7166D4CF271BEA694
Authority key identifier: 15:CC:88:0F:0A:12:C7:B9:4F:71:D9:B2:E5:B0:28:A7:0D:1F:A3:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FcyIDwoSx7lPcdmy5bAopw0fo0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/HFe28-gjX1lcbXocWn-ipWS1KYc.roa
Signing time: Sun 01 Jan 2023 21:35:20 +0000
ROA not before: Sun 01 Jan 2023 21:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35506
IP address blocks: 84.205.192.0/24 maxlen: 24
84.205.193.0/24 maxlen: 24
84.205.194.0/24 maxlen: 24
84.205.195.0/24 maxlen: 24
84.205.196.0/24 maxlen: 24
84.205.197.0/24 maxlen: 24
84.205.198.0/24 maxlen: 24
84.205.199.0/24 maxlen: 24
84.205.200.0/24 maxlen: 24
84.205.201.0/24 maxlen: 24
84.205.202.0/24 maxlen: 24
84.205.203.0/24 maxlen: 24
84.205.204.0/24 maxlen: 24
84.205.205.0/24 maxlen: 24
84.205.206.0/24 maxlen: 24
84.205.207.0/24 maxlen: 24
84.205.212.0/24 maxlen: 24
84.205.212.0/23 maxlen: 23
84.205.213.0/24 maxlen: 24
84.205.215.0/24 maxlen: 24
84.205.216.0/24 maxlen: 24
84.205.217.0/24 maxlen: 24
84.205.218.0/24 maxlen: 24
84.205.219.0/24 maxlen: 24
84.205.214.0/24 maxlen: 24
84.205.220.0/24 maxlen: 24
84.205.221.0/24 maxlen: 24
84.205.222.0/24 maxlen: 24
84.205.223.0/24 maxlen: 24
84.205.224.0/24 maxlen: 24
84.205.225.0/24 maxlen: 24
84.205.226.0/24 maxlen: 24
84.205.227.0/24 maxlen: 24
84.205.228.0/24 maxlen: 24
84.205.229.0/24 maxlen: 24
84.205.230.0/24 maxlen: 24
84.205.231.0/24 maxlen: 24
84.205.232.0/24 maxlen: 24
84.205.233.0/24 maxlen: 24
84.205.234.0/24 maxlen: 24
84.205.235.0/24 maxlen: 24
84.205.236.0/24 maxlen: 24
84.205.237.0/24 maxlen: 24
84.205.238.0/24 maxlen: 24
84.205.239.0/24 maxlen: 24
84.205.240.0/24 maxlen: 24
84.205.243.0/24 maxlen: 24
84.205.244.0/24 maxlen: 24
84.205.245.0/24 maxlen: 24
84.205.246.0/24 maxlen: 24
84.205.241.0/24 maxlen: 24
84.205.242.0/24 maxlen: 24
84.205.247.0/24 maxlen: 24
84.205.248.0/24 maxlen: 24
84.205.249.0/24 maxlen: 24
84.205.250.0/24 maxlen: 24
84.205.251.0/24 maxlen: 24
84.205.252.0/23 maxlen: 23
84.205.254.0/24 maxlen: 24
84.205.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:b5:84:f5:dd:9f:d7:16:6d:4c:f2:71:be:a6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15cc880f0a12c7b94f71d9b2e5b028a70d1fa34a
Validity
Not Before: Jan 1 21:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c57b6f3e8235f595c6d7a1c5a7fa2a564b52987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:05:c3:10:dc:ea:ff:06:51:ce:38:aa:23:67:
c9:d7:8e:71:48:52:04:33:46:a4:f9:bb:bf:2a:0b:
ff:3f:c9:e5:e1:b1:d2:4b:64:ea:a7:64:6b:99:98:
e6:86:f2:62:38:e5:04:0c:eb:bc:ad:25:fb:5a:55:
8f:d6:88:e9:91:a5:c9:38:08:31:ae:51:43:80:0d:
d6:f4:8d:1c:c6:5a:fe:48:eb:5d:25:e4:09:50:6a:
aa:fe:a0:65:5a:48:25:00:df:c7:04:9c:df:5b:99:
76:51:72:8f:ac:fa:d7:7f:83:33:3a:0c:5b:34:69:
b1:5f:45:d8:98:de:8e:e7:d3:b5:1f:56:e8:1d:70:
4d:06:7b:9f:c4:9a:d8:c2:29:f8:8a:7e:ad:24:3b:
0e:68:eb:f7:eb:40:11:57:af:cb:02:9f:c2:a7:b1:
64:ab:3a:2d:57:cd:a2:02:7e:7c:2b:5b:7b:d0:ba:
c5:63:4d:85:b5:df:6e:64:c9:19:7a:29:fa:54:50:
39:84:54:d1:ec:3e:c9:de:15:ba:8a:c9:2d:8d:a2:
dd:7d:0c:c7:0e:91:1d:87:44:91:f0:70:4c:a2:0b:
f5:93:90:ec:e9:34:a1:0a:db:4a:0b:4f:ba:18:58:
93:4f:18:21:a4:3b:3d:42:ff:0b:e3:3d:71:2c:41:
0e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:57:B6:F3:E8:23:5F:59:5C:6D:7A:1C:5A:7F:A2:A5:64:B5:29:87
X509v3 Authority Key Identifier:
keyid:15:CC:88:0F:0A:12:C7:B9:4F:71:D9:B2:E5:B0:28:A7:0D:1F:A3:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FcyIDwoSx7lPcdmy5bAopw0fo0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/HFe28-gjX1lcbXocWn-ipWS1KYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/5986f1-863f-4eec-8551-0a8fe6434bf8/1/FcyIDwoSx7lPcdmy5bAopw0fo0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.192.0/20
84.205.212.0-84.205.255.255
Signature Algorithm: sha256WithRSAEncryption
75:7b:91:2e:9e:16:a5:59:83:1d:ab:97:e8:97:a0:0d:30:3d:
f6:5d:92:f4:c0:4e:e3:a6:d6:55:f0:2a:af:9b:ef:cc:bc:c2:
69:fb:f1:72:e1:35:01:26:bf:c0:ab:81:13:38:73:df:ec:ec:
d9:ec:7c:f8:6b:33:66:ad:28:55:50:95:4a:c6:dd:0a:e0:c5:
9b:c6:4d:93:97:c7:00:8d:bb:9a:52:93:b5:bf:d5:0a:ba:e3:
86:37:89:23:10:5c:39:ea:ef:4a:a9:00:e8:33:7e:3b:a1:0f:
0b:e2:0a:d5:b0:24:66:1c:00:4a:d6:c9:9f:fe:2c:2c:92:60:
92:99:d9:48:57:17:4f:2d:3e:dd:f1:69:5a:b2:64:eb:95:11:
fd:3a:8c:9b:72:08:2b:42:25:e1:9c:40:86:32:d8:3b:79:db:
50:1b:18:20:7c:95:28:2a:54:b3:dd:20:b3:61:74:b3:4e:67:
be:ac:c2:b1:3c:2b:3b:85:87:fa:4a:65:76:a0:f5:88:e2:ab:
cd:11:b7:a8:b8:b3:c7:c7:56:23:ec:85:37:8a:b4:3d:1a:5a:
28:c7:48:91:27:48:20:5c:a0:a4:e7:0d:e0:e0:5f:9b:f4:e9:
ca:f8:fb:b6:7f:00:dd:af:50:5f:5b:94:5f:2a:a1:4b:a7:06:
71:03:5a:0c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:04 2024 by rpki-client on console-ams.rpki-client.org