Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/HFDS_zOFP3-wAovZtpE0OtIcxgY.roa
File: HFDS_zOFP3-wAovZtpE0OtIcxgY.roa (raw, json)
Hash identifier: mEdoCArYrRzILOriRyneB3S5K4zs1oHwg2Otqyq5R0o=
Subject key identifier: 1C:50:D2:FF:33:85:3F:7F:B0:02:8B:D9:B6:91:34:3A:D2:1C:C6:06
Certificate issuer: /CN=76fe3055e87290000e3287f7ab5883802a5aa6da
Certificate serial: 0186FE13AB80FBF2ACB0005C37C89E653E40
Authority key identifier: 76:FE:30:55:E8:72:90:00:0E:32:87:F7:AB:58:83:80:2A:5A:A6:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dv4wVehykAAOMof3q1iDgCpapto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/HFDS_zOFP3-wAovZtpE0OtIcxgY.roa
Signing time: Mon 20 Mar 2023 08:12:27 +0000
ROA not before: Mon 20 Mar 2023 08:12:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206651
IP address blocks: 185.179.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:13:ab:80:fb:f2:ac:b0:00:5c:37:c8:9e:65:3e:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76fe3055e87290000e3287f7ab5883802a5aa6da
Validity
Not Before: Mar 20 08:12:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c50d2ff33853f7fb0028bd9b691343ad21cc606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ff:e6:d0:5a:a6:29:f5:1a:4a:4c:90:39:16:
fa:4e:c2:70:1e:c2:ff:48:bd:71:9a:d8:37:61:58:
78:71:5c:d6:86:5b:c0:76:f8:68:e7:9a:8d:48:da:
e1:83:e2:c1:25:e9:20:87:18:54:38:05:bd:88:73:
be:04:81:1a:62:d9:9c:43:52:f2:da:c8:38:84:14:
d5:4e:01:f9:b3:98:ec:9f:a3:9e:1e:11:36:02:1f:
cf:bc:ad:e7:96:b4:eb:40:4b:65:64:0a:d2:ba:36:
bf:1a:20:ac:7e:3e:82:b7:39:e5:aa:be:aa:94:5f:
dc:1a:db:ce:2e:5b:6d:7c:f5:59:62:a0:1c:1c:40:
3e:4d:c0:5a:dd:39:3d:3e:1b:aa:6b:59:7c:76:9b:
be:6d:2e:08:69:ac:f0:d1:fa:35:82:ab:25:ca:54:
c7:af:85:dd:8d:7e:8f:76:59:8e:c9:a1:63:ea:c7:
9d:61:19:86:ea:86:9b:f4:7e:c2:8c:96:3d:d6:72:
1d:c5:58:da:47:18:fa:02:78:81:7e:3a:54:13:03:
b4:f7:a0:79:05:b1:6c:1c:10:4e:a5:bc:93:0a:11:
96:fd:5f:9c:51:ec:85:0e:bd:cc:b8:a2:35:f8:a1:
08:8f:63:70:15:ba:0e:ff:be:ac:6c:bf:a8:b9:8a:
43:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:50:D2:FF:33:85:3F:7F:B0:02:8B:D9:B6:91:34:3A:D2:1C:C6:06
X509v3 Authority Key Identifier:
keyid:76:FE:30:55:E8:72:90:00:0E:32:87:F7:AB:58:83:80:2A:5A:A6:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dv4wVehykAAOMof3q1iDgCpapto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/HFDS_zOFP3-wAovZtpE0OtIcxgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bce141-e9c2-4a5d-8e16-84b5176a2a4c/1/dv4wVehykAAOMof3q1iDgCpapto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.132.0/22
Signature Algorithm: sha256WithRSAEncryption
70:c2:72:93:0e:86:01:7f:a7:f5:48:5a:5b:46:0c:44:ed:ba:
ab:f6:51:62:a5:b9:a4:59:fa:b9:84:a4:db:d7:31:d2:61:68:
0d:fb:4f:d9:bb:74:db:ad:39:05:b0:40:53:86:a2:04:8e:59:
25:37:42:79:11:6c:1f:8d:6d:f9:27:f5:c3:8f:e7:14:e5:bc:
bc:bf:38:93:fb:09:b7:e8:e4:22:bd:71:ed:e2:84:14:c8:f8:
9a:6b:f3:97:e7:e0:d3:18:b8:30:7d:73:da:db:b6:99:9f:b4:
d4:9b:db:e9:d9:1a:23:e2:38:5f:35:5b:06:21:1b:c3:fc:43:
1b:cf:08:73:66:58:bf:d1:44:e1:b1:d3:d5:3d:f7:5d:05:28:
52:0b:35:ba:36:68:16:7e:19:6b:b7:5e:88:57:5a:10:c9:32:
dc:08:81:d8:23:e9:68:b7:f1:55:c0:1c:08:47:16:e3:53:da:
79:ae:e9:b5:7d:10:ea:78:ec:82:02:09:3c:06:c6:59:11:76:
c0:eb:21:e2:c3:36:06:99:94:0c:ae:10:fd:a9:f8:f1:c2:01:
e8:38:c8:d6:a8:2f:17:f8:e7:27:10:d4:61:e0:29:58:26:a1:
9c:f4:1b:04:95:e2:b6:cc:2a:8c:ae:80:b2:ef:4c:ab:a5:72:
05:ca:cb:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:41 2024 by rpki-client on console-fra.rpki-client.org