Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/hNdpBdoRB8NKQHd7UDSoO2CNUr4.roa
File: hNdpBdoRB8NKQHd7UDSoO2CNUr4.roa (raw, json)
Hash identifier: IJT7aJXP2e4fw0rEsKEt5f7kG9dJZJhrG47KXY564Y8=
Subject key identifier: 84:D7:69:05:DA:11:07:C3:4A:40:77:7B:50:34:A8:3B:60:8D:52:BE
Certificate issuer: /CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Certificate serial: 018CB63A879D470970E6094CF00003CBC181
Authority key identifier: EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/hNdpBdoRB8NKQHd7UDSoO2CNUr4.roa
Signing time: Fri 29 Dec 2023 15:38:58 +0000
ROA not before: Fri 29 Dec 2023 15:38:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.192.36.0/23 maxlen: 23
185.192.36.0/22 maxlen: 22
185.192.38.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b6:3a:87:9d:47:09:70:e6:09:4c:f0:00:03:cb:c1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eba8db3b54d081c30bf51bdc7b19e4f6480b7f53
Validity
Not Before: Dec 29 15:38:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84d76905da1107c34a40777b5034a83b608d52be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c7:17:40:93:d2:68:5e:07:bf:b3:9c:f6:70:
99:68:38:7d:bb:dc:5d:33:b0:a2:e0:38:2f:f2:b5:
f8:f0:15:c3:1a:49:4b:be:0e:a3:31:4a:7e:f2:e8:
19:49:c3:cb:12:49:00:18:0e:1b:52:f4:bf:fa:a3:
1a:b2:d4:61:ea:8b:89:4b:31:9d:c4:b5:f8:b9:31:
90:59:c0:c5:b5:c5:74:22:00:64:67:94:7f:51:16:
ec:95:d5:ed:6d:c1:74:0e:67:04:28:d4:0a:d5:a9:
e6:b6:20:a3:24:3a:3b:02:d7:2f:1a:68:20:af:5d:
30:ce:dc:97:e6:53:c0:26:cf:2f:7d:35:3f:11:eb:
ab:2c:5d:9a:e0:a8:b6:2d:e8:1f:ee:70:02:ad:37:
aa:36:d9:81:ba:f6:7f:77:ce:d2:3f:74:a8:66:24:
96:e8:1d:af:78:5d:36:00:0b:a5:fb:ae:f5:a0:9c:
02:7c:c8:97:83:95:d8:e8:47:9b:d2:0a:f1:41:9b:
da:90:3d:28:ea:d0:16:b7:b9:f1:d0:31:d6:70:ca:
df:85:5b:19:18:3b:c6:78:35:71:8b:59:92:2c:ca:
00:7b:f8:5b:6d:8d:5d:e1:26:a7:7d:b5:6d:9d:69:
3c:84:ba:a3:8b:8b:9a:b2:f8:da:be:28:39:c6:6e:
e6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D7:69:05:DA:11:07:C3:4A:40:77:7B:50:34:A8:3B:60:8D:52:BE
X509v3 Authority Key Identifier:
keyid:EB:A8:DB:3B:54:D0:81:C3:0B:F5:1B:DC:7B:19:E4:F6:48:0B:7F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/66jbO1TQgcML9Rvcexnk9kgLf1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/hNdpBdoRB8NKQHd7UDSoO2CNUr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6ccf03-090d-416e-86cf-e9dc3f1cf824/1/66jbO1TQgcML9Rvcexnk9kgLf1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.36.0/22
Signature Algorithm: sha256WithRSAEncryption
cb:8c:69:3e:96:3d:28:c0:f2:83:c5:64:f4:8e:d0:a0:a3:52:
26:4e:93:42:ce:21:7a:99:37:83:6d:cc:95:3f:37:d9:fa:7b:
08:c6:24:a7:7f:a7:41:88:39:eb:2d:cc:1a:6a:c0:a5:49:46:
fb:04:2c:ec:8e:6c:7a:47:3c:08:05:76:68:6c:a0:b4:f4:27:
f6:6e:75:19:2f:a4:da:0b:d7:d2:54:be:2d:0e:99:26:c5:ca:
75:75:ba:d7:48:8c:20:f8:19:20:e6:c8:49:b7:d9:ed:22:73:
dd:d8:c7:18:63:81:f2:b9:aa:66:c0:01:57:82:b9:8e:59:8d:
67:30:22:d0:48:b9:0e:9f:c6:6a:39:cf:cb:61:84:8b:d1:10:
13:58:a2:0b:57:9f:82:ef:13:28:80:eb:50:ae:68:65:30:10:
04:94:c9:62:cf:40:22:a9:28:a5:7d:9c:88:63:c6:49:47:81:
bb:28:9a:4b:59:26:70:d8:42:5c:b9:f0:bf:b5:9d:29:a5:0a:
89:7b:82:fb:3b:84:8d:cd:db:79:32:ba:a9:dc:64:8c:bc:d8:
68:f0:5c:2c:61:c4:87:a4:0d:ba:47:09:13:3d:cd:d2:a5:a5:
af:3d:05:f3:7f:41:44:c7:d0:b0:e1:f1:84:c6:d6:9b:30:e5:
29:ae:f6:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:15 2024 by rpki-client on console-ams.rpki-client.org