Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/HQhsgYDw2FXceBXgzUGvsqyueN8.roa
File: HQhsgYDw2FXceBXgzUGvsqyueN8.roa (raw, json)
Hash identifier: 70UIEPIyGSf6x8EtTFiN/XcfGKc0yfzoDlqT1jZOa5E=
Subject key identifier: 1D:08:6C:81:80:F0:D8:55:DC:78:15:E0:CD:41:AF:B2:AC:AE:78:DF
Certificate issuer: /CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Certificate serial: 01856CC173DB7ACDA239E6077EAF06C9CBC9
Authority key identifier: F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/HQhsgYDw2FXceBXgzUGvsqyueN8.roa
Signing time: Sun 01 Jan 2023 09:54:55 +0000
ROA not before: Sun 01 Jan 2023 09:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212520
IP address blocks: 185.177.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:73:db:7a:cd:a2:39:e6:07:7e:af:06:c9:cb:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8a966664ec96edbd12e8e82e940bfb9faec105e
Validity
Not Before: Jan 1 09:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d086c8180f0d855dc7815e0cd41afb2acae78df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a4:ae:c1:dd:cd:bb:f1:35:0e:e6:02:b2:9f:
a7:d7:b2:46:5a:e2:79:9e:ab:cd:e9:62:16:8e:8b:
75:54:68:ec:21:5e:69:b7:95:9a:b9:f7:e9:08:a6:
8d:15:1e:cb:b7:00:8f:9d:b3:4e:1b:24:29:41:d5:
8a:da:cd:2b:bd:82:2c:84:87:28:8e:cc:91:be:3f:
58:b6:37:c1:28:18:a3:9b:8c:2e:9a:a2:a2:f6:47:
6a:95:14:5c:c7:25:20:d0:ae:54:68:2d:b9:76:88:
79:5d:2c:03:1a:05:1b:29:ea:9a:82:77:57:a4:7e:
15:72:77:4e:4b:4e:ee:10:11:d6:28:7d:88:c6:49:
86:a6:68:c5:d0:94:4a:c9:5b:ba:77:c1:3f:f2:4b:
dd:b0:d6:37:84:07:c0:28:77:8e:34:66:ff:82:7b:
7e:85:c2:7d:bc:3e:fa:bf:9c:05:4f:fd:51:a8:1f:
d4:5a:37:cd:0a:82:6f:5f:5a:2e:da:41:98:4a:b4:
0c:88:17:4e:2a:f9:dc:fa:12:40:70:d4:10:3c:5c:
23:f3:4b:17:fe:2b:d7:7f:d4:d6:27:7d:ce:1e:34:
f8:50:cd:c4:e5:8d:2f:a7:9c:c1:96:cc:68:41:ff:
c3:86:9e:44:e5:3c:e1:62:ca:df:97:bd:f2:f7:93:
3b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:08:6C:81:80:F0:D8:55:DC:78:15:E0:CD:41:AF:B2:AC:AE:78:DF
X509v3 Authority Key Identifier:
keyid:F8:A9:66:66:4E:C9:6E:DB:D1:2E:8E:82:E9:40:BF:B9:FA:EC:10:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/HQhsgYDw2FXceBXgzUGvsqyueN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/64ab99-49aa-4aae-8dd5-382355fc2ff1/1/1-KlmZk7JbtvRLo6C6UC_ufrsEF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.206.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c3:a9:e1:5e:ff:7d:cd:16:af:cf:8d:f8:54:9e:98:c4:b5:
b4:a0:ab:11:e8:8b:cd:b4:95:d5:5a:04:43:49:33:ec:77:7d:
ce:27:72:8e:93:24:01:56:ec:2a:96:2c:f0:37:07:5e:2b:74:
c2:4d:9c:ff:40:09:22:58:7b:7e:b2:a2:0a:1e:5d:9e:42:8c:
6d:69:f1:3e:84:30:75:6d:5b:a9:57:78:91:5e:fa:b9:57:b2:
91:a9:2f:22:bf:3f:60:5a:ac:0d:0a:15:07:3e:c7:77:30:a4:
ed:dc:c6:fe:6e:a7:8b:6e:0a:02:90:2f:05:70:a9:d0:06:e5:
03:aa:63:91:fa:be:81:0a:fc:4b:61:b1:0d:ed:1d:fd:ea:2a:
5e:72:2d:5f:63:22:0f:6c:62:bb:00:b8:e6:91:00:ef:da:c2:
ee:8c:17:ea:66:46:24:b2:9a:64:23:8c:91:c9:d1:63:0e:73:
67:b9:3e:4f:90:bf:3c:c5:12:ac:52:57:5f:1f:bb:c8:e3:f5:
0a:f7:f7:35:f6:ff:3e:7c:2a:5b:7f:82:64:13:c7:19:b1:4d:
21:0a:18:7f:73:0d:fe:46:35:e8:e4:fd:a1:64:ea:94:2f:55:
a8:b3:89:0a:62:a5:91:a9:c7:68:a9:9f:2a:99:7c:cf:85:ca:
48:3a:4b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:53 2024 by rpki-client on console-ams.rpki-client.org