Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/HwGxGVM5HJcmmgg-T_ZftPj2BN8.roa
File: HwGxGVM5HJcmmgg-T_ZftPj2BN8.roa (raw, json)
Hash identifier: N1V630Ro/x2lUZEkjzkFJXJ3QSSOcO43bEhd4d1Dg1s=
Subject key identifier: 1F:01:B1:19:53:39:1C:97:26:9A:08:3E:4F:F6:5F:B4:F8:F6:04:DF
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 018752F842321CC0EBAE757E185568B3D890
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/HwGxGVM5HJcmmgg-T_ZftPj2BN8.roa
Signing time: Wed 05 Apr 2023 19:50:14 +0000
ROA not before: Wed 05 Apr 2023 19:50:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34465
IP address blocks: 185.188.28.0/24 maxlen: 24
2a12:8fc6:cd02::/48 maxlen: 48
2a12:8fc6:ace2::/48 maxlen: 48
2a12:8fc6:bdee::/48 maxlen: 48
2a12:8fc6:efdf::/48 maxlen: 48
2a12:8fc6:cd04::/48 maxlen: 48
2a12:8fc6:bab0::/48 maxlen: 48
2a12:8fc6:be01::/48 maxlen: 48
2a12:8fc6:ee01::/48 maxlen: 48
2a12:8fc6:ace1::/48 maxlen: 48
2a12:8fc6:cd01::/48 maxlen: 48
2a12:8fc6:cae1::/48 maxlen: 48
2a12:8fc6:ace3::/48 maxlen: 48
2a12:8fc6:dbaa::/48 maxlen: 48
2a12:8fc6:eaca::/48 maxlen: 48
2a12:8fc6::/32 maxlen: 32
2a12:8fc6:ca00::/48 maxlen: 48
2a12:8fc6:ae00::/48 maxlen: 48
2a12:8fc6:dae0::/48 maxlen: 48
2a12:8fc6:faa0::/48 maxlen: 48
2a12:8fc6:cd00::/48 maxlen: 48
2a12:8fc6:fae0::/48 maxlen: 48
2a12:8fc6:aa00::/48 maxlen: 48
2a12:8fc6:ce00::/48 maxlen: 48
2a12:8fc6:daa0::/48 maxlen: 48
2a12:8fc6:caa0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Apr 2023 20:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:f8:42:32:1c:c0:eb:ae:75:7e:18:55:68:b3:d8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Apr 5 19:50:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f01b11953391c97269a083e4ff65fb4f8f604df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:41:e1:38:13:7a:f8:85:03:e7:3d:52:36:e1:
20:60:3e:a7:8a:be:8a:8a:10:57:50:fe:3d:6e:13:
ea:dc:f9:cd:6b:df:41:c1:07:db:7a:8f:9a:dc:6b:
31:56:9d:d0:ea:f1:cd:c9:b1:ce:b6:08:93:26:aa:
51:dc:8a:42:82:e6:6d:77:cb:ab:17:54:b2:dc:dd:
08:6c:1e:c6:90:74:12:59:6f:a4:5a:1f:b8:ba:76:
3c:21:e4:c8:42:d5:15:e4:d2:12:ab:d6:23:81:0a:
d4:4f:b4:35:a5:77:0f:4b:67:aa:d7:b2:31:fc:b7:
d3:50:5a:0d:9d:0e:b6:d8:80:93:fb:fc:45:11:50:
35:43:94:a2:ce:b5:61:09:33:d2:44:f3:67:71:8c:
1d:ea:ae:c5:9b:f9:7c:a1:4f:98:f2:03:c4:55:0c:
cf:14:31:9d:5c:6b:73:5f:17:40:b9:f9:78:f7:f9:
b6:27:40:f3:65:06:66:a9:5a:81:fa:d0:71:32:53:
7f:d1:fd:27:28:07:ce:51:0b:d6:af:7c:eb:5a:dd:
cb:e3:a0:d2:f9:d1:de:5a:2e:d5:fb:96:88:c8:c3:
9b:06:5c:6d:5e:b4:55:4c:f5:64:a5:25:fd:07:31:
22:04:21:da:75:4b:73:87:48:c3:4d:fe:2a:b1:52:
67:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:01:B1:19:53:39:1C:97:26:9A:08:3E:4F:F6:5F:B4:F8:F6:04:DF
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/HwGxGVM5HJcmmgg-T_ZftPj2BN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.28.0/24
IPv6:
2a12:8fc6::/32
Signature Algorithm: sha256WithRSAEncryption
1f:c0:f2:8b:08:65:12:1c:77:9d:1c:e6:7b:f4:22:24:74:28:
18:3a:67:14:e3:25:31:e5:45:e8:96:98:6e:99:1d:b7:5b:e7:
bd:16:48:c6:2a:1a:a6:a3:e5:02:fb:ce:f1:4c:e9:21:b2:1f:
6a:f9:73:01:87:d4:c6:a4:b4:fb:82:88:ee:27:f8:03:e8:58:
9f:3d:08:a5:5c:b8:70:a0:02:84:bf:83:69:fb:66:8d:8f:b9:
75:0b:38:52:06:51:29:e8:f3:2d:c5:4b:31:18:07:f1:aa:10:
77:aa:6f:af:df:09:02:dc:18:0b:7e:a2:d0:71:8a:b3:52:74:
10:8f:0c:a7:9b:82:15:03:ab:4a:09:9d:75:7b:b6:b8:d3:06:
d9:c2:b7:a5:cf:33:71:24:74:9f:86:29:f6:44:34:3f:0a:4d:
33:77:64:5b:3e:76:44:e3:3d:43:ea:65:42:b2:da:c9:94:55:
ae:2f:62:b7:c7:35:3a:f1:7b:28:0d:9f:65:63:3b:80:b6:58:
43:d9:eb:36:9a:7c:48:d1:60:94:d4:5f:90:71:6e:ae:24:7b:
9b:51:87:2c:2e:ad:d4:a8:e3:14:3d:a0:c0:7b:53:88:5a:ef:
77:08:5b:95:8d:21:4a:ef:49:dc:26:a2:09:6e:d6:ec:f3:b5:
e5:05:cc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:04 2024 by rpki-client on console-ams.rpki-client.org