Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c067fe-5660-4a97-8d3f-352004bc2282/1/H970u4xb6XI9IVQg4reiNlotQaU.roa
File: H970u4xb6XI9IVQg4reiNlotQaU.roa (raw, json)
Hash identifier: nDwmP3JHkiLOAcALrMtN+6IssZ2JOKqrAqKZeUbF6mM=
Subject key identifier: 1F:DE:F4:BB:8C:5B:E9:72:3D:21:54:20:E2:B7:A2:36:5A:2D:41:A5
Certificate issuer: /CN=5e3bb13ae17c9e554e9ceafcfeb48b41417da7ea
Certificate serial: 0185720357149C05DE941767C0ABB2F1C3C9
Authority key identifier: 5E:3B:B1:3A:E1:7C:9E:55:4E:9C:EA:FC:FE:B4:8B:41:41:7D:A7:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XjuxOuF8nlVOnOr8_rSLQUF9p-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c067fe-5660-4a97-8d3f-352004bc2282/1/H970u4xb6XI9IVQg4reiNlotQaU.roa
Signing time: Mon 02 Jan 2023 10:24:59 +0000
ROA not before: Mon 02 Jan 2023 10:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34372
IP address blocks: 185.192.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:57:14:9c:05:de:94:17:67:c0:ab:b2:f1:c3:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3bb13ae17c9e554e9ceafcfeb48b41417da7ea
Validity
Not Before: Jan 2 10:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fdef4bb8c5be9723d215420e2b7a2365a2d41a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e5:96:84:8d:ab:a9:b2:71:6b:19:b0:60:48:
91:12:00:91:2f:b7:8b:87:a9:4d:bb:04:88:08:2c:
50:a1:50:de:55:02:40:d4:2d:cd:fc:59:e4:f6:a9:
7f:ea:35:34:a0:83:36:60:71:8e:bf:f7:e9:bf:2b:
e9:e5:44:c7:5e:0f:0b:1b:95:18:22:28:45:d0:6b:
ad:d7:d4:f2:a9:65:1e:6e:44:3c:bb:00:63:ec:7c:
be:42:b7:04:e9:72:98:77:06:40:71:36:4c:2f:74:
03:cf:95:c4:68:41:01:cd:b6:76:87:69:62:aa:72:
34:f2:fc:f5:c6:02:af:99:da:00:d5:cd:7e:60:53:
66:6e:05:8d:46:57:2e:9e:8a:7c:81:64:b7:63:e4:
a8:ce:2b:93:0c:f2:b3:e9:18:87:41:3c:ce:ee:c1:
0c:30:e1:93:51:5d:65:3b:aa:01:15:d0:51:c9:7a:
c5:09:36:6e:1c:c1:a6:c7:4f:6a:2e:22:a6:50:3b:
4e:13:2d:ba:a2:f2:1f:c6:72:29:c4:1c:f4:eb:f2:
dc:a4:ec:59:08:a4:3c:34:ed:b1:60:ad:e5:ca:81:
b5:50:72:a4:19:a9:f9:e1:dd:af:24:09:ff:57:fb:
c2:8a:e1:de:78:92:1b:6f:9f:db:f6:c6:70:bd:98:
e3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DE:F4:BB:8C:5B:E9:72:3D:21:54:20:E2:B7:A2:36:5A:2D:41:A5
X509v3 Authority Key Identifier:
keyid:5E:3B:B1:3A:E1:7C:9E:55:4E:9C:EA:FC:FE:B4:8B:41:41:7D:A7:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XjuxOuF8nlVOnOr8_rSLQUF9p-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c067fe-5660-4a97-8d3f-352004bc2282/1/H970u4xb6XI9IVQg4reiNlotQaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c067fe-5660-4a97-8d3f-352004bc2282/1/XjuxOuF8nlVOnOr8_rSLQUF9p-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:1a:60:72:77:8c:5c:69:84:86:c5:69:a5:9b:bb:02:d9:72:
fb:61:78:f6:8d:6d:2f:70:9c:6b:ab:8a:05:1a:5b:be:17:df:
5d:24:e1:5e:5f:f5:d6:cf:c1:d7:02:70:4c:ab:b9:32:b8:ad:
85:c3:e5:0b:a1:a7:18:39:6b:8e:47:0a:80:3b:f1:f2:71:0e:
c2:82:e4:87:c9:04:51:7d:f4:01:18:45:5e:6e:6f:78:b4:bb:
47:80:db:73:1c:e7:2f:0e:53:b8:95:db:05:f4:7c:07:29:5c:
0e:06:97:c6:84:25:20:0b:72:02:9c:34:46:a1:0b:16:69:3d:
46:52:62:84:a5:47:ab:c2:ba:10:ac:fd:33:95:47:5d:0d:46:
e6:2e:36:74:e2:b5:18:0d:6c:3b:68:9f:7f:e5:5d:de:03:32:
f8:33:a3:3a:0e:c3:be:1e:4f:02:70:58:52:6c:67:1a:b3:67:
4a:18:21:17:15:3e:a3:6c:39:0a:44:76:ef:ee:de:48:6d:aa:
32:10:47:b0:4e:aa:a1:05:c3:7b:86:80:fa:d5:76:a5:74:08:
84:76:bf:f1:b3:05:39:86:57:2b:7e:aa:18:df:e7:26:57:cf:
a8:6b:44:2b:78:94:76:22:dc:56:6b:39:74:a9:24:ca:fb:cc:
c9:68:22:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:29 2024 by rpki-client on console-ams.rpki-client.org