Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/hczoDrQ4qnkCsQdf2qRMW4WXLgM.roa
File: hczoDrQ4qnkCsQdf2qRMW4WXLgM.roa (raw, json)
Hash identifier: UaLdGTR8Zjjzn39QgeEw6orsn3/F71+QzSx8/tc5UVw=
Subject key identifier: 85:CC:E8:0E:B4:38:AA:79:02:B1:07:5F:DA:A4:4C:5B:85:97:2E:03
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0186114C8291C94F63C0107CF3EFB095D30D
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/hczoDrQ4qnkCsQdf2qRMW4WXLgM.roa
Signing time: Thu 02 Feb 2023 08:44:32 +0000
ROA not before: Thu 02 Feb 2023 08:44:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207724
IP address blocks: 185.239.0.0/24 maxlen: 24
185.239.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Feb 2023 14:18:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:4c:82:91:c9:4f:63:c0:10:7c:f3:ef:b0:95:d3:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Feb 2 08:44:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85cce80eb438aa7902b1075fdaa44c5b85972e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:83:c3:88:38:21:ea:32:67:a8:6f:71:df:39:
33:1b:0c:a6:ad:39:8e:84:3a:7d:21:bc:a4:f2:fc:
1f:25:5a:64:48:8b:46:60:1b:80:47:b7:75:52:8f:
13:b7:17:bf:cb:08:c6:d0:e0:3f:e4:68:5c:8e:b1:
11:0e:ef:5e:2f:ed:ba:65:cf:92:1f:19:07:cc:f2:
e9:bf:b2:ba:fd:5d:a4:52:66:7e:8d:07:b0:48:4d:
b2:bb:7a:7e:5a:27:58:68:74:f6:7d:65:11:c4:9c:
dd:16:11:9e:58:be:25:a0:0c:5e:e3:e0:79:07:e2:
72:8d:88:df:c1:ca:42:7d:f8:2e:8a:f6:68:c0:90:
a4:7a:ba:da:4d:fc:c7:70:39:2c:69:2f:66:19:3a:
9b:dd:5f:94:f0:74:c0:46:70:e2:e3:f5:7c:2c:42:
56:54:de:4b:34:e5:b0:2e:9b:16:83:11:48:be:5a:
4a:e3:b4:ea:2f:d2:a6:96:8e:e0:e4:20:34:6f:4b:
d3:41:6e:ee:48:c3:12:56:dc:cf:e6:7f:ac:ae:39:
cb:3d:3d:07:91:5a:dc:36:59:6c:28:e9:2b:8d:86:
d7:20:cd:e8:fc:97:54:0c:57:e4:75:35:d1:6e:4f:
ae:9e:28:a1:2d:48:71:dc:66:0e:63:9b:cc:22:f0:
5c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CC:E8:0E:B4:38:AA:79:02:B1:07:5F:DA:A4:4C:5B:85:97:2E:03
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/hczoDrQ4qnkCsQdf2qRMW4WXLgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.0.0/24
185.239.3.0/24
Signature Algorithm: sha256WithRSAEncryption
71:68:f6:e1:be:d5:22:13:1e:74:d0:e7:13:1e:cc:ff:67:14:
ac:5b:ec:16:3a:ef:18:32:20:a9:c9:4d:00:4e:b2:22:09:60:
16:70:19:c9:85:88:37:6c:ff:6f:96:16:e3:8f:4a:f2:dd:78:
e5:1e:93:65:81:6c:f8:60:76:92:de:4e:7c:a0:f8:fb:26:ec:
6f:84:40:84:50:85:20:7b:a0:10:db:37:80:19:7a:77:a9:e7:
3a:aa:69:2e:b8:0c:1d:f8:17:0d:01:07:91:c1:2b:46:0e:f5:
9a:3e:c4:5f:1e:0e:19:74:d3:c1:6b:bc:af:06:2d:d6:a5:23:
05:a7:cb:c1:07:d3:e2:c2:c1:d1:4f:40:4c:8a:0b:d4:cb:31:
b3:94:95:17:00:8a:2b:f7:9e:97:13:a7:04:84:73:17:b5:5b:
0f:0b:e4:c3:a7:b9:67:ef:63:04:44:10:4b:fa:43:42:bf:29:
59:9a:26:94:00:ef:b1:bf:e0:7e:9e:33:80:d1:67:25:5a:2a:
a6:c7:04:42:6c:a0:5e:1e:35:75:6d:7e:5b:b9:cc:de:70:33:
8e:95:de:93:5d:24:85:06:9b:8d:6c:8c:36:e0:1b:94:23:70:
db:cc:b2:ab:b0:c9:96:96:4c:cc:91:6e:05:06:7e:c4:b0:e9:
88:43:63:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org