Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/hP4F1evOScPl4VMLhFkQnz2RM5E.roa
File: hP4F1evOScPl4VMLhFkQnz2RM5E.roa (raw, json)
Hash identifier: BFoNffmv/NHYQvcvxFwUwOHSMjI+yGLY6R5EyvUs3Ms=
Subject key identifier: 84:FE:05:D5:EB:CE:49:C3:E5:E1:53:0B:84:59:10:9F:3D:91:33:91
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 018CC64B33F5162DBCD696155706DC82F501
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/hP4F1evOScPl4VMLhFkQnz2RM5E.roa
Signing time: Mon 01 Jan 2024 18:31:06 +0000
ROA not before: Mon 01 Jan 2024 18:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200845
IP address blocks: 185.185.92.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 May 2024 09:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:33:f5:16:2d:bc:d6:96:15:57:06:dc:82:f5:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 18:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84fe05d5ebce49c3e5e1530b8459109f3d913391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6e:3b:b1:5c:73:7c:e5:b8:86:d9:1b:b1:aa:
78:d2:6d:5b:3a:a8:51:3c:7e:fa:fb:9c:82:c6:0e:
90:89:4d:1a:87:08:c9:53:21:3e:5b:40:7a:23:79:
f6:fd:bc:b3:ec:fd:fc:ff:de:3a:b0:3f:37:40:32:
3a:c3:d3:cc:6c:39:62:83:ff:ec:4c:1d:64:0f:bf:
51:14:98:68:60:d8:39:6c:c5:b0:2a:50:1b:a0:21:
af:f7:32:02:9d:80:43:75:dd:0e:d8:b5:86:da:7f:
b4:b3:ed:50:7d:5f:06:97:1c:61:8f:c8:f9:28:b1:
b3:f5:ff:5c:ed:67:e8:76:1f:bf:05:1e:2b:4d:53:
19:88:d4:63:80:41:61:c9:49:7f:d6:1a:5d:8b:cb:
15:78:bc:a8:16:01:24:79:6e:d1:ef:55:02:bc:36:
57:86:f8:f1:93:c2:07:e0:91:3c:fe:90:df:01:08:
b9:7d:ac:14:d2:1d:74:bc:1c:1f:02:fb:1b:84:da:
18:cf:e7:1c:0a:da:73:04:a7:fc:e3:81:01:9e:7b:
4a:4a:4e:c7:c7:e1:02:5e:ae:2e:3e:9e:9a:e6:06:
e2:3a:e6:ff:9c:ab:42:1d:a3:13:c3:d9:3f:e0:b3:
5f:6a:26:28:f2:95:d7:06:37:ba:94:6b:29:22:45:
55:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FE:05:D5:EB:CE:49:C3:E5:E1:53:0B:84:59:10:9F:3D:91:33:91
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/hP4F1evOScPl4VMLhFkQnz2RM5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/22
Signature Algorithm: sha256WithRSAEncryption
41:5b:28:69:03:3c:02:17:98:35:94:ea:dc:79:2d:42:dd:1d:
9c:40:05:87:00:06:45:1f:cc:fa:d8:af:0f:5a:a1:b1:13:39:
30:1c:90:a9:e8:c3:4b:fd:0e:44:b6:5b:0e:c0:dd:d2:4d:fc:
35:0a:15:dd:72:c3:9f:69:5c:23:8b:d4:42:71:d1:6e:90:ab:
fd:45:a9:e3:5d:30:cd:c6:67:10:88:9b:ef:4d:9a:73:1e:b0:
3d:7c:c2:0d:38:af:96:0e:e3:11:6c:9e:e7:b1:17:0c:7a:1e:
4d:9a:ed:66:e1:bf:5e:f4:e1:66:f7:08:bf:17:64:fe:a2:ee:
1a:13:54:ef:7c:5e:cf:2a:ea:4b:3a:e2:79:6b:9c:1a:1f:49:
88:41:da:02:51:b3:4c:b0:4d:68:c8:b8:29:10:ea:72:b3:24:
c0:cd:8d:94:77:96:f2:2e:f1:aa:4b:60:b6:0d:bf:76:6f:9d:
b9:c7:f0:e8:58:ee:3f:d4:7e:76:90:ed:a4:32:02:7e:a0:60:
7e:bc:cc:11:24:0a:cb:b4:56:a2:97:e4:52:c6:3a:9a:7a:49:
25:64:21:15:3f:7e:26:74:94:1a:3c:6f:e1:14:65:5f:c2:24:
8f:40:b2:17:d4:47:50:be:89:ed:04:a4:9b:74:77:9a:20:d7:
2e:96:cb:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 12:51:26 2024 by rpki-client on console-ams.rpki-client.org