Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/hBoi342W1oTZH0R9jksgLWzdYNA.roa
File: hBoi342W1oTZH0R9jksgLWzdYNA.roa (raw, json)
Hash identifier: dITNBY5vHurt+9qZvBiSKBHCrXucIquDrZ1tsbhgpZE=
Subject key identifier: 84:1A:22:DF:8D:96:D6:84:D9:1F:44:7D:8E:4B:20:2D:6C:DD:60:D0
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 0186302F2812C445EC883F7DAED37470E775
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/hBoi342W1oTZH0R9jksgLWzdYNA.roa
Signing time: Wed 08 Feb 2023 08:40:42 +0000
ROA not before: Wed 08 Feb 2023 08:40:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8311
IP address blocks: 185.251.80.0/22 maxlen: 24
194.4.52.0/22 maxlen: 24
93.177.112.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Feb 2023 09:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:2f:28:12:c4:45:ec:88:3f:7d:ae:d3:74:70:e7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Feb 8 08:40:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=841a22df8d96d684d91f447d8e4b202d6cdd60d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5a:ad:5b:65:9e:7c:de:0a:42:80:b5:48:76:
57:5e:17:33:35:e8:5d:f5:5f:97:41:ed:1c:e0:aa:
37:8f:50:f8:fe:ca:29:eb:a2:89:fd:cc:92:7f:a7:
f1:44:09:7c:ca:d6:a6:e7:0f:75:7d:b0:13:bc:91:
7a:2e:3b:71:29:0f:0a:4c:57:e8:73:c7:65:0f:37:
37:88:03:78:ad:98:1f:37:11:c1:d5:6f:a7:07:42:
ed:61:ef:85:f4:8f:0a:ee:25:f6:c3:61:ef:1c:de:
9f:b7:f3:98:38:8d:db:3a:4a:db:62:57:45:9e:e9:
23:36:2d:8d:58:8d:7a:35:a3:36:02:62:e5:1d:a9:
48:1f:99:f0:d4:44:9d:8d:26:8e:df:7e:19:84:9d:
9e:f1:0f:36:70:95:d8:0e:3e:30:26:f9:37:8a:27:
35:68:3c:fa:ee:45:80:c7:42:b9:a1:50:71:8a:cf:
2e:ac:da:dd:10:8c:e5:b9:c7:51:f7:56:05:b7:ef:
d6:c5:3d:97:37:3b:4f:30:bc:87:c8:fa:6c:d2:77:
10:37:61:1c:b8:bb:c5:e0:15:99:d7:44:a5:ff:73:
97:a4:fe:c7:c2:0f:1a:00:b2:e4:c4:39:96:05:61:
8c:72:55:19:22:91:2e:21:72:9f:4f:9e:85:78:c8:
42:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1A:22:DF:8D:96:D6:84:D9:1F:44:7D:8E:4B:20:2D:6C:DD:60:D0
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/hBoi342W1oTZH0R9jksgLWzdYNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.112.0/22
185.251.80.0/22
194.4.52.0/22
Signature Algorithm: sha256WithRSAEncryption
75:ce:73:d6:c9:53:4e:90:71:9b:bf:e3:2d:c4:1c:b5:87:4e:
51:8a:ef:78:99:b6:f4:e0:b3:a8:32:dc:0c:79:16:8b:dc:1c:
ff:9b:92:07:17:f4:2d:3c:5a:cf:bf:58:5d:d5:6f:de:d9:b3:
d9:dc:2f:1a:05:aa:6a:39:4b:5f:2a:fa:ad:52:37:f5:51:f4:
11:0d:79:3d:9d:42:77:62:5b:69:a4:05:0f:e2:37:9a:c6:1b:
51:8e:8b:f6:00:ec:22:fe:f5:6c:8b:b2:86:be:35:5b:e8:e9:
ae:ea:20:e2:0c:3d:70:f4:96:4b:aa:6b:15:ac:86:e2:3c:6e:
ef:b1:be:50:37:74:d0:59:0e:df:30:3e:4e:c5:f3:1b:95:07:
65:88:4d:83:c5:2d:6d:1f:e3:63:c0:50:ba:d8:d5:f2:c6:ef:
73:e9:86:bb:0a:3d:d2:83:25:f7:03:64:97:5e:e6:a2:cb:2a:
b5:77:83:1b:94:73:9f:6a:48:4c:ff:c2:3c:fc:65:c8:89:e4:
0d:f8:99:35:2e:b7:a4:4b:a0:c5:0b:24:3e:ce:e1:20:37:08:
11:c4:c8:25:a9:27:10:08:ab:b0:12:e3:60:d4:c2:e1:c3:aa:
00:b7:6b:29:11:34:d8:73:ef:d5:bf:59:09:61:f1:e2:9e:27:
3a:41:7e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:02 2024 by rpki-client on console-ams.rpki-client.org