Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/HXYJd6-vpXC_1MN3WyvZ0I4XkHw.roa
File: HXYJd6-vpXC_1MN3WyvZ0I4XkHw.roa (raw, json)
Hash identifier: x/S9S/XYIrV99MYGfcOGyku5Z3apKJdfc5SvSFWm7oM=
Subject key identifier: 1D:76:09:77:AF:AF:A5:70:BF:D4:C3:77:5B:2B:D9:D0:8E:17:90:7C
Certificate issuer: /CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Certificate serial: 018601EDD1B94C84EFB64140A1957345A24D
Authority key identifier: 37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/HXYJd6-vpXC_1MN3WyvZ0I4XkHw.roa
Signing time: Mon 30 Jan 2023 09:06:48 +0000
ROA not before: Mon 30 Jan 2023 09:06:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197033
IP address blocks: 185.232.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:01:ed:d1:b9:4c:84:ef:b6:41:40:a1:95:73:45:a2:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37949ac84d0b86910f4fd3cf5962927d83450aeb
Validity
Not Before: Jan 30 09:06:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d760977afafa570bfd4c3775b2bd9d08e17907c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b3:78:1a:ca:1d:5a:3b:32:18:33:26:c6:c7:
31:55:c1:66:ab:aa:0a:20:ae:d2:ea:7f:19:26:97:
33:c6:34:ed:2c:fc:56:49:97:00:cd:52:cb:0e:62:
9f:d5:51:be:f3:bf:01:19:f8:f8:ae:b5:07:8c:15:
2b:23:0b:12:df:7d:5f:b6:11:8a:33:d8:c8:89:f2:
9b:64:72:92:6e:ba:bf:cb:34:89:4c:b6:e7:22:c8:
fa:2d:63:6a:40:f5:fd:fd:8d:ed:08:31:66:ea:41:
d6:0c:94:84:02:c3:85:f5:f5:32:7f:d8:c3:ad:7c:
d0:3f:c3:f8:ee:e2:92:3e:37:99:1c:fe:fb:f1:7e:
c4:0d:50:a4:bc:1b:84:e0:07:7d:7d:28:e1:92:36:
bc:d2:1c:81:80:6a:81:31:e0:93:fd:ac:36:fa:bb:
3b:f4:eb:7d:eb:04:85:73:59:bf:3f:75:31:af:46:
05:69:2d:cd:64:10:35:73:d1:b8:d3:c0:d5:ab:dc:
8f:6f:75:3b:70:af:60:35:c0:51:b7:2a:0b:f6:55:
92:8e:c6:36:80:ed:d9:6e:f0:b3:e7:28:53:52:2e:
f7:b3:76:e1:f5:25:87:62:77:37:fb:fd:8c:f7:5c:
ff:11:f3:68:83:ea:5c:db:d5:1e:66:34:a4:a6:b5:
cc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:76:09:77:AF:AF:A5:70:BF:D4:C3:77:5B:2B:D9:D0:8E:17:90:7C
X509v3 Authority Key Identifier:
keyid:37:94:9A:C8:4D:0B:86:91:0F:4F:D3:CF:59:62:92:7D:83:45:0A:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5SayE0LhpEPT9PPWWKSfYNFCus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/HXYJd6-vpXC_1MN3WyvZ0I4XkHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/c28ea4-059c-49dd-9278-a4db396c8987/1/N5SayE0LhpEPT9PPWWKSfYNFCus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.192.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b8:ec:d2:e6:a9:0e:46:cc:e1:0f:c0:19:d2:23:ca:25:82:
2e:d2:ed:d7:9e:20:1b:36:6a:a7:be:dd:35:0b:2d:2a:78:a8:
3d:bc:cc:d6:37:53:c2:46:3a:99:58:3a:4f:80:aa:09:b6:c1:
6e:e4:0a:5b:d1:9d:80:66:3b:08:56:56:35:fd:1a:2b:eb:f3:
32:e0:5a:c3:b8:0e:24:fe:59:6b:34:d2:d9:0d:94:2f:e2:49:
d2:7b:4a:5c:32:23:62:57:ba:c8:f7:6f:33:80:2f:d8:0d:f6:
36:98:b8:af:37:2b:3c:59:8c:20:db:0f:74:1f:56:5a:da:11:
b5:9c:aa:9c:78:72:be:8f:a9:7b:50:67:23:a9:d0:0e:2f:29:
22:57:53:01:b1:95:4e:af:bd:12:3f:aa:90:ad:8b:3a:77:6b:
61:82:55:fb:4b:ea:53:c5:48:0c:f8:eb:7e:40:19:f0:f5:5b:
2d:0e:63:80:87:f6:d6:fb:7e:01:9a:df:a9:db:9c:29:30:d0:
0b:ca:22:52:ce:45:e5:2a:22:e2:67:9f:fd:30:1d:00:ad:8c:
68:52:3d:6c:57:f2:54:06:32:53:16:4e:23:9c:e2:a6:ac:1e:
10:53:89:f0:19:2a:53:ad:8b:82:f6:fe:15:c0:85:b7:2d:1b:
b4:4c:ff:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:51 2024 by rpki-client on console-fra.rpki-client.org