Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/H3imK0n1WBH4dtQ7ifVO4iWwsQU.roa
File: H3imK0n1WBH4dtQ7ifVO4iWwsQU.roa (raw, json)
Hash identifier: 5e2uiXOTubeVTvra3r7ocNV0OUD+dAWx+sN/dbO2kvU=
Subject key identifier: 1F:78:A6:2B:49:F5:58:11:F8:76:D4:3B:89:F5:4E:E2:25:B0:B1:05
Certificate issuer: /CN=6583d322ef24c87198b765ea1d1c42c283a7f8f6
Certificate serial: 01856FD508BB0C092485BEE985B875D727B1
Authority key identifier: 65:83:D3:22:EF:24:C8:71:98:B7:65:EA:1D:1C:42:C2:83:A7:F8:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/H3imK0n1WBH4dtQ7ifVO4iWwsQU.roa
Signing time: Mon 02 Jan 2023 00:15:10 +0000
ROA not before: Mon 02 Jan 2023 00:15:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209209
IP address blocks: 185.232.44.0/24 maxlen: 24
2a11:fe80::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:08:bb:0c:09:24:85:be:e9:85:b8:75:d7:27:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6583d322ef24c87198b765ea1d1c42c283a7f8f6
Validity
Not Before: Jan 2 00:15:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f78a62b49f55811f876d43b89f54ee225b0b105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:99:a6:b6:1f:e7:f8:3c:91:89:5b:32:46:f6:
14:9e:35:61:db:f4:8e:f3:99:e3:57:62:48:89:89:
c0:e0:79:70:81:f5:73:9d:73:82:a4:69:ae:22:81:
08:cb:1b:78:98:71:e4:d4:bf:f9:68:3e:26:1d:4f:
a9:99:3d:33:1e:ad:db:f0:38:18:96:ea:1e:cb:20:
f8:88:d0:bf:ef:11:84:c0:7e:18:d0:af:9f:e4:bb:
9e:18:03:78:2f:6c:80:43:eb:e9:16:31:53:95:02:
f9:b1:7d:50:4a:fb:d1:22:3f:db:76:5c:23:14:30:
87:70:ca:02:ff:90:b5:0e:85:6b:74:78:1d:22:08:
3a:1d:3f:5a:59:a3:07:97:5e:59:a2:71:5f:0b:b3:
b4:47:9f:02:40:d4:39:cf:d2:8b:e1:a1:f3:cc:88:
ec:02:22:36:86:21:73:ad:c0:27:3d:9d:2d:5e:89:
11:64:b4:5d:a7:16:44:c5:73:8a:65:f4:26:cf:7c:
ff:2c:1b:8c:99:ed:d7:53:a2:ae:a0:3f:16:a0:a9:
13:47:26:da:13:bd:19:ed:aa:18:02:72:58:4e:22:
9b:ec:00:37:f1:06:18:fa:25:06:47:b4:47:a8:17:
4f:9f:ac:0c:21:51:f4:c5:c4:84:c3:e1:9c:e2:49:
6d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:78:A6:2B:49:F5:58:11:F8:76:D4:3B:89:F5:4E:E2:25:B0:B1:05
X509v3 Authority Key Identifier:
keyid:65:83:D3:22:EF:24:C8:71:98:B7:65:EA:1D:1C:42:C2:83:A7:F8:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/H3imK0n1WBH4dtQ7ifVO4iWwsQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f0971a-8891-4b53-944c-5be9e117dbda/1/ZYPTIu8kyHGYt2XqHRxCwoOn-PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.44.0/24
IPv6:
2a11:fe80::/32
Signature Algorithm: sha256WithRSAEncryption
51:2d:6e:af:24:a2:76:c0:bf:ae:29:10:91:80:eb:b0:37:8a:
fd:5b:1a:a4:13:f3:2b:bc:b0:b9:77:2c:ac:d0:94:ed:43:a4:
b3:a6:7c:91:65:75:5d:12:ee:24:63:4d:b7:42:29:6b:15:3e:
46:10:91:ca:a9:77:a0:46:74:3f:82:0b:41:33:2c:71:c4:b2:
96:84:b4:3f:3c:94:7c:d6:e9:08:8e:aa:0a:6e:e9:2e:66:a4:
ba:80:59:32:48:8b:28:e8:31:64:10:ec:c5:46:7e:21:d5:f5:
3d:18:8f:4a:a6:e0:89:c8:74:7a:db:65:86:46:1f:b9:85:8a:
6a:2c:60:a7:59:e7:f4:19:ac:6b:f8:6c:91:2c:a8:8c:29:83:
9b:70:c1:a5:ca:98:6c:51:33:ec:40:0c:88:87:d0:96:da:b3:
04:0d:34:98:01:9d:91:2f:df:79:36:85:bb:17:14:34:53:d7:
56:90:e3:0a:dc:fd:95:05:28:ab:43:21:d9:67:bb:4a:01:4f:
04:27:7c:d7:1b:7f:6a:ce:d8:e9:c9:92:b9:1d:9d:b2:8e:8d:
9e:65:d2:3e:92:c7:19:d2:2e:22:ef:24:12:70:27:90:21:03:
1e:93:32:fd:8d:dd:e9:dd:bf:c4:38:dc:21:5f:f5:a2:4b:91:
0d:40:d0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org