Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/HpztGfllNhJDn591KEfPzSiXTrw.roa
File: HpztGfllNhJDn591KEfPzSiXTrw.roa (raw, json)
Hash identifier: 45HGb7V8BURKA0qmuqqiDGBGXczTGdrc5GIbbpxnpOc=
Subject key identifier: 1E:9C:ED:19:F9:65:36:12:43:9F:9F:75:28:47:CF:CD:28:97:4E:BC
Certificate issuer: /CN=9c1cd1b3c8772956fa85535a8464b4ca19663ade
Certificate serial: 018CC64B045CD25EDB1DF6DCD39366F4FFD1
Authority key identifier: 9C:1C:D1:B3:C8:77:29:56:FA:85:53:5A:84:64:B4:CA:19:66:3A:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nBzRs8h3KVb6hVNahGS0yhlmOt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/HpztGfllNhJDn591KEfPzSiXTrw.roa
Signing time: Mon 01 Jan 2024 18:30:54 +0000
ROA not before: Mon 01 Jan 2024 18:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200697
IP address blocks: 185.136.241.0/24 maxlen: 24
185.136.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 12:37:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:04:5c:d2:5e:db:1d:f6:dc:d3:93:66:f4:ff:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1cd1b3c8772956fa85535a8464b4ca19663ade
Validity
Not Before: Jan 1 18:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e9ced19f9653612439f9f752847cfcd28974ebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:67:7f:b3:b2:3b:f8:d8:25:ca:49:ba:d5:05:
76:e9:18:8c:2b:0f:72:34:18:85:cc:48:9c:62:56:
cb:e3:2b:06:29:37:db:5c:23:64:05:66:ee:34:cb:
49:6d:4e:07:d7:75:34:8a:9b:d9:69:24:8e:50:3e:
78:56:a5:7f:d0:c9:58:1c:74:dc:6f:65:82:e9:9e:
ef:70:97:50:0d:9c:47:1c:21:ce:a1:78:f3:7c:b8:
e2:dc:b3:55:d6:bd:52:d7:ee:14:87:9c:7a:e3:fe:
e1:35:ab:24:4c:da:17:64:eb:de:46:9d:50:01:13:
79:6d:43:e0:7e:66:40:0f:d5:a2:7c:ee:c9:ab:df:
a2:5f:60:30:91:5a:d7:2d:48:b6:fb:e8:6c:a6:9a:
0c:80:51:c4:ac:01:e9:36:7b:43:20:af:99:4d:11:
3c:1e:09:24:26:91:f0:36:93:49:2f:af:67:ce:de:
26:cb:98:a9:84:a5:70:e4:de:ee:ef:d8:87:32:65:
dd:df:3c:7c:00:23:4b:ae:35:76:aa:07:ba:0f:79:
8a:9a:78:36:d8:a9:38:0b:ea:df:70:b5:5f:ce:83:
b0:6b:0f:a3:1b:26:8b:03:e2:ec:41:9e:0f:95:43:
c1:55:f2:e3:2d:63:21:3b:64:27:80:25:be:89:b1:
9c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:9C:ED:19:F9:65:36:12:43:9F:9F:75:28:47:CF:CD:28:97:4E:BC
X509v3 Authority Key Identifier:
keyid:9C:1C:D1:B3:C8:77:29:56:FA:85:53:5A:84:64:B4:CA:19:66:3A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nBzRs8h3KVb6hVNahGS0yhlmOt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/HpztGfllNhJDn591KEfPzSiXTrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/nBzRs8h3KVb6hVNahGS0yhlmOt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.241.0-185.136.242.255
Signature Algorithm: sha256WithRSAEncryption
3f:19:de:97:e0:3b:5d:e2:45:d7:8f:c8:c9:1d:4a:f3:13:d5:
79:6d:21:77:9a:1f:43:b2:47:e7:cb:ed:6e:4c:15:9d:0d:a0:
ac:eb:83:d7:38:01:b1:b6:7c:8b:e5:f9:a9:67:4c:1b:54:24:
2f:31:4d:ba:9d:29:d8:98:55:ac:9a:57:95:c8:47:be:52:cc:
39:45:43:e4:5f:74:c2:03:ea:f3:4a:b4:a6:36:b6:b0:8a:96:
5a:c6:ac:ff:54:3d:d3:d1:55:d1:dc:2c:12:87:27:fd:e6:aa:
3e:ca:0e:49:d4:68:05:18:63:93:40:d9:98:90:96:77:51:af:
54:00:c4:fe:b0:1a:b6:5b:eb:94:41:39:31:b2:1c:36:cd:0e:
f5:6b:7d:f7:54:7d:28:6b:72:33:7d:35:ca:9e:a9:ff:5c:e5:
06:74:a6:29:32:67:56:b4:4a:f0:9d:5e:59:68:92:22:81:e6:
e3:63:86:42:b4:7b:79:22:92:f6:f3:a9:f4:44:08:ae:4c:db:
e2:8a:2f:ef:e7:7e:fe:5c:31:28:1a:59:97:24:2b:4c:89:f6:
04:87:18:ea:60:41:05:13:9d:6f:71:e4:53:ff:b0:20:ec:65:
7e:12:b8:f9:d7:ce:f7:c1:7c:13:18:c5:64:5e:8f:55:23:eb:
09:63:ee:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:24 2024 by rpki-client on console-fra.rpki-client.org