Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/HVcbaebgq5eV_KV65vbW5OGx-I8.roa
File: HVcbaebgq5eV_KV65vbW5OGx-I8.roa (raw, json)
Hash identifier: F+YQMpDo8K1OChAM9q3tg6SoqC8X/JwW5di8vVJxx/o=
Subject key identifier: 1D:57:1B:69:E6:E0:AB:97:95:FC:A5:7A:E6:F6:D6:E4:E1:B1:F8:8F
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018866F1D5BFB187C7C2FBE62CFB6617A8B9
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/HVcbaebgq5eV_KV65vbW5OGx-I8.roa
Signing time: Mon 29 May 2023 09:58:24 +0000
ROA not before: Mon 29 May 2023 09:58:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 185.112.56.0/23 maxlen: 24
185.95.102.0/23 maxlen: 24
185.95.100.0/23 maxlen: 24
185.81.174.0/23 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.173.0/24 maxlen: 24
185.81.186.0/23 maxlen: 24
185.81.184.0/23 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.110.130.0/24 maxlen: 24
185.110.128.0/24 maxlen: 24
185.110.129.0/24 maxlen: 24
185.110.131.0/24 maxlen: 24
185.68.245.0/24 maxlen: 24
185.111.27.0/24 maxlen: 24
185.96.83.0/24 maxlen: 24
185.96.80.0/24 maxlen: 24
185.185.147.0/24 maxlen: 24
185.79.51.0/24 maxlen: 24
185.96.36.0/24 maxlen: 24
185.104.151.0/24 maxlen: 24
185.79.79.0/24 maxlen: 24
185.89.108.0/22 maxlen: 24
89.19.57.0/24 maxlen: 24
89.19.58.0/24 maxlen: 24
185.175.225.0/24 maxlen: 24
185.175.224.0/24 maxlen: 24
89.19.59.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
185.81.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 21:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:f1:d5:bf:b1:87:c7:c2:fb:e6:2c:fb:66:17:a8:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: May 29 09:58:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d571b69e6e0ab9795fca57ae6f6d6e4e1b1f88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:67:0b:24:25:5b:07:a3:8d:01:70:04:00:d7:
66:65:4b:fc:eb:ba:ff:34:2c:19:c5:bf:bc:21:06:
5b:80:23:2e:b1:db:fb:bc:ea:c3:79:2a:d8:3a:55:
c1:94:23:1d:bd:f6:7a:5c:d1:9f:d9:68:49:b6:74:
db:f9:b0:6e:f7:d3:6a:76:14:67:b5:66:a9:c9:61:
19:22:97:28:2d:db:58:6f:73:43:ba:43:7e:99:fc:
1d:81:e9:74:db:73:03:06:3c:10:48:26:26:a4:0d:
0b:83:80:ac:5f:5b:00:d3:c9:bb:3b:d9:db:3e:d4:
0d:f3:dd:31:c1:30:67:f7:89:f1:48:92:d4:97:71:
d2:0f:2b:02:64:92:24:5c:9e:93:eb:4d:84:de:a6:
be:b8:d1:26:bb:57:6c:eb:34:be:80:8e:64:40:4c:
75:05:a9:0d:a9:50:74:a2:59:d8:e1:bd:94:90:90:
f2:12:1e:47:a5:b3:15:0f:c4:13:29:57:1d:fe:48:
51:30:0a:f2:6b:7a:33:5b:2c:f3:b8:83:90:53:32:
54:43:96:7d:21:9b:77:11:ab:ae:00:f8:82:bf:4a:
9a:68:36:1a:f2:2c:0a:1c:50:fe:58:81:cf:7a:37:
8b:33:a6:1a:dd:44:77:9a:2b:f6:70:ed:e1:2d:14:
f1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:57:1B:69:E6:E0:AB:97:95:FC:A5:7A:E6:F6:D6:E4:E1:B1:F8:8F
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/HVcbaebgq5eV_KV65vbW5OGx-I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.57.0-89.19.59.255
185.68.245.0/24
185.79.51.0/24
185.79.79.0/24
185.81.172.0/22
185.81.184.0/22
185.89.108.0/22
185.95.100.0/22
185.96.36.0/24
185.96.80.0/24
185.96.83.0/24
185.97.1.0/24
185.97.3.0/24
185.104.151.0/24
185.110.128.0/22
185.111.27.0/24
185.112.56.0/23
185.175.224.0/23
185.185.147.0/24
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:90:29:25:3c:ae:35:c5:a4:0c:32:8e:31:d2:d1:6f:35:58:
68:8f:c2:13:1b:39:07:8e:f0:7c:6b:da:2c:ca:3c:c9:8f:5b:
dc:9f:88:72:05:85:e4:e2:3d:4a:eb:61:1b:16:e8:04:9a:a5:
a0:72:89:5f:77:2c:6b:6e:79:31:a3:a7:a8:dd:79:eb:4b:72:
a1:5b:df:76:9e:d3:6d:ed:00:d1:90:ce:38:82:c9:7a:80:8d:
24:07:0e:20:ac:6b:69:fc:2e:a2:85:a8:eb:28:89:c4:1b:3b:
16:15:47:e3:c7:c2:2c:1a:51:f3:ad:6f:45:bc:0d:9b:f8:b3:
9b:19:68:5e:7f:a5:4c:33:8c:81:44:0d:f8:4f:88:67:a5:73:
58:44:c1:ee:b5:05:3d:8b:b2:e6:39:7d:c1:5e:95:66:83:bc:
f1:9e:dd:d9:0f:ed:f6:df:23:90:81:22:55:67:4c:47:03:37:
18:31:92:b9:5f:ec:68:ef:12:20:26:db:97:2f:fb:d0:45:49:
98:01:84:f4:ae:2c:be:98:eb:47:15:f7:d7:af:e9:4c:10:b3:
74:96:24:00:c1:b9:96:1a:b7:0b:6d:6d:6a:e3:fb:51:c7:c3:
46:96:30:47:0b:25:f6:ce:a9:e1:02:ba:9f:dd:8f:74:30:b8:
00:4d:d1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org