Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/HfPdFaARq6I6urjNRcRVbPxHFig.roa
File: HfPdFaARq6I6urjNRcRVbPxHFig.roa (raw, json)
Hash identifier: Iq670Ga2T+KsmjX4EORC1MqdT9IwE6SOUjSQmRU1xWw=
Subject key identifier: 1D:F3:DD:15:A0:11:AB:A2:3A:BA:B8:CD:45:C4:55:6C:FC:47:16:28
Certificate issuer: /CN=043692f2a1d1bc76ff7f9d29091beda08b7bc96c
Certificate serial: 018571A78E028F355254C99D0E3B9B47BBFF
Authority key identifier: 04:36:92:F2:A1:D1:BC:76:FF:7F:9D:29:09:1B:ED:A0:8B:7B:C9:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDaS8qHRvHb_f50pCRvtoIt7yWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/HfPdFaARq6I6urjNRcRVbPxHFig.roa
Signing time: Mon 02 Jan 2023 08:44:44 +0000
ROA not before: Mon 02 Jan 2023 08:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204969
IP address blocks: 185.234.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:8e:02:8f:35:52:54:c9:9d:0e:3b:9b:47:bb:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043692f2a1d1bc76ff7f9d29091beda08b7bc96c
Validity
Not Before: Jan 2 08:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1df3dd15a011aba23abab8cd45c4556cfc471628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:00:b9:38:0a:62:4f:fa:a2:33:d8:31:7d:cf:
1b:2d:57:2e:70:e3:64:81:c9:10:c3:99:5e:bb:57:
9c:88:a1:66:33:8a:b3:24:57:9a:42:48:4f:ab:b9:
bf:ce:8e:f7:db:96:ec:69:e7:87:4f:33:66:0c:de:
43:d4:af:36:a5:b1:1a:a1:63:ab:e9:4a:2c:9a:f0:
8f:6e:f3:af:91:15:b5:75:7c:33:15:3c:4d:07:15:
92:f4:df:68:f8:8f:d7:9a:75:f4:61:34:9b:b5:62:
a9:4c:0e:99:aa:ae:0d:3e:5d:b6:64:29:06:5d:cd:
35:1f:35:91:0f:21:68:2d:94:dc:5a:e3:68:28:27:
52:2a:b5:d0:43:63:30:cd:ee:d0:41:cb:d2:e3:eb:
3e:f6:a0:06:ec:98:48:ed:d2:b0:8b:23:ad:09:2a:
d0:b3:34:e4:95:61:e1:85:82:d0:70:8d:f8:6f:a3:
5b:20:cc:6b:6d:b6:0d:2e:fd:39:de:eb:57:e3:bf:
1c:52:2a:47:84:ad:8c:f2:ba:ae:2d:ce:47:a4:3a:
6a:70:44:f3:24:a9:90:a5:64:4a:59:3c:3c:db:12:
33:83:61:82:8c:68:65:6e:13:09:b3:ed:60:ce:2a:
30:71:bc:18:ed:a1:32:84:1a:90:5d:f9:2a:c4:26:
7d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F3:DD:15:A0:11:AB:A2:3A:BA:B8:CD:45:C4:55:6C:FC:47:16:28
X509v3 Authority Key Identifier:
keyid:04:36:92:F2:A1:D1:BC:76:FF:7F:9D:29:09:1B:ED:A0:8B:7B:C9:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDaS8qHRvHb_f50pCRvtoIt7yWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/HfPdFaARq6I6urjNRcRVbPxHFig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c6e217-03ff-4396-adfe-255f0c51bbe0/1/BDaS8qHRvHb_f50pCRvtoIt7yWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:57:69:60:88:e8:9f:8b:ac:48:1c:31:56:b9:37:3f:7a:77:
0e:18:20:74:d4:81:89:db:33:be:e8:70:bd:2d:9c:9f:4a:93:
49:ee:b5:8c:41:6e:7c:37:7c:2f:45:ea:ee:1c:d0:3f:58:3c:
fe:6c:d3:09:21:35:71:3e:b3:06:f6:5e:ba:72:00:dc:9a:59:
88:3f:82:e9:c5:bc:fc:92:92:76:b4:58:ab:c0:16:a1:e9:21:
9e:61:af:25:56:d8:f9:bb:2f:6c:66:1c:b4:bd:79:92:6b:28:
11:d6:40:ae:e5:25:33:7e:41:24:3d:ad:fc:b7:a6:21:96:7b:
ea:b3:84:30:78:3f:f9:c2:81:58:80:24:b6:f9:b5:25:22:3d:
d7:f4:19:9c:a7:f9:8b:bc:88:b2:21:74:77:30:8f:96:78:6e:
92:ee:62:ca:4f:e4:65:96:19:56:8c:11:fc:33:ca:a7:21:61:
85:c9:06:49:0a:57:d4:62:a0:04:10:f5:a7:d0:ce:6f:5f:c5:
2b:f4:18:dc:b2:ac:1a:2c:ca:c7:b9:e2:da:d0:73:f8:16:69:
df:d6:32:90:a9:10:3f:3b:b4:3f:46:26:f2:4b:2b:15:ba:82:
f3:8e:8e:0a:51:26:e3:ae:33:d8:42:9c:7c:a5:03:d4:64:d4:
c8:d8:3a:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:56 2024 by rpki-client on console-ams.rpki-client.org