Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/HwDAphOtCD1LbezhQtunPvfTEVw.roa
File: HwDAphOtCD1LbezhQtunPvfTEVw.roa (raw, json)
Hash identifier: 7UY3Hc4DxdFcHXEfhnrsqlz9OyN6+Xp0XmRqM/SGMPA=
Subject key identifier: 1F:00:C0:A6:13:AD:08:3D:4B:6D:EC:E1:42:DB:A7:3E:F7:D3:11:5C
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01911720B3117F27BE548107C9DA6C4E2D8F
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/HwDAphOtCD1LbezhQtunPvfTEVw.roa
Signing time: Sat 03 Aug 2024 07:25:04 +0000
ROA not before: Sat 03 Aug 2024 07:25:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48944
IP address blocks: 185.215.228.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 03 Aug 2024 09:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:20:b3:11:7f:27:be:54:81:07:c9:da:6c:4e:2d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Aug 3 07:25:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f00c0a613ad083d4b6dece142dba73ef7d3115c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:fd:90:b1:cd:a5:64:e9:c8:32:bb:19:11:
cc:cb:53:ff:34:2c:0b:3c:13:e9:28:0e:d7:2c:59:
a8:fa:70:28:47:56:25:92:07:be:39:3c:4f:d5:2e:
19:dd:51:f2:f1:34:0a:07:e1:88:38:07:94:34:3d:
ac:33:8f:c8:36:c3:00:2d:dc:f1:d3:9d:13:52:13:
2a:3c:72:8d:c3:e3:38:33:eb:c3:86:81:2c:33:ba:
c8:3b:eb:73:3e:bf:27:c9:c9:92:c0:ec:a1:e5:29:
fb:00:6a:8c:10:22:f4:42:b6:44:1b:cf:06:f4:be:
df:5f:ab:ac:ed:98:3d:e6:7e:ec:2c:f5:09:e1:9e:
10:19:f9:93:68:99:aa:57:1b:55:1b:cd:f7:87:cb:
b8:64:d3:41:02:0c:d3:50:8c:12:00:f6:02:a5:e8:
61:e0:63:a7:8e:ab:7f:1d:d9:68:a9:71:a0:e6:cb:
fd:a8:dd:f4:11:d1:d8:ae:f1:df:eb:0a:ab:22:56:
10:bf:b1:0c:0b:75:5f:70:55:96:37:6e:71:cf:6c:
db:e6:ac:f3:c2:0e:09:9f:6d:6e:06:b2:69:f4:1f:
94:55:30:35:99:8c:33:a5:ee:ba:1d:cf:80:1a:d9:
49:c0:5a:91:f6:7e:86:db:11:e9:a7:3e:61:1a:26:
f3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:00:C0:A6:13:AD:08:3D:4B:6D:EC:E1:42:DB:A7:3E:F7:D3:11:5C
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/HwDAphOtCD1LbezhQtunPvfTEVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.228.0/23
Signature Algorithm: sha256WithRSAEncryption
03:6e:5c:86:50:04:2a:39:5f:f0:47:db:f8:48:27:8c:2c:9a:
44:da:27:a3:71:2a:4b:02:67:50:0e:35:d5:9e:5b:25:0a:f1:
23:c9:f4:77:df:cf:26:a8:41:19:88:1d:c4:67:90:bf:60:f1:
29:4b:45:62:23:34:41:1f:b6:5a:19:7d:cd:55:00:3f:63:98:
d3:c9:f9:51:5f:c3:ca:f2:b8:bd:af:12:a2:c5:23:b1:e7:7f:
16:0d:45:f4:5b:2c:dc:5d:55:21:06:46:d3:ab:72:52:88:95:
51:52:fb:db:2e:c6:a5:a5:9c:9c:5b:4b:68:cf:a9:da:4e:da:
de:fa:cc:26:ed:78:23:b2:80:af:77:00:9d:55:3c:22:52:13:
c8:14:da:2f:46:68:67:f8:2e:b2:9b:93:75:44:3e:ff:8c:70:
08:50:fe:9a:84:ec:6a:db:70:51:55:72:6e:b1:8d:23:13:5c:
83:9d:b6:69:dc:c1:50:18:2e:b0:5a:db:cb:7f:3d:a1:36:4c:
c8:eb:97:c7:7a:80:1b:73:f1:f2:4b:d1:77:71:b1:92:9d:8a:
b2:16:4e:71:9b:76:9d:51:bc:99:cc:27:5c:57:26:30:05:07:
35:17:df:e4:9d:46:f4:16:cc:c4:a2:58:1e:63:ae:0d:21:1e:
b3:a9:ef:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:29 2025 by rpki-client