Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d54138-1308-4b42-a170-5492e0e4ebc3/1/H1NU-upkd91LVGbjnIrZyBh5oBU.roa
File: H1NU-upkd91LVGbjnIrZyBh5oBU.roa (raw, json)
Hash identifier: r0ukh/UMXwnbTtbLR+si/4LWTKshgG6Qd/zCsxppEnM=
Subject key identifier: 1F:53:54:FA:EA:64:77:DD:4B:54:66:E3:9C:8A:D9:C8:18:79:A0:15
Certificate issuer: /CN=4674af1bbdc4ca483c669c4fe0bdd764b8ac1675
Certificate serial: 018ACB737986C05E13772FF7857DF9CDBB25
Authority key identifier: 46:74:AF:1B:BD:C4:CA:48:3C:66:9C:4F:E0:BD:D7:64:B8:AC:16:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RnSvG73Eykg8ZpxP4L3XZLisFnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d54138-1308-4b42-a170-5492e0e4ebc3/1/H1NU-upkd91LVGbjnIrZyBh5oBU.roa
Signing time: Mon 25 Sep 2023 08:27:37 +0000
ROA not before: Mon 25 Sep 2023 08:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3225
IP address blocks: 185.46.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cb:73:79:86:c0:5e:13:77:2f:f7:85:7d:f9:cd:bb:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4674af1bbdc4ca483c669c4fe0bdd764b8ac1675
Validity
Not Before: Sep 25 08:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f5354faea6477dd4b5466e39c8ad9c81879a015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:49:5d:79:3c:ac:2f:9f:32:2d:45:be:73:
33:c6:4a:0e:c3:ab:4d:e6:fb:88:d0:ee:06:99:67:
43:53:45:5a:1d:87:88:54:d8:bd:68:04:2e:dc:7a:
1b:38:e5:a8:62:36:f3:7b:7b:bc:9a:63:3d:1d:00:
9b:8d:33:8a:f6:8f:7c:a4:fd:79:6f:b3:fd:b1:76:
b7:5d:6e:fb:87:ad:cc:29:76:b6:62:19:b4:a6:bf:
e0:1e:b8:da:ad:ca:aa:ba:6e:3d:d1:b7:54:22:6f:
d5:12:7e:28:d5:be:60:e8:7f:b2:4d:1f:be:9f:42:
da:7e:60:16:bb:42:41:87:1b:d5:8e:80:03:1e:6a:
1e:2d:0b:22:7b:a0:1d:73:01:1c:89:78:9f:5e:34:
73:6d:33:57:5e:2c:1d:11:ae:f0:03:d1:02:6c:21:
79:e1:97:1f:3d:1a:a4:f7:26:1d:1c:e2:c2:d4:00:
47:52:b6:ef:0f:1d:c8:53:0f:cc:8c:27:39:22:d2:
29:cb:8d:03:ab:b9:a0:b4:f5:48:74:74:29:6e:e8:
2a:c0:5f:97:04:7c:3b:76:01:7d:dc:ec:95:ba:04:
6c:0e:e6:57:83:2b:7a:22:8c:e0:1c:87:22:ea:42:
92:60:ae:ba:73:b3:d0:00:90:22:2c:28:32:3a:3d:
15:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:53:54:FA:EA:64:77:DD:4B:54:66:E3:9C:8A:D9:C8:18:79:A0:15
X509v3 Authority Key Identifier:
keyid:46:74:AF:1B:BD:C4:CA:48:3C:66:9C:4F:E0:BD:D7:64:B8:AC:16:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RnSvG73Eykg8ZpxP4L3XZLisFnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d54138-1308-4b42-a170-5492e0e4ebc3/1/H1NU-upkd91LVGbjnIrZyBh5oBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d54138-1308-4b42-a170-5492e0e4ebc3/1/RnSvG73Eykg8ZpxP4L3XZLisFnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.144.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:c2:59:91:37:81:31:bb:c1:28:34:05:12:a4:1a:47:86:6a:
90:27:0e:a6:4e:b5:55:27:83:77:6f:97:9c:3a:66:20:30:a7:
6f:17:2e:c5:7b:70:1c:96:94:57:42:5b:ba:f6:e7:ea:ed:83:
5e:c3:d9:e2:65:85:19:f1:9e:00:c9:e0:4c:53:9a:42:94:2d:
c7:8f:06:bb:af:2f:16:3e:14:93:83:c9:9e:f2:28:4c:1a:c2:
4b:cd:36:c4:39:11:a6:1b:b5:17:5f:f5:84:cf:c4:f4:23:66:
05:6a:23:6b:07:8d:ef:e3:03:f2:0a:4a:50:23:4e:f4:65:fa:
aa:0b:04:7c:cb:18:7c:e2:51:2a:69:1c:0b:e6:ae:61:b9:d0:
d3:db:f9:d0:4f:8b:0a:ff:d0:82:85:3f:71:98:9e:c8:f8:bd:
73:72:59:e8:23:e5:10:11:e5:61:24:f8:2d:af:67:cd:5e:88:
fc:ae:9d:50:26:39:48:2f:06:eb:fd:fb:ef:9b:70:1c:8d:5f:
ab:1e:7a:92:9e:d0:a9:1b:24:6c:e0:e8:f3:a4:91:85:8b:3e:
8d:e1:53:b2:ed:e1:ce:a6:5a:b3:57:37:b7:e0:3d:29:e4:55:
a2:ca:10:61:18:61:e3:f6:82:27:76:88:6b:6f:6f:a4:0c:13:
f4:ae:87:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:20 2024 by rpki-client on console-ams.rpki-client.org