Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/hL77542x2-HL39gXG-_HlvYFo34.roa
File: hL77542x2-HL39gXG-_HlvYFo34.roa (raw, json)
Hash identifier: fd17mcRt8izXwBasNVuI3oqQNs/R2n5ODJV2xngJCU8=
Subject key identifier: 84:BE:FB:E7:8D:B1:DB:E1:CB:DF:D8:17:1B:EF:C7:96:F6:05:A3:7E
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018B03626C9452E78E243FB5E2149CF506A2
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/hL77542x2-HL39gXG-_HlvYFo34.roa
Signing time: Fri 06 Oct 2023 05:07:43 +0000
ROA not before: Fri 06 Oct 2023 05:07:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 185.36.140.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:03:62:6c:94:52:e7:8e:24:3f:b5:e2:14:9c:f5:06:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Oct 6 05:07:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84befbe78db1dbe1cbdfd8171befc796f605a37e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cf:c2:ae:67:d1:c9:48:9a:92:5b:94:8a:2a:
80:96:5b:1b:29:87:b3:80:d4:8a:27:29:d2:66:f2:
04:ed:fc:99:d0:ee:0a:85:27:3d:89:c2:18:93:9e:
ed:4b:73:97:c7:e9:d8:71:ea:16:e4:8e:5e:d1:3c:
2d:e9:e8:96:32:ca:fe:58:c7:b1:c2:e3:73:d4:d5:
45:e4:8e:17:4e:6d:49:5d:67:fb:1f:25:54:19:89:
6d:04:4a:e3:01:1a:5e:c4:48:f7:6a:cd:f6:33:5c:
ab:8d:a9:9a:b3:d7:98:05:04:c9:b4:0d:13:7b:7a:
31:86:66:7c:39:51:a8:ce:36:5f:8c:06:95:0c:6c:
f8:8c:85:4a:5d:1b:83:ab:12:31:46:e8:15:20:47:
38:27:6c:24:90:e3:3b:ae:11:20:0f:19:23:f9:7b:
c7:c0:78:9a:96:f3:fa:04:a3:72:18:91:23:9f:4e:
68:64:32:96:7b:a4:46:ae:84:11:5f:85:fa:a6:11:
3e:e7:89:48:e7:86:ef:de:59:39:ae:80:c6:ab:ac:
d0:e7:ef:b4:e0:08:6f:d8:88:e1:5d:81:06:e9:54:
55:77:f8:91:4d:f9:36:6e:be:43:cf:53:51:72:f1:
7f:5c:2a:3f:33:20:78:92:62:33:c5:69:a2:d3:4e:
0d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BE:FB:E7:8D:B1:DB:E1:CB:DF:D8:17:1B:EF:C7:96:F6:05:A3:7E
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/hL77542x2-HL39gXG-_HlvYFo34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.140.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:9d:e5:42:cf:17:18:00:a1:18:49:98:b5:bd:10:e1:42:67:
f9:4b:73:d9:3e:91:5e:a8:75:1d:63:63:2c:63:e7:b2:76:63:
ea:b5:5e:db:b9:bc:e2:1f:bc:08:99:10:a2:9e:91:92:1a:2d:
d7:b8:54:c6:fe:40:1e:56:81:7e:49:d0:35:37:94:85:4e:61:
e5:66:a9:4e:8e:2b:b9:80:d6:3a:04:15:7a:f3:5a:6b:1d:75:
63:a9:6d:75:53:48:84:a4:18:f4:3f:aa:4e:97:93:c2:8c:ee:
4f:9c:c9:3e:e7:f7:4f:bc:e6:10:6c:46:40:fb:3d:09:07:70:
32:0a:0f:37:af:b6:91:6d:48:17:e4:1c:61:31:07:99:7e:9e:
06:39:b5:a4:8f:ab:5a:92:44:8f:87:10:03:5a:bc:62:c9:45:
c4:d3:5c:0f:86:df:51:55:76:5c:57:f1:ee:f6:10:61:64:c8:
f3:60:74:d1:c3:7a:80:11:c6:6d:f2:27:fa:66:d9:c2:0a:c0:
da:e5:08:94:6a:52:54:1d:88:a4:fe:ef:6a:5c:2e:b3:b8:6d:
0e:0a:f0:7c:42:e0:c7:6e:95:0e:36:6b:93:76:9f:b6:d4:58:
3d:89:e2:29:f0:b8:eb:d6:9a:cb:02:6d:81:0d:07:46:7c:32:
4e:fb:45:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org