Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/hpV-RVMRdykA3ZBg_LSC0Vixd3U.roa
File: hpV-RVMRdykA3ZBg_LSC0Vixd3U.roa (raw, json)
Hash identifier: OLR+oR415IMuz9/r6ROIGQh0j+KztOJ4dX3QxYqi+rQ=
Subject key identifier: 86:95:7E:45:53:11:77:29:00:DD:90:60:FC:B4:82:D1:58:B1:77:75
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0185715E4A03733A07838072FEEFC3DE5095
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/hpV-RVMRdykA3ZBg_LSC0Vixd3U.roa
Signing time: Mon 02 Jan 2023 07:24:42 +0000
ROA not before: Mon 02 Jan 2023 07:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.192.58.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:4a:03:73:3a:07:83:80:72:fe:ef:c3:de:50:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 2 07:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86957e455311772900dd9060fcb482d158b17775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9a:f8:98:7c:e3:8b:5e:f1:a4:0e:a0:41:13:
61:c9:c0:79:8b:9f:0c:3d:8b:8a:71:74:d1:9a:ac:
b0:d9:a9:4a:2e:f7:dd:66:de:cc:29:c8:16:3e:4c:
50:93:38:6a:1e:0f:2f:43:5f:54:78:50:d2:dc:4a:
1d:18:ab:26:94:73:72:67:a7:64:9b:aa:13:7c:c6:
44:6a:40:8c:2e:17:4a:06:1e:9a:d7:73:61:08:5a:
49:41:31:0e:e1:48:6e:48:96:34:38:c0:6b:5e:f0:
65:ba:38:f9:00:e3:9d:9d:1d:a6:72:31:04:d1:bb:
22:5e:79:df:57:0f:57:1b:d8:6b:89:91:d2:9d:b3:
fe:3e:63:ee:87:61:c4:e6:9a:0e:06:88:16:e7:d2:
97:73:c0:03:e7:c7:0f:07:15:be:04:ca:c6:54:da:
15:f4:fa:a0:1b:17:dc:3a:27:3c:b7:71:e4:4d:8f:
77:d3:45:1d:54:22:4d:9f:2a:0d:cd:a4:e5:84:68:
81:2c:4e:15:c5:e8:55:b0:bd:9e:60:dc:ed:1b:cf:
97:32:ea:fd:86:c0:cc:ff:ee:4f:34:ac:f2:9e:43:
f8:f3:ea:e4:5f:41:08:1b:bb:7d:a2:f1:a5:38:f9:
a3:36:15:44:a5:64:9f:f7:ff:82:d1:84:cc:dc:99:
eb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:95:7E:45:53:11:77:29:00:DD:90:60:FC:B4:82:D1:58:B1:77:75
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/hpV-RVMRdykA3ZBg_LSC0Vixd3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.58.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:62:55:e4:91:0f:3f:ac:5b:48:6a:02:89:bb:79:bd:df:e1:
e6:4d:c6:1c:e2:dc:38:67:76:cf:e3:da:0b:c5:61:e3:43:d9:
09:fa:41:28:a4:7b:15:5d:c4:97:4c:8b:0f:1f:fd:6d:94:20:
a3:50:fc:1d:7f:93:d6:02:8b:7f:7b:db:6d:7a:b3:25:dc:ef:
85:54:5c:8f:3b:1d:48:28:be:b0:26:ca:2e:45:5b:06:f1:ae:
b1:be:a1:c9:62:5b:97:7f:f9:cd:d9:9b:61:a8:d7:0e:6a:bf:
78:9b:f9:03:62:45:be:79:7a:c1:c1:a2:c3:c2:8f:ce:01:9d:
7e:cf:ae:06:f9:3d:9a:8e:4d:a1:e0:d4:fe:cd:e9:93:15:e6:
7a:0c:04:dd:d6:ce:80:21:96:b8:84:e5:5f:09:90:d5:d7:e2:
9c:bd:89:85:53:68:bb:06:3d:1d:5c:84:48:b1:38:92:ee:e2:
2a:31:e9:07:a2:e0:4a:b7:d7:08:42:a9:3c:56:12:32:ac:91:
00:e0:32:5e:be:c7:f5:bc:8e:50:c1:88:24:df:f0:63:56:f5:
2e:fb:80:a3:30:d8:82:95:a7:91:d7:22:2e:39:41:5c:4c:08:
2f:27:f7:89:88:6b:26:fc:45:50:05:09:d9:6d:1f:4c:00:10:
97:87:be:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:27 2024 by rpki-client on console-fra.rpki-client.org