Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/KHJRAecnYSPhGhsHLoVu5ycPJ2g.roa
File: KHJRAecnYSPhGhsHLoVu5ycPJ2g.roa (raw, json)
Hash identifier: 7k/ORWpX6jnlprWcRnfpYKOHRtomBSRTcALA1+Tqb4I=
Subject key identifier: 28:72:51:01:E7:27:61:23:E1:1A:1B:07:2E:85:6E:E7:27:0F:27:68
Certificate issuer: /CN=849d5c1ca865b04b6f2b3ccd9016e92ddad99aab
Certificate serial: 018BD313E2A1F0A17E4245E536A50CB7C64B
Authority key identifier: 84:9D:5C:1C:A8:65:B0:4B:6F:2B:3C:CD:90:16:E9:2D:DA:D9:9A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJ1cHKhlsEtvKzzNkBbpLdrZmqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/KHJRAecnYSPhGhsHLoVu5ycPJ2g.roa
Signing time: Wed 15 Nov 2023 13:02:57 +0000
ROA not before: Wed 15 Nov 2023 13:02:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 185.110.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d3:13:e2:a1:f0:a1:7e:42:45:e5:36:a5:0c:b7:c6:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=849d5c1ca865b04b6f2b3ccd9016e92ddad99aab
Validity
Not Before: Nov 15 13:02:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28725101e7276123e11a1b072e856ee7270f2768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:4d:ca:94:bf:1d:f5:a9:e4:d9:59:0f:50:
da:d5:86:e0:9b:23:5d:e6:b3:64:2a:07:b4:73:47:
e5:5c:bd:fa:33:76:b0:bd:25:83:7f:bc:68:6b:ad:
ea:c1:a6:bb:0f:79:f5:e1:7b:d5:36:70:05:cf:70:
c9:4f:7f:2b:1e:52:f1:87:80:68:6c:62:db:3c:45:
19:0f:67:50:51:34:5b:70:d1:03:30:4f:ed:2b:38:
65:48:c9:2f:c2:86:80:72:c8:f7:c4:b2:c0:2d:15:
f2:8f:33:d8:74:af:9f:e7:b1:d2:56:4c:26:4e:37:
98:d6:e6:f3:1b:fb:95:27:cb:5f:5c:94:a4:7d:77:
81:b9:a3:b7:53:0f:75:78:24:81:73:1d:76:44:d9:
42:2b:df:b1:c2:53:46:0b:f1:33:fc:e1:cd:c2:b6:
6c:dc:a2:7f:b6:ff:9e:c6:62:51:6e:be:51:7d:9a:
e2:d3:55:ca:31:8b:20:f4:74:82:9e:c4:cd:d4:33:
cd:1c:dd:8c:c9:fd:7c:72:4e:5a:3d:42:64:03:53:
28:9c:ba:10:e5:01:20:1b:58:8b:a2:ee:33:6b:79:
5d:33:a4:3d:ef:3b:14:cb:ba:8e:c4:f3:c8:2c:a7:
42:ea:af:02:8c:f9:17:e3:64:20:bc:45:7d:29:5a:
ae:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:72:51:01:E7:27:61:23:E1:1A:1B:07:2E:85:6E:E7:27:0F:27:68
X509v3 Authority Key Identifier:
keyid:84:9D:5C:1C:A8:65:B0:4B:6F:2B:3C:CD:90:16:E9:2D:DA:D9:9A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJ1cHKhlsEtvKzzNkBbpLdrZmqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/KHJRAecnYSPhGhsHLoVu5ycPJ2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c418b-ec7d-46d2-99d5-dde0d12735c6/1/hJ1cHKhlsEtvKzzNkBbpLdrZmqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:e7:c3:c5:18:bf:f4:4d:8d:3a:47:60:91:6b:52:91:56:a5:
1b:02:45:8f:b0:74:c1:9c:8a:ee:21:84:d6:c0:e6:63:1c:68:
e5:68:dc:ce:b6:f7:7d:b9:92:cc:c7:dc:34:cf:e6:7a:6b:dd:
af:fd:0c:6d:47:30:e6:98:ab:f0:4d:cf:35:9f:bf:d3:cf:d5:
03:32:42:3d:fc:8e:3f:51:65:2a:1c:8e:c2:f2:85:71:3f:55:
d0:78:41:48:3b:1e:af:35:ed:ee:66:ac:de:98:8a:84:7b:d5:
28:c6:5f:45:79:fc:eb:d1:40:05:b3:06:f0:3c:b5:7d:83:b1:
c0:01:dc:15:27:68:e1:d9:35:00:6d:93:8a:fc:72:f6:7b:25:
2f:13:50:71:bf:3c:5c:8e:91:2f:43:e8:ba:c1:71:86:c8:d9:
ba:92:5b:c9:2b:61:e1:19:fd:db:78:0d:8e:57:d5:18:7d:94:
1a:1e:13:55:b2:5d:35:6e:76:44:52:60:80:8f:06:cb:9f:b0:
b4:39:89:6d:2f:b5:d5:1e:bf:b1:d3:c3:a7:8b:ee:62:04:43:
8e:5c:2d:68:74:b0:5f:5c:46:22:8a:5b:c3:27:57:de:9a:8e:
18:32:0a:d2:37:c7:a6:ca:0f:87:34:15:f0:7d:c7:7d:5d:fa:
b8:b4:07:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:44 2024 by rpki-client on console-ams.rpki-client.org