Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/hSwRRh34uzs8NySlYAH0uU3ezSw.roa
File: hSwRRh34uzs8NySlYAH0uU3ezSw.roa (raw, json)
Hash identifier: LVbIYn38ZbBfowdiLgEVfnV+QsjJj4HLEsWr2A+VMAk=
Subject key identifier: 85:2C:11:46:1D:F8:BB:3B:3C:37:24:A5:60:01:F4:B9:4D:DE:CD:2C
Certificate issuer: /CN=b2853aa1eb32bfee0feb1483c14936d101f16edf
Certificate serial: 01856DD40324D141DE56E20FA2E006C70FC9
Authority key identifier: B2:85:3A:A1:EB:32:BF:EE:0F:EB:14:83:C1:49:36:D1:01:F1:6E:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soU6oesyv-4P6xSDwUk20QHxbt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/hSwRRh34uzs8NySlYAH0uU3ezSw.roa
Signing time: Sun 01 Jan 2023 14:54:49 +0000
ROA not before: Sun 01 Jan 2023 14:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49612
IP address blocks: 185.178.211.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:03:24:d1:41:de:56:e2:0f:a2:e0:06:c7:0f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2853aa1eb32bfee0feb1483c14936d101f16edf
Validity
Not Before: Jan 1 14:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=852c11461df8bb3b3c3724a56001f4b94ddecd2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:74:79:0a:82:93:f8:89:b9:91:90:88:2e:f3:
ac:8f:b5:37:b5:67:a3:44:d0:e7:83:a9:ce:55:00:
c0:98:e7:a6:9e:f4:0c:63:be:3d:2d:ac:ae:e9:6e:
fe:6e:37:da:6d:69:e6:04:cc:ff:7d:15:b8:41:a5:
65:47:7f:82:95:8b:69:75:0d:45:d3:ca:ef:c7:83:
91:a9:04:d8:7c:a5:20:7b:ca:9e:35:9e:89:9d:6e:
4d:33:41:6e:f6:c1:11:d2:48:3e:97:c3:aa:57:47:
ed:20:1e:52:36:03:32:c5:7d:2b:85:ca:b2:ac:8b:
10:18:7b:bd:ab:ec:ba:54:7c:e8:b6:fb:52:16:9a:
28:cf:8e:a3:3f:1e:5b:3b:38:0f:ec:e1:ec:c2:30:
ae:6a:fe:ac:cd:e3:84:58:1e:7a:22:84:06:e2:a9:
93:fc:ba:2c:f0:8d:e8:ba:ab:00:87:56:12:61:ab:
20:fd:d1:12:5b:48:fb:93:4f:2e:d9:97:a2:47:5f:
f3:58:e4:86:3b:a2:11:60:ad:e8:29:f3:77:48:f8:
27:06:cb:5a:ea:e7:fa:4a:6f:50:15:74:64:a7:14:
7d:70:98:39:98:ac:82:d8:2f:ad:22:64:bc:b2:9d:
b4:dc:70:5b:4b:0a:cf:63:a5:a3:7d:16:bc:72:c6:
72:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2C:11:46:1D:F8:BB:3B:3C:37:24:A5:60:01:F4:B9:4D:DE:CD:2C
X509v3 Authority Key Identifier:
keyid:B2:85:3A:A1:EB:32:BF:EE:0F:EB:14:83:C1:49:36:D1:01:F1:6E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soU6oesyv-4P6xSDwUk20QHxbt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/hSwRRh34uzs8NySlYAH0uU3ezSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/31c815-d96a-4bb6-8ccf-f2b81079b746/1/soU6oesyv-4P6xSDwUk20QHxbt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.211.0/24
Signature Algorithm: sha256WithRSAEncryption
73:8e:33:ff:3d:a8:42:4c:14:bc:ca:f1:64:44:13:1e:83:b1:
ce:f9:d4:c6:31:ec:bd:f0:e7:4f:20:06:f6:25:11:3f:3f:9e:
86:0e:be:87:50:69:14:08:78:31:ba:d4:b6:7f:9c:f0:47:e6:
d2:58:1f:bf:62:98:38:a2:f0:3d:2b:af:c7:5e:2f:af:10:d5:
0f:83:1c:82:8d:bf:6d:5b:f5:63:aa:bc:f3:ed:92:01:7b:52:
08:75:53:cf:46:95:2a:06:ea:c2:8a:a3:2e:4a:76:0d:a7:30:
34:7d:37:fe:92:f8:4b:a2:c9:10:16:7f:cf:e7:60:60:4b:4b:
04:f2:58:11:f4:20:93:cc:ef:e9:ce:04:9a:0e:37:4b:63:f1:
12:0b:37:12:2a:0c:49:09:8d:33:ac:79:d6:10:eb:d4:c2:ce:
95:0a:f3:f2:44:11:26:d1:e3:ab:e2:d3:f3:ad:12:72:89:3f:
bc:80:51:43:86:50:ae:fc:56:ac:8b:ba:00:e1:47:fc:c5:b5:
cd:1c:bd:c0:6c:3f:76:2c:e7:14:31:16:14:1d:1c:a2:f0:5a:
68:ba:94:72:fc:62:7c:d5:65:7c:5f:6e:08:16:f6:51:a7:b3:
4b:7c:3c:e0:60:a5:87:53:72:42:5a:a2:76:32:13:45:74:17:
1d:a6:ec:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:19 2024 by rpki-client on console-fra.rpki-client.org