Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/HfoNAloUXmBDLVj4RrDtFKABf-A.roa
File: HfoNAloUXmBDLVj4RrDtFKABf-A.roa (raw, json)
Hash identifier: FoY9WpnsZqV541FgDGX8w6xAuvRBepvm3JsXr0kex3c=
Subject key identifier: 1D:FA:0D:02:5A:14:5E:60:43:2D:58:F8:46:B0:ED:14:A0:01:7F:E0
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 0185711E447B8736631463F8284AEF4ABF38
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/HfoNAloUXmBDLVj4RrDtFKABf-A.roa
Signing time: Mon 02 Jan 2023 06:14:47 +0000
ROA not before: Mon 02 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60620
IP address blocks: 185.14.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:44:7b:87:36:63:14:63:f8:28:4a:ef:4a:bf:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 2 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1dfa0d025a145e60432d58f846b0ed14a0017fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:64:92:01:70:58:50:92:40:a6:ce:6e:94:ee:
4a:3f:42:6e:12:e7:53:53:56:b0:4e:b7:fd:0e:ef:
e4:bd:21:ae:1b:63:6c:87:18:2b:7b:06:a8:8f:43:
c5:cd:f6:5e:bd:07:c7:8d:8c:78:ea:0b:76:78:46:
2b:30:e0:71:3f:3f:c7:d7:08:c4:6d:b5:a7:fe:13:
90:a6:c4:f3:76:4a:56:c6:a3:91:fc:b0:43:66:91:
c7:f5:e7:91:30:ee:40:fc:c4:6c:4e:ba:08:96:77:
fd:f8:a9:1a:0b:10:6f:9d:3b:76:82:4d:90:69:58:
d9:e1:06:e1:c0:6c:84:72:59:59:8c:11:e9:e8:70:
29:0e:41:fb:3b:e5:6b:e3:57:43:b0:fc:5a:40:68:
26:d1:96:fe:f5:92:a4:a7:15:03:1e:82:8a:92:a6:
e9:b6:8f:6e:73:01:08:9a:13:eb:be:3b:a0:93:a9:
a4:e4:32:a4:42:69:ec:31:e6:ad:36:af:40:c9:a8:
1a:e2:32:1e:66:a8:e9:12:00:5e:6b:8d:45:36:15:
f1:9f:ba:67:14:bd:60:ca:85:0f:22:4d:fd:d4:1d:
f6:93:e3:0b:2e:dd:5a:c5:6b:66:ce:5c:4c:24:56:
7b:e1:74:25:6e:91:82:3d:3f:92:48:84:5c:a8:ff:
82:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:FA:0D:02:5A:14:5E:60:43:2D:58:F8:46:B0:ED:14:A0:01:7F:E0
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/HfoNAloUXmBDLVj4RrDtFKABf-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.177.0/24
Signature Algorithm: sha256WithRSAEncryption
97:d5:a5:cb:d8:d6:fc:1f:89:6c:e2:24:cd:4c:b1:c1:a5:c9:
3d:dc:12:ae:20:2c:8f:a6:64:d5:16:3e:e7:51:9b:cd:9d:60:
00:5f:e5:36:80:eb:06:29:c6:8d:09:ee:a0:6a:50:8b:40:3d:
02:73:ca:32:2e:7d:fc:5b:7c:ea:c1:4c:31:47:36:58:9c:22:
a2:0b:4a:f1:a9:ab:c3:90:e7:1c:9c:f1:1d:64:3d:cf:87:04:
6a:7f:b4:50:a0:2d:e7:fd:58:f4:ce:e6:d2:f4:ae:0a:7b:34:
4a:48:c2:af:e7:d6:c9:41:79:16:82:eb:d7:dd:73:0f:09:a3:
c3:10:e7:67:92:f9:eb:54:32:35:b3:3d:4c:dd:fb:73:5b:fe:
f0:c2:fe:52:a8:8b:ce:91:29:a6:35:f5:a7:de:f4:23:31:cf:
95:99:01:23:24:34:b3:43:b0:6e:e9:bc:5e:96:7c:58:b0:e0:
e8:4c:79:b4:20:75:53:3a:c2:5f:32:dc:dd:64:a4:1a:05:67:
ea:3a:82:23:ef:21:65:ca:53:5f:f9:b8:3f:6d:d9:3f:73:42:
fb:07:33:8e:85:96:22:a9:23:19:8e:f3:b9:0a:3b:8b:62:07:
6e:50:d4:5b:9b:71:35:8d:4e:d9:57:9d:02:87:4c:89:2a:ac:
75:84:d0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org