Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/hg6tCdbRkIb4lG0NFApvFMiuF7s.roa
File: hg6tCdbRkIb4lG0NFApvFMiuF7s.roa (raw, json)
Hash identifier: bjh7pzilWF75XAuQqEXioFcXy8j/2H1F8ICIrramvlU=
Subject key identifier: 86:0E:AD:09:D6:D1:90:86:F8:94:6D:0D:14:0A:6F:14:C8:AE:17:BB
Certificate issuer: /CN=82e39681c5aaefb35e54f4ad8afa428d4ffde06a
Certificate serial: 018596D54B84D7F719D2784F1BA47903DE26
Authority key identifier: 82:E3:96:81:C5:AA:EF:B3:5E:54:F4:AD:8A:FA:42:8D:4F:FD:E0:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/guOWgcWq77NeVPStivpCjU_94Go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/hg6tCdbRkIb4lG0NFApvFMiuF7s.roa
Signing time: Mon 09 Jan 2023 14:00:38 +0000
ROA not before: Mon 09 Jan 2023 14:00:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47576
IP address blocks: 185.251.96.0/22 maxlen: 22
2a0c:18c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 22 May 2023 08:58:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:d5:4b:84:d7:f7:19:d2:78:4f:1b:a4:79:03:de:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82e39681c5aaefb35e54f4ad8afa428d4ffde06a
Validity
Not Before: Jan 9 14:00:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=860ead09d6d19086f8946d0d140a6f14c8ae17bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3b:e7:80:c5:d5:42:71:8b:10:5f:fa:da:06:
a0:fb:ff:d0:89:3c:6e:f6:f5:a2:20:62:75:1e:81:
0c:de:b0:33:ec:4c:29:2f:d1:89:c8:fe:17:98:78:
8d:b4:94:e8:22:98:51:49:e7:53:72:2b:23:11:c7:
e5:1c:69:b5:72:dc:9d:c7:ca:4d:ca:fa:05:e5:e0:
c3:44:e0:7b:fa:2f:21:49:c7:b7:2f:48:f0:b1:28:
4d:39:c9:54:52:b6:07:85:23:77:42:12:8b:49:79:
bd:b8:04:d4:e7:5c:c8:4d:73:7c:ad:07:7c:12:34:
b3:d2:1c:93:d3:32:c1:6c:a9:42:01:bb:7f:4e:24:
a2:0d:96:8f:6a:30:a8:c1:b0:93:f4:7a:68:d3:49:
d2:b6:6e:57:95:8b:fc:2e:cc:b1:20:90:4d:54:ff:
eb:a6:0d:47:ba:6a:3a:a5:7c:a9:8e:9d:93:35:05:
fa:6e:90:9b:ae:2b:f7:6b:a1:78:92:7f:e0:dc:13:
2a:f1:91:03:16:cf:66:f8:de:74:cb:2c:20:56:29:
90:29:d6:d1:03:84:b9:25:cc:9b:ec:a8:8e:d9:e6:
bb:d8:b6:0d:86:11:6b:0f:95:ec:18:ab:47:a4:f4:
9a:00:c4:2f:34:2e:c1:13:5d:cb:35:84:d1:00:6b:
df:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0E:AD:09:D6:D1:90:86:F8:94:6D:0D:14:0A:6F:14:C8:AE:17:BB
X509v3 Authority Key Identifier:
keyid:82:E3:96:81:C5:AA:EF:B3:5E:54:F4:AD:8A:FA:42:8D:4F:FD:E0:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/guOWgcWq77NeVPStivpCjU_94Go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/hg6tCdbRkIb4lG0NFApvFMiuF7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/57b53e-3003-46a6-9ce8-fafd1496ae59/1/guOWgcWq77NeVPStivpCjU_94Go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.96.0/22
IPv6:
2a0c:18c0::/32
Signature Algorithm: sha256WithRSAEncryption
37:84:81:da:42:3d:9d:37:81:95:14:77:2c:24:e2:92:af:85:
a0:db:36:fe:a0:42:1d:5c:31:c6:8f:63:9e:9e:98:dd:d4:e3:
54:7e:ad:a4:a5:64:df:c4:c6:1c:69:db:e2:2f:70:72:38:eb:
e3:50:14:17:bd:16:7d:c5:9f:d2:a6:aa:b5:cb:68:b7:f1:18:
15:92:fe:d5:e2:20:1d:28:5c:75:14:88:aa:92:4b:58:87:48:
70:a2:ac:7f:8a:98:e2:b0:83:16:b1:9f:61:6b:fb:8b:7e:86:
e4:cb:ce:20:18:59:0a:45:ef:47:00:e8:26:0e:a9:a1:aa:b9:
0b:8f:56:5c:18:02:2d:e0:ac:93:2f:e8:1a:ec:bd:d4:79:ff:
1c:65:5f:3d:2c:40:e5:74:f4:6e:37:40:fe:87:72:d5:8b:ad:
10:50:c5:ac:93:7d:5a:f6:6d:99:61:fa:18:65:bf:0a:ce:9b:
02:19:66:71:15:36:a4:54:5a:28:9c:09:10:33:d3:7d:e4:f6:
bd:3e:65:e6:8a:22:7f:33:2d:72:2d:29:cc:5f:cd:a9:4d:39:
78:f2:24:b4:4d:db:73:c8:a0:f0:f0:c6:c3:b9:86:ad:eb:6a:
30:ba:9b:6c:d9:25:7c:c8:52:d1:16:76:88:34:17:f4:10:5e:
bb:0e:5e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:58 2024 by rpki-client on console-ams.rpki-client.org