Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/HCu8-ARCXKv2C7ET0PfKAbC-hTo.roa
File: HCu8-ARCXKv2C7ET0PfKAbC-hTo.roa (raw, json)
Hash identifier: DyZa0alakoKHcphhqY32a2r2LFQ3jg+iTVZWPkDQ6Oo=
Subject key identifier: 1C:2B:BC:F8:04:42:5C:AB:F6:0B:B1:13:D0:F7:CA:01:B0:BE:85:3A
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 0190D9882E365DC0E63C6EA9B247B00E4A9D
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/HCu8-ARCXKv2C7ET0PfKAbC-hTo.roa
Signing time: Mon 22 Jul 2024 08:21:38 +0000
ROA not before: Mon 22 Jul 2024 08:21:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.220.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 11:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:88:2e:36:5d:c0:e6:3c:6e:a9:b2:47:b0:0e:4a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jul 22 08:21:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c2bbcf804425cabf60bb113d0f7ca01b0be853a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fa:f0:61:f5:a5:47:5b:28:11:4a:4e:c4:0b:
6b:6c:be:6c:b7:d7:af:87:fc:6a:05:32:2e:51:15:
98:88:42:d4:e5:20:24:b9:88:ff:8c:87:8e:89:d5:
e3:3d:22:85:46:45:21:fe:bd:fb:61:42:2a:4d:6a:
a0:ef:bb:bf:8e:de:2d:ca:d7:01:e9:b1:73:25:72:
b8:fa:7c:73:fc:0a:8d:16:b3:28:3a:f0:6f:f8:c6:
87:0d:f1:eb:cc:50:88:6c:99:87:67:02:8b:5e:44:
77:b3:95:8b:3f:97:b8:cd:b8:f2:8e:31:75:90:4b:
57:38:7f:8e:b1:50:83:70:86:4d:03:77:1c:c3:4f:
89:1b:3e:b4:61:db:d6:82:b0:ff:eb:e7:01:56:22:
da:cc:58:fa:be:7b:56:62:66:cc:72:c4:e4:d4:57:
28:14:5d:dd:93:77:1e:87:a7:e3:56:43:3e:4a:90:
62:aa:c1:3b:bf:64:b3:87:8f:15:e4:a4:52:86:14:
da:9a:59:a1:63:6b:00:54:42:c7:f1:a8:05:36:bb:
49:b6:fe:a0:f5:a8:0d:37:fd:b7:e0:3f:5a:c9:9b:
f0:8e:42:bf:9d:55:36:df:9e:04:74:9e:2e:30:82:
c5:a1:b4:ca:42:f2:6a:d3:81:62:94:40:3d:b2:66:
fc:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2B:BC:F8:04:42:5C:AB:F6:0B:B1:13:D0:F7:CA:01:B0:BE:85:3A
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/HCu8-ARCXKv2C7ET0PfKAbC-hTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.146.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:7a:11:b8:15:8c:df:fc:8d:52:9c:0d:21:f8:94:5b:51:33:
68:2c:83:50:fc:3e:f0:43:da:86:d2:bd:6e:9b:f0:5b:1d:fa:
0c:20:5d:a6:ff:a5:df:77:9f:76:76:da:16:78:89:ad:53:7f:
70:29:85:7b:74:50:2f:ca:b5:b6:34:bc:00:f0:b9:09:a0:5f:
c6:aa:a5:86:51:d8:50:50:ad:76:4e:bd:9f:bc:bb:20:cb:d6:
24:69:b8:b9:14:63:77:5e:c2:8f:ae:71:71:d3:f2:34:59:b0:
70:7f:49:5d:97:70:d3:51:f5:83:cf:bd:64:f5:ae:72:61:35:
c8:e7:99:fe:52:0b:3d:11:0e:a7:c7:ce:7d:41:07:37:08:a5:
5a:5f:c4:bb:6f:d3:f1:ac:43:c1:f2:27:21:86:67:8e:aa:be:
6e:f4:85:6d:5c:4e:25:4b:b6:2a:88:f2:a3:fc:c6:ff:3d:b2:
65:4d:24:9b:6c:4c:82:87:ee:04:ed:8f:1a:f0:63:46:75:6b:
af:3c:98:1d:63:b7:52:87:0f:2d:59:cf:7f:e0:03:c4:f6:36:
7d:bd:f8:eb:55:48:90:0d:75:9f:40:f2:3f:99:a8:40:20:90:
19:1d:3d:a2:0f:ab:97:94:da:b1:2a:3a:a1:d0:ff:93:38:f9:
8a:66:9d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 16:59:06 2024 by rpki-client on console-fra.rpki-client.org