Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/HmdYfb20ovDw-RNccIccCamHLIc.roa
File: HmdYfb20ovDw-RNccIccCamHLIc.roa (raw, json)
Hash identifier: 7hyqNdsvT2L24G4AHGsJ9e5T0RkAvAZAHdJdnqOF5IU=
Subject key identifier: 1E:67:58:7D:BD:B4:A2:F0:F0:F9:13:5C:70:87:1C:09:A9:87:2C:87
Certificate issuer: /CN=2cc25ff32918f0b49306259d483afb9e381a3915
Certificate serial: 018CC3B733FE3DEFB53D006736B32D226298
Authority key identifier: 2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/HmdYfb20ovDw-RNccIccCamHLIc.roa
Signing time: Mon 01 Jan 2024 06:30:12 +0000
ROA not before: Mon 01 Jan 2024 06:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203903
IP address blocks: 185.158.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 18:44:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:33:fe:3d:ef:b5:3d:00:67:36:b3:2d:22:62:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc25ff32918f0b49306259d483afb9e381a3915
Validity
Not Before: Jan 1 06:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e67587dbdb4a2f0f0f9135c70871c09a9872c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:96:c9:79:04:44:89:6e:05:b3:26:44:08:e6:
dd:c2:d3:b8:c7:b0:6f:97:53:0c:9b:fb:c4:62:eb:
81:48:c3:c4:79:a0:a0:c3:68:f0:a3:8e:6b:88:a1:
8f:ff:89:24:46:30:f0:bd:8a:36:93:cb:e9:86:7e:
41:1e:f5:74:2d:f6:a3:4e:5d:34:1d:35:9f:83:b8:
55:45:b2:8b:a4:95:7f:7a:35:f4:a9:87:18:91:ad:
39:35:fe:62:69:fa:a1:d8:24:4a:40:2b:9c:48:40:
ac:b9:8c:fe:2b:af:21:63:55:d9:04:ba:69:12:c1:
39:54:00:5a:f1:80:e3:94:0f:7e:31:74:ee:12:b1:
d7:8b:5d:70:af:a6:be:e4:63:0c:2a:2c:28:fb:6b:
d5:de:67:e7:51:ab:e4:5a:2e:38:79:8e:29:dd:a1:
bb:37:ab:f8:19:3e:9f:52:3d:ae:3d:84:1a:4c:5e:
bd:c3:ee:60:5a:c7:e6:7e:f1:3d:33:19:77:a6:57:
20:d0:c8:35:38:f9:70:d9:97:36:83:aa:8c:36:93:
b6:9d:62:c1:76:29:90:7a:d7:d9:fe:18:8a:b5:50:
3a:f1:08:37:1a:e0:2f:8f:ac:a7:b7:5f:29:90:93:
fe:18:d4:11:9d:4f:72:55:40:a6:e2:f8:ed:87:18:
12:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:67:58:7D:BD:B4:A2:F0:F0:F9:13:5C:70:87:1C:09:A9:87:2C:87
X509v3 Authority Key Identifier:
keyid:2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/HmdYfb20ovDw-RNccIccCamHLIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/LMJf8ykY8LSTBiWdSDr7njgaORU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.175.0/24
Signature Algorithm: sha256WithRSAEncryption
61:4d:05:42:d2:65:5b:1a:c1:84:9b:3f:af:b3:0c:a1:e8:d6:
e4:27:e3:36:6a:1a:ca:bb:c5:81:cb:ef:2e:38:56:83:a6:cd:
ba:e4:b4:87:05:f2:49:0c:75:44:f0:38:93:92:4c:34:77:75:
be:02:27:e9:cb:81:93:a3:45:91:65:53:1d:f3:5d:f7:e3:3f:
6e:6e:5f:21:07:a9:29:5b:d1:4c:01:40:0f:22:d0:4e:84:3f:
bf:50:84:6e:e3:b8:b5:7c:7a:92:b0:e4:bf:22:62:21:04:77:
14:7f:e6:43:72:f7:bd:36:d8:3e:b9:cb:06:df:21:4b:1a:ef:
b1:5b:9b:0f:3a:0e:06:24:85:11:fd:0b:f9:c5:02:e9:b9:e1:
3b:f7:31:62:bc:c3:76:b0:07:b8:69:a6:40:49:77:95:94:5f:
2a:c8:aa:b7:a8:32:83:9c:10:ed:40:a2:f8:7b:26:e4:a3:7e:
cd:25:fc:41:61:7b:e0:14:fe:26:32:cc:bf:b8:7f:60:32:71:
ef:48:86:22:57:2e:49:38:57:93:01:91:e9:26:44:10:4d:e4:
a5:e0:ed:ad:5a:f5:0c:8c:74:46:c9:17:49:e0:04:6f:7b:b5:
53:78:05:74:9f:a1:01:92:d5:89:5e:d6:0f:c1:1f:a7:5d:6b:
ff:ad:2d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:28 2024 by rpki-client on console-ams.rpki-client.org