Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/HZEf9R1JSkdhFu-86CHe3tMZK58.roa
File: HZEf9R1JSkdhFu-86CHe3tMZK58.roa (raw, json)
Hash identifier: tBe1ZNfTQHwfxO3PBB+Ylzmr5Z1rnp5+a0LrQUgiSVA=
Subject key identifier: 1D:91:1F:F5:1D:49:4A:47:61:16:EF:BC:E8:21:DE:DE:D3:19:2B:9F
Certificate issuer: /CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Certificate serial: 0192C01641A97BCCEF10E7DF0F7C2258EB20
Authority key identifier: FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/HZEf9R1JSkdhFu-86CHe3tMZK58.roa
Signing time: Thu 24 Oct 2024 19:52:17 +0000
ROA not before: Thu 24 Oct 2024 19:52:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204104
IP address blocks: 185.49.104.0/24 maxlen: 24
185.118.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Nov 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c0:16:41:a9:7b:cc:ef:10:e7:df:0f:7c:22:58:eb:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Validity
Not Before: Oct 24 19:52:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d911ff51d494a476116efbce821deded3192b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:30:f3:9c:e2:90:e4:16:9b:d7:30:a8:6c:6c:
21:4b:75:c3:7a:4a:be:2b:6e:8c:78:83:80:c5:17:
f8:c6:3c:27:02:ed:2f:37:24:46:80:0e:6e:9b:67:
c9:33:e7:30:99:0b:4d:6e:d6:fb:6f:4e:51:f0:ad:
79:25:40:ba:73:00:f3:b9:33:87:73:07:99:0d:c7:
b0:0c:af:3a:a6:97:30:4e:c5:58:76:59:1b:b3:04:
3f:46:73:f0:bb:8f:f2:9a:eb:68:95:48:b8:1f:4d:
43:b2:b2:fc:5e:e3:94:c0:54:73:c5:eb:1e:a1:28:
86:46:3f:3f:e1:11:78:8f:99:56:6b:67:d5:6c:a4:
00:55:d1:49:80:f1:28:25:78:0c:d4:a5:1f:25:80:
71:fb:14:d5:27:b3:90:e4:73:1f:e9:ae:af:ac:32:
be:3e:10:a6:a3:6d:dc:02:5b:0e:cb:71:2b:10:91:
8d:b3:30:0e:89:b6:2b:37:05:cb:44:2e:78:3e:92:
cd:76:0f:aa:bd:11:9b:1b:62:15:e9:a2:c8:f9:01:
a6:38:18:95:65:4c:8d:72:68:6c:1b:a0:b9:78:5d:
5b:00:2f:ac:1a:1d:18:dc:0b:6d:3b:4d:ed:8a:1d:
25:83:6e:cf:99:92:bc:7d:62:f8:19:fa:32:1d:c4:
e0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:91:1F:F5:1D:49:4A:47:61:16:EF:BC:E8:21:DE:DE:D3:19:2B:9F
X509v3 Authority Key Identifier:
keyid:FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/HZEf9R1JSkdhFu-86CHe3tMZK58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/1-j0LwRsp2kStVzBMP4VohwoBnCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.104.0/24
185.118.12.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:92:db:3e:1a:aa:31:15:e9:b3:e7:69:4a:ad:a2:7f:18:ab:
eb:91:24:08:d3:41:3a:f2:95:e2:23:b9:82:c3:2c:77:83:2a:
d7:bb:c0:fa:bc:8b:64:27:eb:33:e9:86:29:ba:58:28:db:47:
a5:22:dd:79:10:65:ff:fb:fe:de:a3:5d:ea:8d:be:b4:e3:ae:
74:55:68:f5:29:94:e0:71:87:d1:b6:3f:cd:64:fe:b7:fd:91:
00:7e:be:71:41:1f:bb:59:8d:de:c4:54:15:0b:96:a1:68:50:
02:30:eb:56:29:22:8c:b6:a4:f5:e0:55:2d:4a:b3:1b:04:55:
ff:63:38:89:2e:76:2f:41:ca:71:c3:86:43:f4:7e:9b:1a:d2:
5e:cf:25:e0:b6:8d:0f:3b:71:0f:be:08:9f:13:a4:61:06:9e:
4e:77:24:cf:d3:89:b0:6a:c7:be:89:59:79:4b:3b:c7:ad:57:
14:a2:74:4c:a9:67:4c:b7:36:f4:26:5a:4b:3a:78:b5:e0:c8:
2f:6e:43:16:c3:36:b3:ea:3e:f6:87:ac:2a:a6:55:49:eb:bd:
8e:f9:c4:9d:cf:5d:6b:fe:0a:98:16:7e:45:94:f1:d6:38:3e:
bb:59:0f:bf:98:e2:6d:29:f6:62:86:ed:fc:9d:46:24:ab:17:
b7:ba:a0:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 16:46:51 2024 by rpki-client on console-fra.rpki-client.org