Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/hfb1fmVZwcJyYG6yOJLKxCw5YrE.roa
File: hfb1fmVZwcJyYG6yOJLKxCw5YrE.roa (raw, json)
Hash identifier: BEd5HjfqQmQdZcOlvAVcOYeZV3BwxLH8XX3kKnK/GAA=
Subject key identifier: 85:F6:F5:7E:65:59:C1:C2:72:60:6E:B2:38:92:CA:C4:2C:39:62:B1
Certificate issuer: /CN=4100e4b4a97882c1798c470e3abd805e325dd595
Certificate serial: 01856C6F2F83CCA34F061C967A6609ADF869
Authority key identifier: 41:00:E4:B4:A9:78:82:C1:79:8C:47:0E:3A:BD:80:5E:32:5D:D5:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQDktKl4gsF5jEcOOr2AXjJd1ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/hfb1fmVZwcJyYG6yOJLKxCw5YrE.roa
Signing time: Sun 01 Jan 2023 08:25:03 +0000
ROA not before: Sun 01 Jan 2023 08:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28878
IP address blocks: 185.72.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:2f:83:cc:a3:4f:06:1c:96:7a:66:09:ad:f8:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4100e4b4a97882c1798c470e3abd805e325dd595
Validity
Not Before: Jan 1 08:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85f6f57e6559c1c272606eb23892cac42c3962b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7f:b1:70:13:9c:30:54:14:d6:fb:7d:7c:9a:
98:27:90:ed:52:0f:af:12:00:78:8a:ee:76:ad:28:
0e:e0:3c:71:b1:b2:e3:73:34:11:5f:62:5b:ce:4e:
e0:32:c2:ab:b0:dc:e2:ed:f8:77:be:e2:89:08:51:
89:e7:b4:65:6e:ee:d7:4e:d4:93:bb:6f:8f:ca:5e:
f4:59:a2:67:92:6b:f9:21:f1:22:d1:85:c3:81:0d:
d9:74:4b:d0:0e:b5:24:ba:16:ae:33:88:44:1a:df:
ec:ad:28:73:e1:a2:9a:b7:ca:6f:5d:0d:19:8d:26:
b4:be:45:65:6b:81:a3:22:4a:77:88:d8:04:43:be:
84:1c:cf:60:98:28:d0:e6:be:d3:f1:61:bc:94:46:
2d:d1:47:54:9b:53:71:86:27:ec:24:55:9a:df:07:
1e:6f:95:30:14:e3:6c:2f:5a:49:4d:53:06:16:b8:
6e:3b:4f:2f:72:94:f6:f5:39:79:ed:49:d2:8a:85:
91:a8:04:42:c7:d0:8f:ca:59:3e:7b:83:82:b5:d8:
4e:6d:9e:21:7a:1a:eb:bd:25:2d:ba:d5:6a:d3:75:
16:7f:6a:d9:0c:aa:36:98:d8:26:ed:b2:61:d4:45:
20:25:33:4e:2b:b1:19:92:ea:3b:f1:54:91:0f:65:
6f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F6:F5:7E:65:59:C1:C2:72:60:6E:B2:38:92:CA:C4:2C:39:62:B1
X509v3 Authority Key Identifier:
keyid:41:00:E4:B4:A9:78:82:C1:79:8C:47:0E:3A:BD:80:5E:32:5D:D5:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQDktKl4gsF5jEcOOr2AXjJd1ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/hfb1fmVZwcJyYG6yOJLKxCw5YrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/QQDktKl4gsF5jEcOOr2AXjJd1ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.132.0/22
Signature Algorithm: sha256WithRSAEncryption
19:e5:5b:95:5d:ff:bb:de:be:e1:31:c0:ec:f4:db:50:ae:34:
8a:41:0f:c4:d0:30:1d:18:4d:06:6a:4b:7e:42:9d:14:eb:eb:
03:e8:38:f9:02:49:63:3f:46:f6:f3:f1:11:00:95:65:d5:ff:
4e:f9:d6:6a:eb:5a:37:b1:83:f8:45:a2:46:12:69:3e:1f:33:
c5:6e:af:43:c9:3d:b1:10:19:77:2f:d8:1b:21:11:bc:e9:dc:
b8:e7:b0:2a:00:7d:ec:52:c0:a4:a4:af:84:40:70:19:4c:0b:
7d:91:51:33:82:cb:6f:7a:23:21:79:50:76:a0:53:fc:03:ac:
7f:ed:9f:cb:e1:07:82:f2:7b:d6:66:40:45:6f:0d:0d:dd:09:
9e:a6:75:03:70:dd:4e:ee:b8:51:a2:18:ed:b5:ec:b8:bf:fb:
b0:67:11:5e:8a:37:40:35:f2:81:2d:fd:8e:1f:46:dc:a1:ad:
fd:4f:49:9f:68:8d:2c:66:38:ff:ba:4d:1d:05:0b:d9:33:17:
aa:f2:65:30:f1:d6:1f:b7:8a:f7:a0:0e:90:61:74:d0:07:fd:
59:bc:a7:2a:fc:24:39:a7:2b:09:1f:59:b4:5a:98:3f:aa:2a:
56:d1:69:48:d4:9c:51:41:da:53:55:42:da:c1:e2:78:e2:67:
d5:06:e3:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:13 2024 by rpki-client on console-ams.rpki-client.org