Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/3HuoQlVIKPsze2od-ENdmDzHscc.roa
File: 3HuoQlVIKPsze2od-ENdmDzHscc.roa (raw, json)
Hash identifier: 74za5Lv3svACdNK/PosiWEg3zu4Mtm/3uO0yzlj0lXg=
Subject key identifier: DC:7B:A8:42:55:48:28:FB:33:7B:6A:1D:F8:43:5D:98:3C:C7:B1:C7
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246E2730760236FEFA5AF9FC95612D3
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/3HuoQlVIKPsze2od-ENdmDzHscc.roa
Signing time: Mon 02 Jan 2023 11:38:46 +0000
ROA not before: Mon 02 Jan 2023 11:38:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60916
IP address blocks: 185.72.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:e2:73:07:60:23:6f:ef:a5:af:9f:c9:56:12:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc7ba842554828fb337b6a1df8435d983cc7b1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:f8:cc:70:1e:49:c5:b9:8f:e2:55:a5:51:
b0:4f:ac:0a:a4:12:ed:ba:66:6f:3f:da:e9:06:b4:
d6:8d:b3:4f:8d:5d:b0:75:53:6d:c3:bd:c5:0e:d1:
df:a5:6a:43:ac:e7:f6:a3:04:23:56:a1:23:e3:b4:
c2:1e:3d:8f:6c:f4:5a:db:ce:7d:d2:0d:73:16:4d:
58:e7:77:7d:37:05:38:64:7f:ea:83:5a:9e:c6:29:
2f:f0:c5:b1:fe:84:3a:83:6f:3d:bd:12:be:35:c7:
2a:55:f6:b8:d2:8c:f9:24:21:db:e2:08:68:8d:6f:
09:8b:a6:8f:0b:f9:cd:23:07:f9:aa:9c:90:5a:7b:
ee:61:3b:6d:79:21:20:54:b5:92:d5:13:8c:bf:d7:
8e:be:9a:5d:28:b6:39:df:a4:8d:a2:27:9e:13:f1:
97:76:9f:a5:3e:ab:c8:7a:ef:61:d4:f8:1e:99:64:
64:36:d5:0b:dd:3c:1b:5c:86:77:6f:57:75:63:33:
fe:7d:45:d0:18:e7:7e:e5:c0:05:02:f5:c7:06:1d:
9f:a3:d1:8a:02:50:0c:3a:ee:c9:55:4b:bd:5f:ce:
b4:e6:a6:73:1b:be:0e:29:bd:9e:85:69:3f:82:ee:
20:8a:8a:20:49:31:67:65:24:3a:a6:32:65:24:87:
3a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:7B:A8:42:55:48:28:FB:33:7B:6A:1D:F8:43:5D:98:3C:C7:B1:C7
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/3HuoQlVIKPsze2od-ENdmDzHscc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.56.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:ff:3a:d3:c9:32:06:9a:9b:9b:56:f7:04:68:5d:54:8d:0b:
46:41:6b:0a:1f:91:d0:bd:66:8e:3d:fe:c7:b0:d6:81:45:d4:
c2:de:c8:25:a0:9c:d8:69:b2:9b:3f:8f:72:37:cf:7f:01:2b:
b3:98:61:c0:c2:47:b5:67:13:c3:c0:48:a6:18:05:8a:4d:36:
f6:49:d1:24:26:0e:bc:8e:87:e4:39:9f:60:98:3a:47:21:f8:
14:01:49:2d:7a:f2:fb:cf:61:ad:79:0e:4c:48:7e:53:67:7f:
a2:2e:22:0b:4f:4b:f4:cd:dd:0f:18:e9:58:93:2d:a8:b8:11:
1b:9a:08:97:14:1e:54:f0:27:c8:c5:4b:29:d5:0e:00:d1:53:
0f:c8:4c:8b:75:28:3f:fc:f7:f1:18:c2:48:06:01:46:da:a3:
c4:56:77:93:89:21:35:c8:97:1d:a8:b3:4d:ef:cb:22:e7:85:
7f:e3:1b:bc:9d:67:b5:d8:b9:68:84:a7:b0:37:12:78:46:c8:
8d:b4:85:37:59:66:08:47:40:b1:61:ab:8e:47:16:b8:f2:6e:
23:73:57:f9:81:b3:90:15:c6:a0:78:43:b5:bf:9b:a1:fb:49:
17:e8:53:fd:78:44:ae:6a:77:b1:29:82:6d:77:09:ab:d6:da:
3a:ce:d4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org