Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/hCoYCYg1pTbWtlIl_pnDnttEA9w.roa
File: hCoYCYg1pTbWtlIl_pnDnttEA9w.roa (raw, json)
Hash identifier: bCXWJA0EvDfOKu9wPf/r8jvDuELNcF9ZrmzFwAzh4rw=
Subject key identifier: 84:2A:18:09:88:35:A5:36:D6:B6:52:25:FE:99:C3:9E:DB:44:03:DC
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0185C9793BFB82262ADBADF9D66CE9DAAAAE
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/hCoYCYg1pTbWtlIl_pnDnttEA9w.roa
Signing time: Thu 19 Jan 2023 10:00:43 +0000
ROA not before: Thu 19 Jan 2023 10:00:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41782
IP address blocks: 151.237.16.0/24 maxlen: 24
151.237.17.0/24 maxlen: 24
151.237.18.0/24 maxlen: 24
151.237.19.0/24 maxlen: 24
151.237.30.0/24 maxlen: 24
151.237.31.0/24 maxlen: 24
151.237.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 20:55:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:79:3b:fb:82:26:2a:db:ad:f9:d6:6c:e9:da:aa:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 19 10:00:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=842a18098835a536d6b65225fe99c39edb4403dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:af:67:95:24:33:c9:a0:89:aa:03:a6:0a:37:
9d:46:b3:bf:d3:7b:7f:b8:01:99:f8:53:19:64:e8:
f1:e2:01:cc:20:75:22:e8:b7:7a:4f:c0:ac:32:c7:
c3:3e:18:b2:cc:28:af:22:93:d1:b9:46:05:cb:f2:
67:e6:32:28:34:b5:64:65:c9:50:f3:b6:f8:24:0e:
d4:2b:bb:26:62:44:06:be:8a:8d:40:39:78:45:6e:
01:d9:af:ee:82:46:9d:51:6e:66:85:0f:af:1b:c2:
08:1f:5c:0a:25:71:ea:7f:ed:90:aa:0b:4e:57:f4:
51:6c:9c:f8:f0:8c:17:bb:69:0d:cd:05:2e:3a:bf:
85:b5:5b:16:9d:a2:34:e4:78:f0:03:85:63:04:8c:
04:74:68:0b:4c:d7:fe:e0:98:d1:45:18:4e:26:6a:
79:9e:32:db:96:52:a3:7b:7d:de:b9:7f:b1:03:f2:
e6:6f:b2:24:ad:9d:58:cb:52:8f:03:e7:05:e9:ff:
01:89:fa:82:1e:11:3b:97:34:20:32:88:01:c3:1a:
40:6f:b1:6b:a4:22:38:58:cf:d3:50:8c:49:ef:34:
07:16:4a:ec:03:eb:3d:eb:d2:1d:5b:18:86:36:63:
7f:25:05:6b:85:2c:93:53:ee:c5:83:47:4b:82:d2:
64:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2A:18:09:88:35:A5:36:D6:B6:52:25:FE:99:C3:9E:DB:44:03:DC
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/hCoYCYg1pTbWtlIl_pnDnttEA9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.16.0/22
151.237.30.0-151.237.32.255
Signature Algorithm: sha256WithRSAEncryption
45:a9:d0:23:86:5a:e0:82:e2:b8:fc:f3:24:ae:a5:93:a1:5c:
60:6e:e8:80:e3:d6:4d:3f:75:35:0d:e3:6f:ea:6a:1d:4e:75:
bc:fa:37:62:fd:12:cd:66:d3:7f:7e:83:eb:19:16:eb:70:68:
1c:7a:d0:74:e1:a0:a7:f5:d8:0a:49:de:08:7f:ab:36:38:26:
28:a3:56:10:cb:f2:9f:37:21:84:d8:6c:92:0b:32:e1:a0:91:
49:9d:52:ed:d1:75:65:0c:61:3c:01:e1:5d:f5:35:6b:d3:b5:
96:e7:17:af:82:7c:46:6c:84:f4:86:5c:4a:c3:6e:eb:8d:b4:
91:77:6c:6b:16:c2:8c:f9:15:66:aa:82:30:0a:8b:2e:33:16:
8d:51:2e:b2:69:f1:7c:dd:d3:56:da:d6:90:c4:1d:9e:4d:e6:
d1:4b:7e:c1:75:45:c1:0b:21:04:50:50:08:4f:95:61:5d:f1:
35:e1:21:1d:64:81:70:d8:09:87:ba:94:49:b3:77:48:54:b4:
12:af:97:c0:55:12:08:6a:b6:a1:3c:d5:cc:28:fb:54:04:4d:
1e:cd:db:76:dd:4a:57:24:b5:28:14:c6:32:51:18:56:da:2c:
9c:74:af:2e:00:13:e9:28:b0:2e:c6:e8:c7:6e:08:0f:97:68:
06:41:02:8a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org