Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HJeJPIs3uWFpbSNr-n-5GV8ixug.roa
File: HJeJPIs3uWFpbSNr-n-5GV8ixug.roa (raw, json)
Hash identifier: 0HiKWswjHn1qMBwAGdWN16+QBxULxMRkfNsXmDiz+1U=
Subject key identifier: 1C:97:89:3C:8B:37:B9:61:69:6D:23:6B:FA:7F:B9:19:5F:22:C6:E8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01869C59076AA8CE67511763EA4291F230D9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HJeJPIs3uWFpbSNr-n-5GV8ixug.roa
Signing time: Wed 01 Mar 2023 08:45:25 +0000
ROA not before: Wed 01 Mar 2023 08:45:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 185.251.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jul 2023 15:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:59:07:6a:a8:ce:67:51:17:63:ea:42:91:f2:30:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 1 08:45:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c97893c8b37b961696d236bfa7fb9195f22c6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:12:a2:e0:72:c3:0e:90:cf:aa:31:c3:15:44:
d6:b7:e3:7c:22:36:3d:6b:10:0b:a0:d7:5e:b4:54:
5a:8b:6b:47:0d:38:be:73:40:b5:bc:be:1d:f0:87:
3a:19:78:8d:3d:75:8c:7b:38:20:c2:da:0d:e0:63:
57:c4:36:bf:ec:16:a6:bf:07:82:35:ac:25:b7:49:
56:a6:3a:cc:1c:f3:f2:6c:50:d8:b4:02:ca:5d:5b:
a0:e0:20:a6:01:01:33:2c:e5:93:3b:cc:b2:ba:da:
42:bf:12:4d:0a:47:4f:b6:d9:33:19:45:37:0e:e8:
0a:55:38:31:b2:89:4d:12:5f:da:7f:9f:27:10:ee:
07:31:ab:9e:55:2c:28:c4:bc:91:4b:a8:1e:5b:86:
61:81:bf:21:5c:5c:0d:96:ca:3c:75:85:b1:d9:f2:
4d:28:1a:47:36:b5:20:01:b4:d4:75:be:78:45:94:
88:1d:b2:b1:46:fd:80:56:54:ed:a9:89:c1:5b:2b:
1d:29:f9:7e:c0:40:41:74:5f:50:20:57:16:35:57:
38:e3:5a:7d:b3:b7:be:db:d3:ea:f2:43:ef:cb:6f:
9a:21:01:21:c0:1f:0c:ab:ac:c3:b9:9f:a3:48:89:
db:8b:92:bf:18:b1:fe:f3:ef:aa:b6:87:6f:2c:d5:
40:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:97:89:3C:8B:37:B9:61:69:6D:23:6B:FA:7F:B9:19:5F:22:C6:E8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HJeJPIs3uWFpbSNr-n-5GV8ixug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.228.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:8f:e5:91:53:a2:09:bd:0e:ed:6d:39:0f:00:ab:70:47:0b:
12:5f:d3:ab:e9:04:a6:d5:c0:7c:a7:11:fb:44:dd:66:08:a4:
14:b9:ad:19:6f:0a:3e:ea:a9:12:0b:01:4f:10:19:9d:eb:3c:
52:7b:c5:db:93:b8:99:b4:b0:29:0a:d5:c1:9d:4d:a9:d6:6b:
22:4f:80:a8:52:e6:f9:a0:78:a2:14:3a:1f:a9:71:b6:9a:8c:
63:18:1f:08:e2:ee:1a:60:ac:81:f2:2b:a0:57:fe:58:7e:dd:
f1:a7:ab:96:50:92:12:30:27:e8:e7:13:15:86:04:ca:25:9c:
51:c8:d5:56:1f:d1:2a:5a:92:b8:c6:cf:d6:f0:33:ca:78:21:
1d:d1:d8:88:8b:5a:e4:c2:79:f9:0b:86:82:b3:9b:94:7f:bd:
04:2b:25:48:f2:ba:83:be:b1:20:71:cd:c6:38:a1:29:90:56:
bb:f3:a8:15:2a:51:d1:5d:3e:1a:83:cd:7a:15:6d:22:6c:ab:
aa:d0:a9:e4:3f:42:a3:3e:17:1d:36:51:3d:20:d1:c4:63:a9:
f9:9b:ad:1e:7f:3a:5d:d8:33:00:cb:4c:1c:de:ba:a8:19:f5:
6e:46:0c:18:e3:f8:d4:e7:31:bf:59:ab:d5:77:bd:91:51:d6:
41:2f:2f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org