Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HYEALRGK-7FIz_DlZV8nzuH6fV0.roa
File: HYEALRGK-7FIz_DlZV8nzuH6fV0.roa (raw, json)
Hash identifier: zbE6ALNh/208iO02Faqh5Eb6Tb2+BeCe0NtdTOyTttc=
Subject key identifier: 1D:81:00:2D:11:8A:FB:B1:48:CF:F0:E5:65:5F:27:CE:E1:FA:7D:5D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A5FDD2C4254CF6AC6C3ED1DC54D14C669
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HYEALRGK-7FIz_DlZV8nzuH6fV0.roa
Signing time: Mon 04 Sep 2023 11:04:04 +0000
ROA not before: Mon 04 Sep 2023 11:04:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 185.230.52.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.223.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 11:45:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:dd:2c:42:54:cf:6a:c6:c3:ed:1d:c5:4d:14:c6:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 4 11:04:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d81002d118afbb148cff0e5655f27cee1fa7d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ef:e7:3a:d5:6e:d9:73:b6:cc:89:0e:8e:40:
1b:f1:72:c6:19:c1:1a:7d:59:2b:47:41:b3:a9:cd:
41:54:4b:e4:dd:65:f6:24:0d:cf:f3:6a:3b:17:49:
01:28:8f:88:c3:31:84:d7:9f:32:48:c6:26:ae:a0:
87:ea:00:44:76:c4:f1:e4:1e:ac:47:68:49:ff:0c:
91:a1:7a:56:e7:78:0c:f9:6e:d2:4e:36:22:43:6c:
74:73:94:fc:ba:b3:f3:3a:cf:bd:e7:44:11:fe:f1:
a9:1b:08:23:35:75:1d:9e:59:84:59:58:a7:f6:50:
2b:e6:a9:3d:02:be:b4:3b:5d:88:76:ed:a3:05:2a:
00:15:d7:bd:58:30:33:c9:58:2e:d2:e9:5a:4e:99:
b0:c4:a9:c4:58:d8:19:e1:d4:07:4a:b9:c7:91:ed:
03:54:61:b6:fe:cc:f7:95:5a:6e:45:82:da:4a:02:
36:cf:52:da:39:99:89:64:35:b9:33:ba:8e:5d:e1:
34:f6:bd:5a:1c:6a:50:2b:14:94:8f:16:b8:38:ee:
74:84:ed:b9:52:ea:dc:42:b7:ed:d7:e4:49:ac:2a:
86:bb:1f:c5:96:40:5d:79:cf:a5:b1:5b:b2:85:ce:
3a:fc:6a:ef:ee:65:4b:18:78:78:41:9b:94:70:ec:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:81:00:2D:11:8A:FB:B1:48:CF:F0:E5:65:5F:27:CE:E1:FA:7D:5D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HYEALRGK-7FIz_DlZV8nzuH6fV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.23.0/24
185.223.79.0/24
185.230.52.0/24
Signature Algorithm: sha256WithRSAEncryption
97:22:b5:af:19:82:1f:11:64:30:18:be:e5:43:7e:6e:46:5c:
4d:ef:de:e6:45:5b:3c:a0:b9:7e:13:24:15:4f:f8:ba:96:86:
58:8b:de:c9:9b:36:d1:a6:d8:bf:76:a2:28:61:29:bf:30:f6:
f2:73:54:ce:41:3d:71:17:bc:73:6e:17:97:fb:15:0c:95:f4:
72:89:2e:71:2f:b2:4e:e1:cd:9f:87:5b:15:64:dc:0c:fd:68:
83:98:88:79:9a:93:eb:6d:cc:22:43:e0:fd:76:43:cc:21:fa:
8f:94:47:46:3b:12:66:ea:e9:37:3a:4e:f1:f7:ce:7e:8d:e7:
e9:66:95:fb:df:90:72:a1:8a:f0:6b:dc:44:4b:ca:74:f3:be:
63:e4:c9:39:a7:95:73:8f:ff:63:67:d7:68:28:eb:19:f0:f8:
d4:15:62:10:ec:c3:56:60:1c:f6:df:19:9b:5c:8a:60:63:2d:
7d:46:e3:55:de:2d:79:d4:80:6b:8a:1d:78:cd:89:30:78:ec:
a5:87:cd:60:2c:cf:18:2c:c1:d6:65:b6:62:63:65:4e:4b:97:
01:55:37:7d:2f:4e:f0:45:0e:c5:6b:85:64:33:c8:a2:05:89:
6e:d1:a7:55:bb:9e:e3:1a:41:95:26:12:07:fb:75:7f:e4:82:
1b:81:e3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org