Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HuvWlS-dD3wid-7MFeKCAbv_E70.roa
File: HuvWlS-dD3wid-7MFeKCAbv_E70.roa (raw, json)
Hash identifier: eGeVhI77t2F/GfxIilb4wY/Yjicb3bvkDu0TskYJPQA=
Subject key identifier: 1E:EB:D6:95:2F:9D:0F:7C:22:77:EE:CC:15:E2:82:01:BB:FF:13:BD
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B3CF403D2A62B5AC6130BD02B144B29DF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HuvWlS-dD3wid-7MFeKCAbv_E70.roa
Signing time: Tue 17 Oct 2023 09:25:06 +0000
ROA not before: Tue 17 Oct 2023 09:25:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 185.209.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3c:f4:03:d2:a6:2b:5a:c6:13:0b:d0:2b:14:4b:29:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 17 09:25:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1eebd6952f9d0f7c2277eecc15e28201bbff13bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6b:85:17:a7:6d:b6:4b:38:f7:f5:a2:53:f8:
87:2b:84:4d:ac:84:a8:d3:9b:9b:93:91:bf:7c:a7:
6e:0e:0e:5b:a6:00:2a:21:d6:2c:27:9a:1b:73:fe:
d3:ae:56:a8:b0:34:98:61:cf:d7:8f:80:37:16:5c:
76:41:7c:18:15:ab:8c:cc:ba:02:50:7b:dd:07:04:
64:9b:9e:9a:10:f5:f9:2c:52:ae:07:82:b9:a0:c8:
71:f8:28:32:4f:76:c6:f9:54:6d:89:be:c9:bb:17:
22:df:df:87:e1:6f:1a:92:93:26:9a:89:03:e4:1f:
26:44:c7:71:5b:a6:a7:b6:54:f8:a5:53:ce:4e:9b:
46:1b:25:bb:26:cb:52:63:e1:f7:10:aa:4a:02:96:
5e:95:6a:ba:04:c6:ca:57:ef:15:b4:0c:6d:ae:59:
2e:8c:4c:5f:fc:dd:75:24:66:7b:ce:dd:87:5d:63:
a5:5b:db:9a:05:eb:a2:be:e9:65:dc:d4:24:4e:cf:
5f:fe:d8:00:70:2b:2e:33:40:50:c4:07:e1:ab:83:
19:a4:58:22:ee:05:94:1f:50:1b:1b:12:59:21:1a:
8c:8c:2d:b0:05:73:4e:8a:a0:b4:22:42:3c:8c:fe:
c9:58:bc:d2:54:b7:0e:68:96:8c:c1:a0:ab:da:ca:
7c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EB:D6:95:2F:9D:0F:7C:22:77:EE:CC:15:E2:82:01:BB:FF:13:BD
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/HuvWlS-dD3wid-7MFeKCAbv_E70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.75.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:11:a9:28:db:5e:cb:33:db:ea:b5:96:aa:28:f8:dc:13:3f:
a1:44:27:39:1d:d7:62:66:1e:e1:b0:5e:04:b7:98:70:9c:2c:
4c:36:da:63:45:a4:bf:87:c0:20:2c:d9:0d:57:c5:b1:28:70:
aa:0f:63:ad:6b:e6:22:02:36:d3:e9:46:e0:80:7f:85:9a:a7:
90:0f:ea:d6:4a:c4:21:b1:52:89:35:cf:55:e2:c9:5b:c6:a0:
1a:c1:79:76:0e:b8:16:51:15:0d:f3:36:57:13:7b:f3:2f:26:
38:d9:e9:c2:5a:78:7d:7e:99:1d:fb:ae:2a:79:c4:0d:6b:65:
f6:1b:50:a8:c9:4a:db:04:2a:98:79:6c:75:b2:a2:74:e9:da:
1c:a8:d6:fa:c5:e1:b5:65:d3:af:dc:31:d5:8f:33:8c:8c:64:
67:97:b9:00:de:ba:e5:0f:13:30:0a:00:c5:68:20:18:e6:c4:
f5:77:cc:3c:8b:fa:68:4c:d6:a9:fe:0a:a3:12:cb:67:e5:5a:
6e:90:3f:e9:29:e8:f8:ae:6b:9f:c3:7f:87:e8:b3:c1:2e:9c:
9c:72:78:73:0e:5b:1f:15:45:58:7d:73:78:8e:c3:e6:0b:14:
d6:0c:e6:90:6c:9e:88:13:43:ae:31:3e:b5:4e:75:60:04:6f:
b3:6f:72:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org