Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hlhWiE1Yd-3j2pFxm1O9SI02bNU.roa
File: hlhWiE1Yd-3j2pFxm1O9SI02bNU.roa (raw, json)
Hash identifier: +x1ry2AK1ZU/HRjCz8XNlsEIuqoOxj3y9QhJd2D6FFI=
Subject key identifier: 86:58:56:88:4D:58:77:ED:E3:DA:91:71:9B:53:BD:48:8D:36:6C:D5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185E470277561EB9F10F573F81F3D2F146E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hlhWiE1Yd-3j2pFxm1O9SI02bNU.roa
Signing time: Tue 24 Jan 2023 15:40:33 +0000
ROA not before: Tue 24 Jan 2023 15:40:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 185.108.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 14:42:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:70:27:75:61:eb:9f:10:f5:73:f8:1f:3d:2f:14:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 24 15:40:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=865856884d5877ede3da91719b53bd488d366cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0e:4a:4b:fa:a4:38:88:7c:c8:b9:f1:55:3c:
cf:64:e2:eb:c1:22:7f:fb:70:70:d3:cc:20:0b:40:
df:c5:0b:2f:7b:33:6e:c1:f0:b3:35:27:5a:91:8e:
ca:d2:8c:8a:eb:f2:d2:a3:f7:35:32:03:18:11:0b:
f9:d1:fd:f2:da:31:c7:8d:53:6f:47:47:ca:77:c5:
4f:bc:22:f8:25:0c:fe:cc:1a:ea:9a:aa:30:25:af:
ab:44:55:a0:1f:3e:ac:8d:e8:d8:b3:30:8e:16:59:
06:b1:03:59:be:65:be:fa:f3:a3:5b:9e:9c:17:aa:
3e:70:3d:8e:24:44:9e:b2:af:b4:a8:55:3e:68:fc:
f0:46:44:1d:db:96:9d:86:27:b7:c6:c5:6f:8a:fb:
db:66:32:29:49:33:31:57:7b:ec:f2:54:05:ba:10:
72:b9:9a:a6:8d:94:5e:bc:fa:2e:f5:7b:f4:39:fb:
79:55:5b:f8:fe:45:f5:36:05:ee:4e:85:0f:b4:81:
0a:6c:2f:92:42:35:eb:48:74:7d:14:1a:94:ab:dd:
09:e4:0f:db:3a:13:8a:26:ad:48:ce:3a:8b:a9:59:
74:4c:dd:b1:75:19:dc:20:4b:4d:a9:0d:3a:12:08:
8b:1e:70:21:95:4d:b9:99:39:3a:4a:ea:5a:96:38:
c6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:58:56:88:4D:58:77:ED:E3:DA:91:71:9B:53:BD:48:8D:36:6C:D5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hlhWiE1Yd-3j2pFxm1O9SI02bNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.205.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1b:03:d4:b3:f9:b0:0b:5d:94:58:3d:c4:64:8b:9e:1d:ab:
a5:a6:f4:0c:1b:f6:d8:52:84:a1:b2:7b:76:cc:3e:2a:e8:d2:
9a:44:74:64:16:0f:ab:1e:b4:2d:ee:18:ce:cb:27:82:f6:c5:
ea:db:ac:44:ee:e4:87:ad:02:00:67:c7:9e:01:7a:aa:07:8d:
2e:a9:74:76:64:31:1a:67:32:37:7f:6b:f3:aa:29:75:84:72:
3f:1a:68:60:10:b9:03:d3:44:7f:db:7e:58:ac:ee:6d:57:2f:
22:d9:98:29:9e:50:6d:93:0c:20:7c:a0:58:7b:94:5d:83:53:
b8:0d:63:7d:7f:f6:8a:7a:13:d8:1a:e9:c8:c4:a9:96:3e:f3:
8a:5d:19:c4:b2:c2:33:f8:80:5e:0f:ab:80:66:36:48:58:b5:
ae:76:b1:97:ec:5b:b2:28:88:5e:e0:af:be:b6:9f:e1:15:85:
a8:1d:37:74:9c:82:d1:3c:47:a7:2a:26:17:e6:ee:9d:03:a7:
f0:0b:30:5c:36:f8:2c:15:b5:87:e5:ef:28:a5:dc:46:eb:c1:
53:48:17:c2:1a:4e:be:9d:07:86:40:39:3e:96:9d:f9:5d:d5:
ee:1f:9e:38:75:50:48:b2:65:f1:27:9b:25:ab:b1:e0:d3:ce:
26:21:44:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org