Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/_HzHMaOvuiwHdTqh6Yu43QWdTr8.roa
File: _HzHMaOvuiwHdTqh6Yu43QWdTr8.roa (raw, json)
Hash identifier: FAZsm5Q+P8YVN/eFs+EgmrwVo3B2WCHniHpwIbElwn0=
Subject key identifier: FC:7C:C7:31:A3:AF:BA:2C:07:75:3A:A1:E9:8B:B8:DD:05:9D:4E:BF
Certificate issuer: /CN=87c37d035d95fefba1d47f98b9ff4973f17df6cd
Certificate serial: 01857315F4D21720F2452F77FA4B7AE030C4
Authority key identifier: 87:C3:7D:03:5D:95:FE:FB:A1:D4:7F:98:B9:FF:49:73:F1:7D:F6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8N9A12V_vuh1H-Yuf9Jc_F99s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/_HzHMaOvuiwHdTqh6Yu43QWdTr8.roa
Signing time: Mon 02 Jan 2023 15:24:56 +0000
ROA not before: Mon 02 Jan 2023 15:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200286
IP address blocks: 185.59.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f4:d2:17:20:f2:45:2f:77:fa:4b:7a:e0:30:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c37d035d95fefba1d47f98b9ff4973f17df6cd
Validity
Not Before: Jan 2 15:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc7cc731a3afba2c07753aa1e98bb8dd059d4ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:22:86:8d:ea:24:96:c2:39:f6:ca:d2:b8:a0:
c3:4f:27:3b:02:aa:d8:3e:a1:64:9a:10:2b:7c:8b:
2f:9e:8d:40:39:da:f1:02:39:de:bc:5e:65:62:c5:
25:8a:55:4e:77:d2:54:aa:a7:83:a5:2e:8a:64:46:
2a:76:50:2f:78:a8:ca:9d:2a:3f:ba:ff:4f:4c:c3:
e9:9c:e5:b0:7f:83:21:ac:f9:84:3b:d7:1b:46:78:
46:de:86:ac:76:11:e8:52:41:11:d6:8f:56:fe:71:
68:69:96:fa:56:a2:6f:e2:01:99:23:ca:6c:83:13:
7d:f2:98:33:6a:64:fa:7f:d6:fb:24:09:8a:ac:4f:
aa:b7:21:33:a5:3a:dc:59:05:be:dc:3d:02:71:47:
a1:9e:bc:f2:8a:c3:9a:a6:00:df:59:c4:9c:2a:ce:
83:b0:80:4f:f7:72:50:f6:63:f2:78:9c:e7:9e:27:
69:7d:3e:5f:5f:07:1f:82:d3:1a:39:67:68:5c:81:
e4:f7:7f:64:08:db:78:13:ae:95:20:b2:db:af:5e:
35:d2:ed:09:c8:b2:6f:92:a0:d2:4a:83:71:74:8c:
b5:27:ba:c9:74:27:9f:51:3a:f3:8e:db:2d:6d:d9:
f8:bd:d9:99:ac:98:86:38:60:8b:7b:29:0c:15:e6:
e8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7C:C7:31:A3:AF:BA:2C:07:75:3A:A1:E9:8B:B8:DD:05:9D:4E:BF
X509v3 Authority Key Identifier:
keyid:87:C3:7D:03:5D:95:FE:FB:A1:D4:7F:98:B9:FF:49:73:F1:7D:F6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8N9A12V_vuh1H-Yuf9Jc_F99s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/_HzHMaOvuiwHdTqh6Yu43QWdTr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ef060-f473-4043-b8a2-e1b7c7649fa3/1/h8N9A12V_vuh1H-Yuf9Jc_F99s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.52.0/22
Signature Algorithm: sha256WithRSAEncryption
70:8f:a7:56:fa:20:18:ff:8a:2a:59:dc:5c:1c:14:1e:bd:e2:
53:9d:3c:79:88:7a:d4:6b:ea:79:f9:7b:16:b7:8f:9b:87:b8:
a2:40:d2:5e:a1:4d:26:92:e4:06:7d:97:e0:5a:da:43:23:53:
94:76:25:a9:6a:73:bd:96:6e:f2:f8:4a:71:93:09:99:71:61:
fa:98:25:bc:0b:56:8c:26:d6:9a:11:dd:d5:a8:ff:a9:7f:62:
ce:6f:ee:6d:3e:83:97:20:8c:f2:ef:7a:7f:07:0d:91:42:e0:
5d:8b:34:05:3b:52:ee:40:59:df:0a:cc:9e:bb:58:fe:7e:4d:
a1:d3:7c:57:9e:35:83:d2:d0:1f:a3:5f:45:67:df:dd:88:52:
48:e1:fd:86:eb:3c:22:a5:a5:71:7b:0a:33:9d:f1:8a:37:e4:
68:6c:cd:fd:a2:ea:59:2a:7a:49:33:af:64:89:e5:6b:4d:c3:
16:87:fc:61:ca:75:eb:8a:67:f9:09:c5:5a:85:7e:31:34:c1:
bb:b8:ae:d9:67:44:67:bf:dd:9f:f5:64:be:1c:28:7a:1f:57:
8d:76:24:84:24:71:60:3b:c6:12:8a:85:13:ed:8c:e5:60:92:
4a:44:01:39:84:a2:a9:d3:45:25:27:15:c1:3d:a9:93:3d:b6:
a4:e8:df:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org