Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/dc43fb-4656-4af9-aad2-ee28a65c8a22/1/hH_Lzrp97XjsS5lg1VmL1oD_5ts.roa
File: hH_Lzrp97XjsS5lg1VmL1oD_5ts.roa (raw, json)
Hash identifier: 3zzTLuu0oLBHECIdbb1ZFyQ+LqI9BBbS6HIocKY8WYQ=
Subject key identifier: 84:7F:CB:CE:BA:7D:ED:78:EC:4B:99:60:D5:59:8B:D6:80:FF:E6:DB
Certificate issuer: /CN=37552e9c964de6ff54e099c71155c1a1dec8a730
Certificate serial: 01856F9DB3BF56B4927EB1E095D89718B540
Authority key identifier: 37:55:2E:9C:96:4D:E6:FF:54:E0:99:C7:11:55:C1:A1:DE:C8:A7:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1UunJZN5v9U4JnHEVXBod7IpzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/dc43fb-4656-4af9-aad2-ee28a65c8a22/1/hH_Lzrp97XjsS5lg1VmL1oD_5ts.roa
Signing time: Sun 01 Jan 2023 23:14:44 +0000
ROA not before: Sun 01 Jan 2023 23:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209543
IP address blocks: 185.150.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b3:bf:56:b4:92:7e:b1:e0:95:d8:97:18:b5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37552e9c964de6ff54e099c71155c1a1dec8a730
Validity
Not Before: Jan 1 23:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=847fcbceba7ded78ec4b9960d5598bd680ffe6db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c6:26:46:69:bc:84:83:48:d0:b4:5b:02:d7:
63:8f:fd:21:0f:26:8a:db:5b:e1:6e:83:6e:90:31:
a5:24:43:54:f7:32:9e:d6:99:89:ff:cf:47:1d:f5:
6f:0f:7c:4f:8a:ca:ba:41:7e:91:2e:25:50:db:71:
ed:78:16:fa:ac:41:f2:b2:b6:38:d2:f0:d2:17:dc:
26:e0:8f:78:08:5b:d9:76:c8:67:38:6f:90:b1:56:
15:18:b5:19:8e:3a:27:80:7f:d0:85:dd:6b:d9:87:
60:ae:63:31:97:f8:f5:f0:25:78:e0:e9:03:b2:a5:
99:d5:e9:52:18:dc:3e:19:ca:db:9f:25:ec:ec:1c:
c2:d3:4c:d6:8f:bd:7f:0a:ec:02:5d:a4:f6:ad:d3:
b1:24:02:9e:f7:19:8f:f0:2e:18:b8:f0:e2:92:c0:
40:09:5c:8a:31:95:e9:4a:5e:4b:34:d0:30:dc:db:
ed:f4:22:99:14:1a:84:80:f8:97:1c:ee:17:fd:47:
4e:4f:97:05:0d:f9:09:9a:86:66:1e:56:5d:d5:bd:
3c:9d:27:ec:3b:62:ef:b8:72:ab:59:d9:73:dc:8d:
23:94:97:94:53:60:49:12:f5:e6:14:47:8d:ce:64:
43:3b:19:6a:fe:05:a0:1b:2d:08:df:ff:2e:70:af:
c9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7F:CB:CE:BA:7D:ED:78:EC:4B:99:60:D5:59:8B:D6:80:FF:E6:DB
X509v3 Authority Key Identifier:
keyid:37:55:2E:9C:96:4D:E6:FF:54:E0:99:C7:11:55:C1:A1:DE:C8:A7:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1UunJZN5v9U4JnHEVXBod7IpzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/dc43fb-4656-4af9-aad2-ee28a65c8a22/1/hH_Lzrp97XjsS5lg1VmL1oD_5ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/dc43fb-4656-4af9-aad2-ee28a65c8a22/1/N1UunJZN5v9U4JnHEVXBod7IpzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.36.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:6c:42:bf:ac:78:8f:13:1f:d9:72:37:41:48:46:e7:2b:b0:
c5:2b:d5:c5:e2:2d:00:9a:af:fa:f6:18:29:6b:7d:e9:da:e3:
22:82:51:95:a4:0f:3c:bd:e5:a5:71:66:f3:84:d1:0b:64:a5:
0e:9f:91:30:73:3e:89:96:71:e8:91:ff:53:f2:e7:8e:22:6b:
5e:bd:e3:e2:6a:5a:8a:71:82:91:38:e4:10:d0:1c:d3:73:54:
19:7f:75:55:88:26:f6:24:a9:ab:c0:8c:ed:a1:78:92:3b:d4:
d0:db:f8:e7:ec:8c:c1:c6:8b:f7:d8:c3:37:1c:e9:68:de:05:
be:b0:8b:94:6e:7a:5b:13:7b:ad:41:2b:9f:75:27:d1:f7:b1:
6b:4f:03:31:c5:68:01:d8:94:3b:b9:b4:e1:49:ba:2e:0d:a2:
13:ac:16:9a:a6:c9:80:a2:5b:5b:0a:31:5e:02:e5:f4:a1:17:
5d:64:a9:b4:0e:b0:83:bd:7d:b9:24:36:23:d1:cc:06:36:6d:
3c:7c:52:49:67:f4:03:7a:51:41:dd:87:09:4a:b6:1d:98:e1:
b6:45:72:e7:5f:b5:3e:12:9a:6a:d5:5a:14:74:fe:7a:5e:ae:
55:9f:8d:9a:8e:48:e1:2c:a5:14:b3:4b:94:95:dc:c6:82:13:
77:22:09:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:55 2024 by rpki-client on console-fra.rpki-client.org