Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/0HuCumC2mg2jzgyUUj6usM1CnFI.roa
File: 0HuCumC2mg2jzgyUUj6usM1CnFI.roa (raw, json)
Hash identifier: Da1GF1lG5YZ3Cqk+cqdoRmkduOJouUkwuXAMB+nTkRE=
Subject key identifier: D0:7B:82:BA:60:B6:9A:0D:A3:CE:0C:94:52:3E:AE:B0:CD:42:9C:52
Certificate issuer: /CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Certificate serial: 01856E6FBCCBA17BD39122F88C2BE16F776A
Authority key identifier: 08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/0HuCumC2mg2jzgyUUj6usM1CnFI.roa
Signing time: Sun 01 Jan 2023 17:44:54 +0000
ROA not before: Sun 01 Jan 2023 17:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50647
IP address blocks: 185.181.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:bc:cb:a1:7b:d3:91:22:f8:8c:2b:e1:6f:77:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08664835f8aafe614971ffa8683f9f74bf4d0ff4
Validity
Not Before: Jan 1 17:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d07b82ba60b69a0da3ce0c94523eaeb0cd429c52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:82:e7:18:89:eb:dc:c5:eb:1b:89:f7:ee:4d:
a9:f7:ef:30:b6:db:7b:39:9b:12:fc:78:a6:bf:fa:
2d:8c:27:95:b9:d7:23:0f:80:40:91:21:97:32:92:
3a:dc:6d:70:8e:05:d1:aa:2c:bd:6c:8c:d4:6a:8b:
16:88:d1:6d:6d:cd:5f:90:23:22:a1:25:1c:98:83:
60:b5:79:77:76:fc:ad:af:1c:a8:3c:0b:06:bc:8e:
d5:46:62:cc:98:bd:90:73:61:08:db:eb:5e:46:a8:
af:34:08:f4:24:3b:ff:eb:fd:70:60:d8:ba:3f:82:
1c:22:ab:8a:3d:1e:39:30:92:30:92:f5:4e:7a:1b:
e9:ff:f8:db:ad:09:75:a3:60:7a:cc:9b:3d:e3:29:
e5:93:49:af:7c:21:d3:1c:d6:e5:b1:e2:d7:44:78:
af:73:6f:91:16:3e:79:45:53:06:b9:bf:9c:80:d6:
ec:e3:85:90:9f:d5:b2:7b:da:21:94:ae:74:3b:df:
60:5d:05:a4:bc:76:17:0e:a8:ef:3c:42:9b:02:21:
cf:4e:aa:60:c0:63:98:40:3d:99:2d:43:21:31:ba:
e7:fd:88:a4:0c:51:81:0d:c5:36:e0:cb:82:5a:e1:
9c:0e:bd:cd:74:10:80:cf:a7:33:e3:b7:e9:29:74:
ce:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:7B:82:BA:60:B6:9A:0D:A3:CE:0C:94:52:3E:AE:B0:CD:42:9C:52
X509v3 Authority Key Identifier:
keyid:08:66:48:35:F8:AA:FE:61:49:71:FF:A8:68:3F:9F:74:BF:4D:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CGZINfiq_mFJcf-oaD-fdL9ND_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/0HuCumC2mg2jzgyUUj6usM1CnFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/cef3b5-a848-43d5-873a-0757a6d28224/1/CGZINfiq_mFJcf-oaD-fdL9ND_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.248.0/22
Signature Algorithm: sha256WithRSAEncryption
23:25:cc:45:44:d0:6a:ad:0b:53:39:07:fa:52:81:f5:28:30:
7d:d6:ab:e6:7c:2c:c1:11:24:54:63:9b:ba:6f:e8:57:e4:d8:
86:ef:3c:53:20:15:9a:95:af:33:2d:49:37:85:fa:1f:42:04:
fc:69:68:72:bd:7c:99:d7:1c:16:5f:3c:6c:48:39:d0:29:52:
8f:29:81:4a:58:9a:24:8c:f1:f4:68:42:6b:9a:8b:6d:72:db:
e2:72:e8:cc:51:4a:a9:1f:92:65:b1:e4:e6:56:5a:1d:47:a8:
be:49:26:35:95:81:12:d0:7e:c0:2a:b1:3f:3c:b1:36:54:8c:
84:c3:7d:35:7b:e6:3c:79:08:8d:86:cd:ab:4b:2e:7e:02:c0:
2f:41:4e:59:ff:77:d2:da:51:bb:2c:b0:71:56:38:7f:59:f6:
b1:3c:10:7e:80:94:2a:e4:42:f5:2d:27:d6:29:59:b1:02:41:
97:57:7b:28:dc:4e:83:2a:f0:0a:6b:f4:a5:e5:5c:60:59:18:
cb:41:df:f3:4d:20:be:8a:68:5a:eb:c5:c9:0d:7e:1a:fa:88:
66:96:7f:32:b5:bd:75:5b:84:45:d4:7b:bc:a5:01:d2:ba:5a:
07:c5:5b:58:9d:0e:64:e4:1d:d3:bc:aa:d4:77:35:e4:7a:db:
60:ad:15:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:42 2024 by rpki-client on console-ams.rpki-client.org