Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/fhwsVNihZAPmuIPSm-DvZALEFB4.roa
File: fhwsVNihZAPmuIPSm-DvZALEFB4.roa (raw, json)
Hash identifier: GMB2NO5Lgosax32JFCBWbrzedshxkQB8AplHRKBjYEk=
Subject key identifier: 7E:1C:2C:54:D8:A1:64:03:E6:B8:83:D2:9B:E0:EF:64:02:C4:14:1E
Certificate issuer: /CN=75c88b1c41fbeb5dabef743c57acdffc4fa74699
Certificate serial: 01856E2FC29CDEC4F6D80C17F18F786EB073
Authority key identifier: 75:C8:8B:1C:41:FB:EB:5D:AB:EF:74:3C:57:AC:DF:FC:4F:A7:46:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/fhwsVNihZAPmuIPSm-DvZALEFB4.roa
Signing time: Sun 01 Jan 2023 16:35:01 +0000
ROA not before: Sun 01 Jan 2023 16:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211694
IP address blocks: 185.244.237.0/24 maxlen: 24
2a10:a240::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:c2:9c:de:c4:f6:d8:0c:17:f1:8f:78:6e:b0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75c88b1c41fbeb5dabef743c57acdffc4fa74699
Validity
Not Before: Jan 1 16:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e1c2c54d8a16403e6b883d29be0ef6402c4141e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2e:9e:cd:36:ff:0f:43:f7:61:4c:0e:88:0c:
21:e3:98:04:20:4f:99:b9:da:2d:21:37:3d:e3:9a:
ed:91:24:36:78:6f:75:d9:41:2c:f5:85:c7:e2:65:
88:dc:36:22:7a:45:c6:9d:0d:a1:94:d3:ee:6e:ac:
75:c6:51:10:d1:19:67:2b:32:54:20:6e:ce:b7:ec:
d1:df:b2:b8:c4:d9:c7:40:74:fe:43:77:07:00:79:
1f:f7:f7:ab:d7:b0:9e:e3:74:8c:be:01:ea:1b:9c:
97:ac:f6:55:81:97:86:a8:b6:d6:b3:1c:8d:2c:09:
82:8d:7c:a0:11:85:5a:ea:34:ed:e5:62:a3:3e:04:
7e:1e:35:8c:45:47:27:1a:e5:da:be:93:4f:ec:06:
cc:5e:07:68:8c:d2:75:4e:74:9a:c1:b1:30:ad:d3:
f2:38:1f:22:0b:ae:e8:2a:7e:13:07:ec:22:8e:59:
51:56:6a:56:1f:85:03:d9:b8:c0:d5:39:64:c1:fe:
d0:61:33:be:8a:9b:92:e2:fd:23:39:f1:6c:47:2b:
d6:6a:ef:ba:81:33:ce:56:5b:fd:5e:53:4b:44:8a:
2e:aa:b2:80:b5:96:85:13:fb:3c:d8:61:3a:98:31:
73:ca:07:45:1d:ed:01:9d:05:8e:5c:04:a0:29:be:
19:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:1C:2C:54:D8:A1:64:03:E6:B8:83:D2:9B:E0:EF:64:02:C4:14:1E
X509v3 Authority Key Identifier:
keyid:75:C8:8B:1C:41:FB:EB:5D:AB:EF:74:3C:57:AC:DF:FC:4F:A7:46:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dciLHEH7612r73Q8V6zf_E-nRpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/fhwsVNihZAPmuIPSm-DvZALEFB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/2a2164-1656-44cb-9294-0b1dec375554/1/dciLHEH7612r73Q8V6zf_E-nRpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.237.0/24
IPv6:
2a10:a240::/29
Signature Algorithm: sha256WithRSAEncryption
a3:b5:0a:2a:9e:b1:cf:dd:32:15:99:5e:45:df:73:4d:1d:0f:
cb:22:6d:7c:51:56:24:7b:90:e1:7b:a8:85:2e:ec:cd:23:6b:
98:1c:e3:96:6c:4a:ec:bb:1a:f6:8c:7a:32:eb:7e:a1:cf:3c:
0a:c7:48:bf:29:6f:99:f5:b1:8c:e3:bd:68:6e:e3:e2:b2:26:
a5:7f:03:a2:04:35:b1:4b:3f:73:a7:5c:7c:81:63:1b:4d:75:
f0:cb:64:d3:c1:05:cb:ba:f7:33:52:23:3b:a5:aa:94:8c:55:
8f:0b:c4:33:40:7f:00:76:aa:16:2d:9e:38:3d:39:94:a5:19:
c8:f7:64:ac:a7:5c:68:c3:ba:9b:98:38:48:08:51:e3:de:87:
34:55:b0:1b:b2:a4:a8:fb:37:d6:d6:c5:40:10:59:8b:69:e2:
4a:f1:29:e6:e6:05:21:0f:65:c9:e6:88:00:9f:cc:e7:a0:7b:
61:3c:3d:bb:40:d9:c1:24:d6:ef:1c:fb:da:97:53:38:99:55:
57:6d:18:a0:82:d4:72:3c:4a:2a:7f:c1:60:c5:c1:c3:1d:f9:
a4:5b:01:82:c7:99:01:73:1e:f3:4f:51:a6:4e:87:76:37:04:
69:b8:67:15:5a:04:06:8e:93:80:65:17:5f:f2:df:81:b2:2a:
d4:97:37:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:06 2024 by rpki-client on console-fra.rpki-client.org