Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/H0eQyZVmwAFLXBXdEV5vPV9NXXw.roa
File: H0eQyZVmwAFLXBXdEV5vPV9NXXw.roa (raw, json)
Hash identifier: QdGvnAe09TiiWL7DXltYuP4zqDYTIz5hR03iFGfbS9o=
Subject key identifier: 1F:47:90:C9:95:66:C0:01:4B:5C:15:DD:11:5E:6F:3D:5F:4D:5D:7C
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 01879A770337642D20122F8B9B05853139E9
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/H0eQyZVmwAFLXBXdEV5vPV9NXXw.roa
Signing time: Wed 19 Apr 2023 17:01:43 +0000
ROA not before: Wed 19 Apr 2023 17:01:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204685
IP address blocks: 185.212.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:77:03:37:64:2d:20:12:2f:8b:9b:05:85:31:39:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: Apr 19 17:01:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f4790c99566c0014b5c15dd115e6f3d5f4d5d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:78:00:7d:c7:cb:35:10:f5:ea:35:6d:ef:dc:
64:96:f2:a8:5d:1a:80:e0:30:fa:83:c2:cb:57:20:
92:41:93:0f:14:0e:13:8c:48:c8:d7:bf:f3:d0:bc:
ad:42:1b:85:84:ed:21:75:0c:09:1a:c8:bb:cd:39:
78:d9:00:c5:ba:92:df:73:fb:ed:60:7e:f3:a7:8a:
db:b8:33:21:1a:b2:68:9f:f1:11:d1:98:6b:c0:59:
6c:9a:c3:45:36:23:d4:5d:be:0d:09:00:80:3c:e4:
ce:dd:75:9f:39:7e:5e:cf:7a:45:3e:05:b9:b7:52:
7d:b4:4f:85:85:21:b0:b6:24:d4:13:5d:5b:e8:94:
b2:95:25:5e:46:13:be:34:f9:90:eb:42:15:bf:7a:
37:4f:77:16:d9:30:d9:89:96:f2:43:ef:96:63:7d:
e6:b3:33:34:d7:11:06:f3:25:2a:a7:a6:62:82:dd:
b8:e4:4e:ed:c0:cb:44:56:ba:57:90:92:8b:54:d3:
4c:bc:30:48:6e:cb:bf:ee:8c:85:4b:a0:ca:94:d9:
c8:db:d1:47:36:5e:ae:c9:0e:ec:58:e4:d4:b8:73:
90:27:ba:0a:21:7c:f3:23:2c:c4:cd:05:cd:b4:21:
89:07:be:05:11:d7:47:d7:20:f4:d1:d6:a7:68:40:
47:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:47:90:C9:95:66:C0:01:4B:5C:15:DD:11:5E:6F:3D:5F:4D:5D:7C
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/H0eQyZVmwAFLXBXdEV5vPV9NXXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.251.0/24
Signature Algorithm: sha256WithRSAEncryption
71:69:10:49:10:57:2a:1a:99:5a:e8:02:6a:5a:5e:cf:62:f2:
1a:83:b1:38:94:89:dd:4d:74:dd:9d:2f:02:98:43:31:8e:bd:
60:ba:b3:91:10:4d:f8:71:76:c2:52:84:65:0f:3d:3c:de:d4:
a4:a8:bf:ed:f9:87:20:f0:45:af:26:36:89:59:00:f6:74:d1:
2c:66:00:ab:d5:d0:73:15:d9:d7:19:4b:03:53:c8:cc:24:1c:
5b:5d:24:e9:37:1c:1d:65:ef:06:ef:86:e8:1c:ab:c6:64:68:
d3:ed:83:8d:8f:55:31:57:5b:7b:a7:7f:b7:49:2f:e8:a4:c9:
39:ab:e4:1c:64:ef:13:66:f8:3d:de:e4:fb:47:0d:13:8c:f8:
77:b6:50:45:27:26:0c:1a:ff:1e:31:9d:cb:37:14:7b:5d:8d:
72:6c:fd:3c:7d:6f:ee:20:00:d8:46:b4:62:5c:5c:db:ed:ac:
ab:22:bd:f8:a2:7c:37:a4:03:69:d3:42:98:f2:87:a9:bb:82:
18:13:58:4d:51:3e:f7:3b:d3:27:4e:c0:06:3b:ba:f9:3f:b4:
c5:65:35:6b:84:fd:b7:ce:1b:91:dd:f7:b9:d1:49:37:2f:6c:
46:50:e9:6e:46:f0:08:01:db:f0:32:0d:75:09:7f:1b:d4:b9:
bb:07:a5:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:49 2024 by rpki-client on console-ams.rpki-client.org