Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/92d564-5d09-428e-af80-8882199bccb4/1/HPFJXKY8S7gGqLO6wO5ZSFbgAS0.roa
File: HPFJXKY8S7gGqLO6wO5ZSFbgAS0.roa (raw, json)
Hash identifier: raxjNrE816IsLsMxijSBeyob3yOhVIBQXqwHmPuEdkw=
Subject key identifier: 1C:F1:49:5C:A6:3C:4B:B8:06:A8:B3:BA:C0:EE:59:48:56:E0:01:2D
Certificate issuer: /CN=98e2f4aba0bc9b3e3ab1856497a40071971b704a
Certificate serial: 018570D54E2D864C8D7F5586E66723A2BF32
Authority key identifier: 98:E2:F4:AB:A0:BC:9B:3E:3A:B1:85:64:97:A4:00:71:97:1B:70:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mOL0q6C8mz46sYVkl6QAcZcbcEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/92d564-5d09-428e-af80-8882199bccb4/1/HPFJXKY8S7gGqLO6wO5ZSFbgAS0.roa
Signing time: Mon 02 Jan 2023 04:55:05 +0000
ROA not before: Mon 02 Jan 2023 04:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8875
IP address blocks: 185.219.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:4e:2d:86:4c:8d:7f:55:86:e6:67:23:a2:bf:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98e2f4aba0bc9b3e3ab1856497a40071971b704a
Validity
Not Before: Jan 2 04:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1cf1495ca63c4bb806a8b3bac0ee594856e0012d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:88:42:c0:0c:99:d1:2d:4b:9f:d5:0c:eb:
1d:38:d8:4a:8f:7c:3a:00:75:4e:14:f3:70:9d:35:
a5:fb:77:2c:64:1a:18:13:db:00:09:4d:a2:26:e7:
1e:31:d3:5f:16:f2:8e:9e:fa:61:41:6c:77:2a:d8:
a0:6d:8d:b1:96:5f:5b:35:24:48:ad:90:86:11:47:
96:a1:e3:2f:d3:bd:63:27:93:86:9a:12:f9:40:5a:
e6:40:34:11:43:18:db:0c:2a:9d:bc:51:1e:99:ee:
01:af:2c:26:34:fd:a8:3a:d1:fb:a4:20:ec:f8:d4:
1f:f2:0c:5c:53:55:9a:8a:40:3f:1b:a8:be:11:2b:
aa:69:56:ac:80:34:62:4b:5a:93:c7:e4:75:d9:41:
de:8b:b8:2e:88:21:2a:3e:81:a1:ef:6e:d3:ca:de:
4f:ab:d5:8a:20:67:2e:c1:f7:e3:03:f5:07:92:d5:
bb:bf:54:44:1a:ce:29:15:d3:3f:ab:a1:59:cc:79:
55:98:87:78:ae:b9:83:e1:6f:bb:d4:d7:14:18:81:
c9:30:d9:53:9a:30:3f:c4:98:1d:af:9e:66:1a:96:
0b:27:c0:ed:ba:b8:78:16:02:a7:e5:14:ad:ef:57:
a2:a1:ed:51:cc:a7:68:37:8c:ca:fb:1b:62:c8:50:
4a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F1:49:5C:A6:3C:4B:B8:06:A8:B3:BA:C0:EE:59:48:56:E0:01:2D
X509v3 Authority Key Identifier:
keyid:98:E2:F4:AB:A0:BC:9B:3E:3A:B1:85:64:97:A4:00:71:97:1B:70:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mOL0q6C8mz46sYVkl6QAcZcbcEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/92d564-5d09-428e-af80-8882199bccb4/1/HPFJXKY8S7gGqLO6wO5ZSFbgAS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/92d564-5d09-428e-af80-8882199bccb4/1/mOL0q6C8mz46sYVkl6QAcZcbcEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.152.0/22
Signature Algorithm: sha256WithRSAEncryption
65:ac:ac:ce:59:c9:b5:38:3d:d0:e9:6c:35:d6:24:35:81:63:
e1:5d:0b:a9:a3:c3:32:5a:87:7c:06:77:7d:ca:cf:2e:01:0a:
84:eb:5d:96:c4:ac:97:27:d6:66:d7:23:d8:cf:96:fc:13:d1:
cd:d0:1a:9b:7c:33:76:f0:71:1b:b2:eb:f0:b3:7e:cf:67:4f:
86:d5:e7:d8:10:53:46:d4:29:74:d1:0d:3c:69:4d:0b:04:c7:
7b:2c:f8:f0:bc:ac:59:07:48:d4:32:98:12:5f:2b:6e:96:97:
eb:9c:65:5e:ca:cc:58:6f:64:37:0a:2c:20:bc:7c:be:b3:ba:
2d:4c:1c:d7:7f:90:6c:ca:d3:e7:9e:cd:2e:d3:e0:74:99:98:
e9:88:8d:da:e5:d7:b9:08:51:69:7e:b6:24:d6:58:ea:0b:76:
53:5d:59:fb:8e:7e:d7:53:9a:d4:2f:33:63:1b:56:e9:07:41:
6b:84:2e:37:95:c8:2b:32:e8:ba:d6:bc:23:1c:93:02:1c:64:
e3:0c:41:e7:c2:31:0b:fc:c6:85:ad:5a:73:b9:87:2d:ea:cb:
69:ff:08:32:d4:aa:71:39:5e:c3:bc:5b:a6:dd:6b:54:af:73:
a9:ee:85:ff:fa:21:6f:9f:73:a6:d2:27:4a:78:5d:4d:34:7a:
48:fc:65:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:27 2024 by rpki-client on console-ams.rpki-client.org