Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/hMhsav0QFjl-jT4RPCuXg4z8j4Q.roa
File: hMhsav0QFjl-jT4RPCuXg4z8j4Q.roa (raw, json)
Hash identifier: uYyerJIe5VTWFqryqhjB/VSdSrR1NIsrQCryZ8jyytM=
Subject key identifier: 84:C8:6C:6A:FD:10:16:39:7E:8D:3E:11:3C:2B:97:83:8C:FC:8F:84
Certificate issuer: /CN=744e133ca0cad9f1fd161580590b296db22308ce
Certificate serial: 0186020947071C1D601747BF272C9732B727
Authority key identifier: 74:4E:13:3C:A0:CA:D9:F1:FD:16:15:80:59:0B:29:6D:B2:23:08:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/hMhsav0QFjl-jT4RPCuXg4z8j4Q.roa
Signing time: Mon 30 Jan 2023 09:36:47 +0000
ROA not before: Mon 30 Jan 2023 09:36:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204858
IP address blocks: 185.227.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:02:09:47:07:1c:1d:60:17:47:bf:27:2c:97:32:b7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744e133ca0cad9f1fd161580590b296db22308ce
Validity
Not Before: Jan 30 09:36:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84c86c6afd1016397e8d3e113c2b97838cfc8f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:95:a2:68:f7:e2:ed:3c:46:a5:12:f9:15:c9:
58:5d:4e:42:d1:3f:55:49:34:94:1e:3c:0f:02:8c:
24:ae:04:74:13:3f:b7:fe:64:25:87:80:93:84:5b:
e4:99:ba:4a:f0:b9:98:5d:a0:ec:b1:c5:9e:97:d1:
03:dc:05:aa:f7:c8:29:cb:ae:2c:49:43:0a:d7:4a:
78:c5:be:db:29:8c:1b:e1:16:83:fb:3b:ff:6e:f2:
99:74:b8:3e:83:26:ec:1a:71:d6:b4:e0:54:26:da:
80:31:2a:4d:6a:53:22:0a:60:40:71:ca:93:19:a7:
44:49:57:08:55:e4:f8:fa:bb:42:a8:24:59:9d:99:
ff:f0:6f:4e:fe:cd:64:73:b9:e3:c5:f2:3d:03:06:
5d:74:e5:61:9b:da:61:ea:a1:1e:e8:88:11:cb:67:
f3:25:de:3d:eb:18:11:37:52:d1:ad:3a:72:a1:a4:
02:36:fa:8c:4f:e7:62:bb:5a:80:e0:a0:43:bc:d3:
5a:e0:46:12:73:c5:8d:4e:ec:8d:74:a7:5f:55:62:
df:72:67:02:5b:6c:95:07:26:2d:e4:ad:f9:1c:ec:
ba:93:d0:b8:06:fe:ae:f7:09:f2:74:80:d4:01:dc:
0b:39:ee:f6:9c:e5:08:bf:c8:54:2d:67:5b:2e:c2:
26:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C8:6C:6A:FD:10:16:39:7E:8D:3E:11:3C:2B:97:83:8C:FC:8F:84
X509v3 Authority Key Identifier:
keyid:74:4E:13:3C:A0:CA:D9:F1:FD:16:15:80:59:0B:29:6D:B2:23:08:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE4TPKDK2fH9FhWAWQspbbIjCM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/hMhsav0QFjl-jT4RPCuXg4z8j4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b41190-da28-4301-90c5-95a4ef43c215/1/dE4TPKDK2fH9FhWAWQspbbIjCM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.184.0/22
Signature Algorithm: sha256WithRSAEncryption
32:0a:e0:6f:80:cb:3b:08:5c:ab:9d:7f:e1:58:76:5a:44:6a:
00:6e:ce:bf:41:16:77:bb:82:1b:5b:0b:3d:94:e4:b9:62:ce:
b5:5a:ee:eb:36:ef:ff:84:79:ad:cf:e2:cc:88:f5:b0:2e:d5:
31:91:ec:fa:dd:cb:9e:00:42:c1:f2:aa:83:1d:ae:bc:5f:71:
27:24:33:3c:09:c2:c8:f0:b7:78:51:74:fb:b5:16:0f:12:1d:
25:ba:a2:cc:f2:7b:0b:81:83:12:5c:ee:9a:c0:69:18:7a:a2:
de:00:36:0e:e4:76:3d:d2:2f:b5:9e:f8:ac:bb:74:ec:04:9a:
d0:83:aa:ab:8f:ad:5d:88:74:98:e6:85:7d:20:80:ba:ae:f7:
f2:da:7a:b2:40:73:f1:8d:e2:76:2f:1a:30:f9:1b:24:e0:2e:
0f:a4:4f:63:34:2a:d6:61:65:08:03:41:96:ed:9a:9f:83:c2:
4a:ad:97:5c:0b:7d:00:a5:6c:10:f8:90:69:80:fe:c4:dd:8f:
ba:71:66:3a:19:c6:fd:d6:1e:4d:72:b1:bb:b4:6b:82:67:7c:
5d:5b:45:5a:73:cf:d5:79:3d:80:f3:f7:ed:21:d2:20:af:8b:
d3:9d:87:4b:ca:9f:2c:4f:85:12:ab:86:a3:10:9e:d0:19:8f:
75:50:1d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:20:17 2024 by rpki-client on console-ams.rpki-client.org