Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/IblkuXOEBre3mqkDYaAqwtlsLmE.roa
File: IblkuXOEBre3mqkDYaAqwtlsLmE.roa (raw, json)
Hash identifier: mBIxDRFzPQjitxJlju1cUygML1DJRDR1/4ZHjG3c2hg=
Subject key identifier: 21:B9:64:B9:73:84:06:B7:B7:9A:A9:03:61:A0:2A:C2:D9:6C:2E:61
Certificate issuer: /CN=06c44b821ab5db542cc536c1f88b84baf0621654
Certificate serial: 01857246D998D1706550FF4ED750F4AA14FC
Authority key identifier: 06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/IblkuXOEBre3mqkDYaAqwtlsLmE.roa
Signing time: Mon 02 Jan 2023 11:38:43 +0000
ROA not before: Mon 02 Jan 2023 11:38:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205814
IP address blocks: 185.128.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Apr 2023 11:08:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d9:98:d1:70:65:50:ff:4e:d7:50:f4:aa:14:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c44b821ab5db542cc536c1f88b84baf0621654
Validity
Not Before: Jan 2 11:38:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21b964b9738406b7b79aa90361a02ac2d96c2e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b9:e7:29:bb:3b:fa:b5:e6:74:b5:37:5f:60:
e5:72:88:84:8e:8c:a0:3d:bb:47:76:07:f8:56:e5:
07:8d:c1:94:73:9e:1a:bd:c9:c1:63:e4:8e:7c:24:
83:f8:93:9c:bf:02:3e:2b:78:87:9b:c2:8c:72:63:
b7:f2:79:0e:75:ad:00:ca:09:78:8a:25:13:9f:f5:
f6:87:35:c5:74:4a:a4:2a:c9:00:06:b9:68:c3:e7:
72:70:33:db:bd:b8:77:b3:0f:95:47:e7:43:01:9f:
7a:b4:6e:88:dc:06:ff:7a:d0:ef:d8:ff:4e:df:83:
91:c5:f2:17:c8:99:94:ab:fb:7c:18:47:52:96:2a:
df:c5:eb:84:99:87:90:ed:90:c9:f1:b8:44:1e:bf:
ab:9d:b1:fe:ca:9d:7b:51:c2:a7:5c:7b:6b:69:1c:
c7:36:5a:7d:01:04:16:17:4c:fe:6b:cc:e5:75:02:
31:11:85:bb:f2:05:d8:a5:5a:fb:d3:1a:44:7f:4c:
70:be:46:83:7a:d2:04:6f:12:4f:b8:8c:1e:d7:99:
13:34:a3:16:b7:e8:30:ec:ff:07:eb:86:7d:87:03:
e9:de:8c:8c:5c:af:d3:98:7d:3f:12:8e:76:7f:5e:
cf:66:87:fe:07:28:bc:28:6f:3b:f1:d6:47:58:14:
15:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B9:64:B9:73:84:06:B7:B7:9A:A9:03:61:A0:2A:C2:D9:6C:2E:61
X509v3 Authority Key Identifier:
keyid:06:C4:4B:82:1A:B5:DB:54:2C:C5:36:C1:F8:8B:84:BA:F0:62:16:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsRLghq121QsxTbB-IuEuvBiFlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/IblkuXOEBre3mqkDYaAqwtlsLmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/79cef8-43a1-4089-809f-dc984265567d/1/BsRLghq121QsxTbB-IuEuvBiFlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.37.0/24
Signature Algorithm: sha256WithRSAEncryption
54:5f:70:3d:6e:4d:ae:6d:f7:f2:6b:53:b2:b5:df:e2:46:39:
ec:b2:d8:1e:01:86:a5:e0:aa:93:46:94:7c:04:99:5f:cd:b5:
b2:db:20:29:5f:d7:c9:74:dc:ff:fe:a4:84:7d:0b:18:ea:46:
d9:0c:69:83:0c:d8:8f:ed:0e:51:42:00:00:44:30:a5:e3:f7:
d7:6c:ca:63:f9:58:a7:2d:0a:46:ec:a5:9a:5f:79:dc:2e:bc:
85:c5:36:b2:f5:3d:88:2d:2a:cc:6c:59:ba:9e:b2:e0:56:35:
42:f1:08:c2:cc:78:8e:57:4d:62:cc:ef:7c:87:f0:f5:6b:34:
b1:7c:0e:b7:6d:d8:96:14:f4:7e:1e:36:88:da:dc:19:3e:dd:
d6:08:50:33:9a:c6:f5:28:35:81:4d:3e:7b:3a:11:4f:95:4d:
d3:c3:b3:59:1d:43:f1:94:b2:1f:08:a6:08:d1:b5:fb:2c:da:
6a:ff:1d:3d:93:a6:8f:c1:a9:10:b4:02:48:22:c1:8d:ab:f0:
c2:2c:fe:c3:70:45:72:03:b9:20:49:64:92:f5:af:e0:55:85:
34:bb:53:c1:00:5f:8f:08:86:a3:f1:8c:14:f2:3a:9b:15:b3:
ec:e7:5c:40:f4:bd:31:65:12:41:d1:9e:3b:02:9d:83:15:a0:
0b:5f:77:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:05 2024 by rpki-client on console-fra.rpki-client.org