Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/d4d411-9966-4291-aa59-f90850e74296/1/iqimJ-IIr4mqPeQ_AKfx4dPb7hc.roa
File: iqimJ-IIr4mqPeQ_AKfx4dPb7hc.roa (raw, json)
Hash identifier: DEky/jObPKKgsBnfDnjznSj6HA5Ur7Qt2u3qDKNMN8Q=
Subject key identifier: 8A:A8:A6:27:E2:08:AF:89:AA:3D:E4:3F:00:A7:F1:E1:D3:DB:EE:17
Certificate issuer: /CN=e2a75ef9036f5c143e57dfafbc92c0255c3159ba
Certificate serial: 018CC8DE23D6F9EDCA3CE7316AF7AD7F081B
Authority key identifier: E2:A7:5E:F9:03:6F:5C:14:3E:57:DF:AF:BC:92:C0:25:5C:31:59:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qde-QNvXBQ-V9-vvJLAJVwxWbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/d4d411-9966-4291-aa59-f90850e74296/1/iqimJ-IIr4mqPeQ_AKfx4dPb7hc.roa
Signing time: Tue 02 Jan 2024 06:30:50 +0000
ROA not before: Tue 02 Jan 2024 06:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209197
IP address blocks: 185.207.30.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 09 Jun 2024 13:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:23:d6:f9:ed:ca:3c:e7:31:6a:f7:ad:7f:08:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a75ef9036f5c143e57dfafbc92c0255c3159ba
Validity
Not Before: Jan 2 06:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8aa8a627e208af89aa3de43f00a7f1e1d3dbee17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:42:bc:be:6f:c9:f3:7e:a3:f4:c8:25:8b:d1:
4c:8c:89:53:d7:46:ee:2c:30:fd:6b:a8:e6:1e:c7:
ac:18:af:79:99:ef:90:75:27:bb:ea:8b:15:43:15:
61:ef:ee:40:1d:e4:f1:85:41:2e:a0:0c:7f:1a:4d:
6c:7f:68:f8:ae:39:5c:b8:3c:0d:a2:7f:c0:9d:51:
d6:e2:26:67:3b:dc:73:77:a8:32:db:a8:7c:f3:96:
54:35:4d:e0:71:2e:79:96:bb:85:5e:94:64:11:b5:
ed:26:e5:3b:09:99:21:5e:1d:fe:80:5b:a3:1b:ad:
91:9c:43:30:ff:4a:a5:7c:0e:ba:31:f5:0e:03:75:
af:3f:97:64:49:60:d4:ad:bc:24:bc:5a:6b:ec:64:
65:0f:df:80:00:11:ac:63:cd:d9:39:35:e2:8a:a7:
b1:f3:de:31:89:0c:14:c4:9c:f0:6e:70:2e:b5:ad:
bb:1a:53:af:1e:7a:c5:34:36:5c:81:f7:cb:c2:df:
c4:64:93:e1:30:76:98:d9:08:74:9b:55:e6:03:53:
89:17:16:77:75:4f:b1:35:bb:23:38:d1:da:97:e5:
1d:81:61:2b:cb:23:bc:15:7b:bb:01:ce:08:78:ea:
8a:9c:b2:cb:80:ec:df:90:a0:41:4d:75:be:f3:67:
20:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A8:A6:27:E2:08:AF:89:AA:3D:E4:3F:00:A7:F1:E1:D3:DB:EE:17
X509v3 Authority Key Identifier:
keyid:E2:A7:5E:F9:03:6F:5C:14:3E:57:DF:AF:BC:92:C0:25:5C:31:59:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qde-QNvXBQ-V9-vvJLAJVwxWbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d4d411-9966-4291-aa59-f90850e74296/1/iqimJ-IIr4mqPeQ_AKfx4dPb7hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/d4d411-9966-4291-aa59-f90850e74296/1/4qde-QNvXBQ-V9-vvJLAJVwxWbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.30.0/23
Signature Algorithm: sha256WithRSAEncryption
88:0b:da:8c:af:56:c3:f7:37:c8:81:a6:7e:9c:03:c2:08:20:
1d:51:98:5f:17:f6:68:8d:02:6f:90:fb:b9:88:85:8d:f7:05:
bb:f0:8e:33:8f:68:50:85:55:b7:79:d1:5a:f7:5b:bb:67:ef:
2a:96:0f:ab:41:34:91:01:a1:8e:8d:0a:57:d9:5f:a1:a0:0e:
41:52:06:a4:5b:67:db:6e:d7:9b:ed:60:d4:59:f0:e0:a4:51:
7c:5d:d7:ae:d9:2e:0f:d3:ab:e4:8a:62:88:77:6a:79:38:65:
66:fa:2c:ba:95:aa:c6:74:08:dc:2f:3d:4f:40:d8:fc:ca:84:
d4:c3:f2:6c:a2:74:41:0c:bb:9e:fa:a4:4f:83:c3:48:c4:f8:
59:be:5a:df:9b:1c:c8:85:92:d3:64:94:ae:24:a6:e4:ce:54:
fa:c0:1c:15:ae:77:e8:04:d3:19:0d:3c:89:a1:91:1e:5d:42:
cc:ae:22:1c:1c:08:52:5c:b0:6b:a6:0a:79:9f:f3:1c:f4:ea:
c4:4b:62:98:83:ac:ce:64:36:b3:9a:8e:c9:f9:60:35:ff:e8:
a0:f2:b5:b8:8e:d3:04:ce:ed:f2:90:6d:14:51:6d:dd:bd:4f:
07:86:9c:eb:b1:7d:69:d7:50:ee:e8:a2:4b:7b:2c:96:3f:0c:
63:49:b0:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 9 15:24:57 2024 by rpki-client on console-fra.rpki-client.org