Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/xuA8zhT5-KDKq2dzlm9QRSsrubM.roa
File: xuA8zhT5-KDKq2dzlm9QRSsrubM.roa (raw, json)
Hash identifier: vrEvXl+zLT5f/7TkF4FI6nAMjKDtSIcJW2JdTpTqPsQ=
Subject key identifier: C6:E0:3C:CE:14:F9:F8:A0:CA:AB:67:73:96:6F:50:45:2B:2B:B9:B3
Certificate issuer: /CN=23aee94d0fff6c6c752a6942ffa962ae37c7e6b6
Certificate serial: 01856F1DBE9AD4EE3C6A1F4CD0502B6F9F05
Authority key identifier: 23:AE:E9:4D:0F:FF:6C:6C:75:2A:69:42:FF:A9:62:AE:37:C7:E6:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I67pTQ__bGx1KmlC_6lirjfH5rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/xuA8zhT5-KDKq2dzlm9QRSsrubM.roa
Signing time: Sun 01 Jan 2023 20:54:58 +0000
ROA not before: Sun 01 Jan 2023 20:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56337
IP address blocks: 185.101.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:be:9a:d4:ee:3c:6a:1f:4c:d0:50:2b:6f:9f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23aee94d0fff6c6c752a6942ffa962ae37c7e6b6
Validity
Not Before: Jan 1 20:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6e03cce14f9f8a0caab6773966f50452b2bb9b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c4:c8:13:de:ae:2f:36:56:24:cd:81:47:96:
fd:42:d2:c9:f4:1e:0f:ef:84:cd:ca:f0:90:5c:1f:
35:10:94:b6:ae:d0:38:a9:ea:3e:ab:ea:b9:fe:23:
c1:55:ce:56:51:bc:6f:e4:ad:14:09:98:cb:4b:aa:
09:e5:ff:d2:b1:21:4a:4e:4b:d3:fd:cc:28:4f:b4:
6c:33:b8:d4:4f:1e:a8:8e:ca:93:3f:23:03:90:2c:
c1:1d:45:79:a3:b3:a7:2d:b7:c4:24:da:67:7b:90:
5b:f8:db:a4:30:b8:db:72:fd:8d:fe:99:f6:9b:2b:
8c:e7:e6:30:0a:cd:06:5e:ec:72:0c:df:7c:18:51:
e3:96:4f:6c:98:8f:c0:9f:12:4b:0a:fe:c8:eb:ab:
96:a3:b9:2b:f1:bc:c4:2f:2d:be:a8:ff:12:19:4f:
ea:b7:78:39:14:a5:56:d2:0b:7b:b1:06:89:d3:4b:
f5:b0:d0:4f:bb:36:e2:1a:1d:f5:94:01:e4:70:20:
0e:1b:81:02:30:10:82:be:48:04:ca:8c:e8:17:f7:
5e:bb:ec:cc:59:24:0e:b2:6c:52:40:4a:c3:5c:eb:
50:2c:31:cb:8f:ca:8b:26:16:c2:7c:f5:73:fd:ea:
fb:79:96:71:97:ee:da:85:e0:43:1f:6b:c9:28:52:
81:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E0:3C:CE:14:F9:F8:A0:CA:AB:67:73:96:6F:50:45:2B:2B:B9:B3
X509v3 Authority Key Identifier:
keyid:23:AE:E9:4D:0F:FF:6C:6C:75:2A:69:42:FF:A9:62:AE:37:C7:E6:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I67pTQ__bGx1KmlC_6lirjfH5rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/xuA8zhT5-KDKq2dzlm9QRSsrubM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d70262-f87c-4126-af85-a31853e6997a/1/I67pTQ__bGx1KmlC_6lirjfH5rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.18.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:df:13:0c:1d:a5:b8:29:d2:6b:72:0a:60:8c:43:a1:a7:2a:
85:96:b4:ca:d6:db:33:83:a8:98:ed:13:3c:bd:16:dc:d2:91:
1c:bb:7c:a3:b0:d1:60:fc:06:45:87:c5:64:dc:71:4e:c3:68:
7d:98:e8:99:1e:da:ca:1e:b4:bb:d6:52:66:d0:3c:44:e3:41:
3b:35:02:67:58:08:81:46:96:59:54:e5:f2:11:51:91:d4:6e:
d0:54:88:6d:35:93:8c:1a:5f:e1:cb:93:da:6f:17:aa:3b:04:
a4:e9:de:55:34:dd:9e:34:c1:24:64:b4:9c:b7:6a:7c:d9:b2:
90:b5:85:c1:d1:cf:aa:2b:dd:b4:1c:2c:d7:e5:d7:15:00:13:
fd:72:1b:1f:76:b4:ec:d2:d6:aa:55:79:33:50:ae:f9:d4:26:
49:72:93:d1:a8:78:a8:d6:b1:9c:69:8a:51:02:39:c2:94:d2:
f6:10:3f:fc:62:55:15:d2:6c:bf:78:f5:03:8d:01:54:95:c2:
cb:33:d0:40:4f:13:89:48:9a:4b:de:4c:b1:9f:40:fd:b9:9d:
42:6e:2a:56:7e:80:b0:4c:c0:74:67:9c:90:36:0a:5d:1a:0f:
0d:6c:09:e7:8d:14:a5:28:e1:05:40:e5:0d:c9:a2:19:47:fb:
f4:5f:7b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:33 2024 by rpki-client on console-ams.rpki-client.org