Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1Yy108xwPno0JLxjCTvLCGis-Ag.roa
File: 1Yy108xwPno0JLxjCTvLCGis-Ag.roa (raw, json)
Hash identifier: u+z8Z2lFUckdrulMIglM0/6R30bks7a4QtE+9ZENvUo=
Subject key identifier: D5:8C:B5:D3:CC:70:3E:7A:34:24:BC:63:09:3B:CB:08:68:AC:F8:08
Certificate issuer: /CN=1e0e4d2dbde986fdc25bf3bf75637852da87abf1
Certificate serial: 018CC7953D0D16C55F1DBF355A63A69F56EE
Authority key identifier: 1E:0E:4D:2D:BD:E9:86:FD:C2:5B:F3:BF:75:63:78:52:DA:87:AB:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hg5NLb3phv3CW_O_dWN4UtqHq_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1Yy108xwPno0JLxjCTvLCGis-Ag.roa
Signing time: Tue 02 Jan 2024 00:31:35 +0000
ROA not before: Tue 02 Jan 2024 00:31:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202790
IP address blocks: 212.18.121.0/24 maxlen: 24
185.152.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 10:22:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:3d:0d:16:c5:5f:1d:bf:35:5a:63:a6:9f:56:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e0e4d2dbde986fdc25bf3bf75637852da87abf1
Validity
Not Before: Jan 2 00:31:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d58cb5d3cc703e7a3424bc63093bcb0868acf808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:52:37:d7:a4:50:a5:cf:67:22:26:f1:25:75:
73:6e:08:49:03:bd:1a:df:8f:dd:ff:82:08:ae:89:
90:7b:7f:d4:96:b1:e4:b8:3c:79:a9:21:65:d6:af:
67:f4:92:1a:24:1c:91:e8:41:42:00:f1:e6:ad:36:
55:99:1c:6a:64:1d:0e:76:70:f3:e8:c3:15:27:2e:
14:8f:31:c4:07:d6:2d:b6:c8:bf:a5:f5:d4:49:24:
7d:3a:e6:b0:9b:38:1a:fe:b4:a7:14:03:d9:7f:ee:
77:8c:a4:b5:e0:75:06:f3:f6:72:38:97:17:8c:3d:
f5:f1:ac:6e:7b:fd:93:f7:52:b1:6d:10:62:14:99:
69:1b:15:f9:dc:a5:54:44:09:3b:47:fd:49:ea:2d:
83:66:ab:33:87:67:ad:d7:77:2f:b3:f7:79:9c:68:
91:b8:7a:4b:2e:a8:08:bb:cb:4f:15:50:93:2b:87:
f2:c2:6c:91:91:01:ae:7b:26:72:fc:09:3d:99:92:
0f:08:60:97:46:7d:0a:1e:ed:c5:82:26:f7:15:ba:
14:82:51:38:b4:ed:b8:c4:60:56:1a:7f:ca:ea:db:
fa:1d:e9:d8:1e:78:25:50:b5:bd:14:4b:51:9e:96:
d6:2c:9f:6e:53:12:76:15:cf:f3:37:76:84:7d:d5:
7e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8C:B5:D3:CC:70:3E:7A:34:24:BC:63:09:3B:CB:08:68:AC:F8:08
X509v3 Authority Key Identifier:
keyid:1E:0E:4D:2D:BD:E9:86:FD:C2:5B:F3:BF:75:63:78:52:DA:87:AB:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hg5NLb3phv3CW_O_dWN4UtqHq_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/1Yy108xwPno0JLxjCTvLCGis-Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c9e115-1236-4fda-a033-99eea1f0a354/1/Hg5NLb3phv3CW_O_dWN4UtqHq_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.124.0/22
212.18.121.0/24
Signature Algorithm: sha256WithRSAEncryption
45:dc:e5:d2:cd:7a:a1:60:48:30:a0:43:c2:b6:c9:21:c5:5e:
e5:79:ba:2a:3e:34:50:9c:0a:be:3f:43:0f:06:d8:1b:c2:f1:
64:b3:47:a6:0d:97:bc:da:b9:88:00:de:ec:df:f6:f9:45:34:
9b:2d:48:8b:bb:aa:8d:99:72:56:7d:17:0e:b4:6f:4b:ab:99:
3c:c7:c8:fa:93:58:4a:12:83:bf:47:3f:4f:aa:c2:40:53:30:
43:c1:18:74:19:dd:e6:cd:ab:5a:ff:86:d7:c8:43:9a:ca:7c:
8e:c8:62:e3:52:cc:26:a2:51:0c:13:dd:2c:1d:17:2d:56:2c:
8d:9f:ea:18:f9:64:2a:9c:eb:5a:29:6b:65:e7:15:2a:d5:ea:
1c:1b:da:69:de:bf:67:c6:ae:32:7f:54:82:31:f2:c3:88:f0:
56:38:fd:73:ae:75:d8:3c:10:21:44:a6:d4:1c:47:04:dc:f8:
cb:ba:34:7b:89:9f:99:1a:a4:a6:cb:e8:24:98:24:6e:4a:46:
86:5b:05:1f:ce:30:03:36:13:bb:d4:f0:0e:0c:fb:fd:41:ab:
78:3d:ab:c5:98:c5:a7:27:10:28:f7:8d:6c:1e:cf:0d:87:8c:
4c:68:e0:e5:f5:5d:02:37:65:8a:42:be:cf:84:d8:11:3e:eb:
07:47:d1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:35 2024 by rpki-client on console-fra.rpki-client.org