Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/9IK3lNZhFIEjHqzr3fHgcppewCs.roa
File: 9IK3lNZhFIEjHqzr3fHgcppewCs.roa (raw, json)
Hash identifier: bEbWrATYqkZNzhyFyJytmFVOFvH/EYlVtRnH3KX15pU=
Subject key identifier: F4:82:B7:94:D6:61:14:81:23:1E:AC:EB:DD:F1:E0:72:9A:5E:C0:2B
Certificate issuer: /CN=1ff1ce9ae2563102bf8ea72a89e06152ef7058b2
Certificate serial: 018756F3AB17495C58BEBF8411937449065F
Authority key identifier: 1F:F1:CE:9A:E2:56:31:02:BF:8E:A7:2A:89:E0:61:52:EF:70:58:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H_HOmuJWMQK_jqcqieBhUu9wWLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/9IK3lNZhFIEjHqzr3fHgcppewCs.roa
Signing time: Thu 06 Apr 2023 14:23:42 +0000
ROA not before: Thu 06 Apr 2023 14:23:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199540
IP address blocks: 185.144.98.0/24 maxlen: 24
2a13:ae80::/32 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:f3:ab:17:49:5c:58:be:bf:84:11:93:74:49:06:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ff1ce9ae2563102bf8ea72a89e06152ef7058b2
Validity
Not Before: Apr 6 14:23:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f482b794d6611481231eacebddf1e0729a5ec02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:19:9c:ca:8c:d2:0b:37:c2:8a:a2:ce:41:e6:
e1:85:9f:b2:15:fc:35:b1:72:1c:5d:06:ab:5c:68:
a0:2a:39:59:c0:83:69:73:82:79:0e:4b:94:1e:9b:
9b:32:6a:bb:e3:7e:19:63:97:a3:24:d3:9d:3a:62:
a0:38:1d:15:cc:ac:1c:18:94:f9:77:5d:d0:5b:2d:
e8:18:f3:71:63:a7:38:87:47:8a:88:b6:08:9b:1c:
3a:1d:f7:36:0b:ad:f4:58:5b:cf:00:e5:f7:dd:cc:
bf:31:a3:94:c2:4f:35:a2:d9:53:4c:8b:ea:44:aa:
e2:f3:2f:cd:ad:53:f9:b4:ab:45:86:10:26:4e:b9:
52:3c:23:1d:cb:69:31:7f:8d:f9:0f:fb:87:ef:9a:
50:f3:74:ca:04:a6:a1:3d:d7:ee:6c:a9:3c:f1:53:
16:b8:8e:dd:80:1b:2e:54:bd:22:c8:e9:1a:dc:c0:
b8:42:4f:03:42:30:cd:5c:37:eb:3f:97:8e:8e:e2:
3e:ea:2f:fe:7e:15:25:c9:e0:49:5c:b4:4f:8f:b9:
07:20:6c:27:b9:37:5d:70:8f:35:fa:b7:77:3d:b9:
14:d9:3e:0c:63:81:60:58:86:66:59:0d:b7:7a:0c:
68:e0:74:ac:ad:54:51:1e:8d:bb:44:87:f8:c5:76:
a3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:82:B7:94:D6:61:14:81:23:1E:AC:EB:DD:F1:E0:72:9A:5E:C0:2B
X509v3 Authority Key Identifier:
keyid:1F:F1:CE:9A:E2:56:31:02:BF:8E:A7:2A:89:E0:61:52:EF:70:58:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H_HOmuJWMQK_jqcqieBhUu9wWLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/9IK3lNZhFIEjHqzr3fHgcppewCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ab112d-40e1-41d4-a724-a76299e8559f/1/H_HOmuJWMQK_jqcqieBhUu9wWLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.98.0/24
IPv6:
2a13:ae80::/32
Signature Algorithm: sha256WithRSAEncryption
4c:a0:cb:ae:12:99:2c:0b:c3:3d:db:ab:df:62:47:2c:05:be:
70:cb:a5:5c:f5:1f:bf:40:76:6e:04:42:5e:fc:01:e7:95:f1:
2b:14:98:49:1e:b1:58:53:17:ec:76:33:29:ae:a8:74:53:fb:
80:03:43:a1:08:31:ea:d0:16:a8:9a:20:97:3e:45:d8:14:49:
05:05:cf:db:81:9d:3b:c5:78:bb:c7:9c:6d:c1:d4:2b:97:62:
05:ef:ac:9e:58:49:a3:fb:88:97:7f:5e:8b:d2:49:f7:d0:0a:
28:f6:2b:47:0c:d9:5d:4a:f3:08:d5:d8:17:f0:c9:73:49:44:
53:22:9d:81:28:eb:5f:5c:a5:f4:1d:fd:9c:91:19:12:11:04:
e0:7d:37:eb:c2:52:5a:ea:5a:2c:b0:a3:91:f3:25:f1:6b:8e:
4c:12:a1:94:3d:6e:8a:04:d3:24:9a:3e:27:aa:d8:29:18:32:
3e:74:dc:d4:b9:1e:9a:17:99:d0:ea:b3:f8:96:be:c8:69:02:
62:bf:18:91:42:81:e7:ca:0f:f2:70:29:21:6a:d0:e0:8e:4b:
b1:24:c2:f0:86:12:fd:6a:cd:57:fb:00:57:38:5b:56:9b:33:
d8:04:dd:62:1c:ad:fc:a7:8e:b6:b4:ca:44:3d:2e:df:32:6c:
e8:bf:8a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:22 2024 by rpki-client on console-ams.rpki-client.org