Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/IqMZSMfmPxMPJPiNkTbuRISejwg.roa
File: IqMZSMfmPxMPJPiNkTbuRISejwg.roa (raw, json)
Hash identifier: 0IYAV1UsIzB3KotZzMgUJTj13IMcT+Ohmf3cMMuWOBE=
Subject key identifier: 22:A3:19:48:C7:E6:3F:13:0F:24:F8:8D:91:36:EE:44:84:9E:8F:08
Certificate issuer: /CN=7d32deda31fe8eafcdad6e2a06fde236e7d11d61
Certificate serial: 018B42B6ED1DF97133E3C7221A62B9BF2991
Authority key identifier: 7D:32:DE:DA:31:FE:8E:AF:CD:AD:6E:2A:06:FD:E2:36:E7:D1:1D:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fTLe2jH-jq_NrW4qBv3iNufRHWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/IqMZSMfmPxMPJPiNkTbuRISejwg.roa
Signing time: Wed 18 Oct 2023 12:16:06 +0000
ROA not before: Wed 18 Oct 2023 12:16:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 185.113.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:b6:ed:1d:f9:71:33:e3:c7:22:1a:62:b9:bf:29:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d32deda31fe8eafcdad6e2a06fde236e7d11d61
Validity
Not Before: Oct 18 12:16:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22a31948c7e63f130f24f88d9136ee44849e8f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:96:2e:e8:81:ca:06:b2:44:14:27:41:24:27:
53:52:3c:20:cc:49:d6:76:b6:9b:6b:3f:d3:34:9b:
1e:49:78:ff:07:49:56:39:b7:0d:7b:be:df:8c:9e:
60:36:5d:e5:73:c5:20:35:0f:a4:68:df:2d:a3:77:
d8:e9:fc:6d:7a:19:9c:e1:81:bf:28:ae:0d:1c:1a:
94:bf:d9:cf:3f:47:28:31:17:a4:52:a3:67:f0:8f:
5c:ba:a4:89:bd:50:c5:15:11:33:88:12:bc:cc:ff:
02:65:fe:b4:12:0e:e3:99:72:f3:68:06:44:f6:3d:
a9:93:c9:9f:a5:9b:87:23:6e:15:40:cd:7f:83:b8:
b2:1c:f5:e1:ee:2f:e8:cb:5e:e5:c5:07:3e:10:bd:
85:f1:c1:e1:cd:9e:ee:c5:16:02:b5:16:29:2e:dc:
4e:2e:95:5d:10:d2:15:1b:0d:4f:4b:fd:f6:21:d5:
8d:24:16:a5:3f:ee:2f:8a:6b:c2:01:44:8d:25:3d:
f6:6e:3c:2c:29:47:f5:0e:35:a4:44:47:b7:aa:53:
42:e3:8e:73:9f:17:b5:59:ef:b8:f3:73:26:19:77:
f6:31:53:a3:a1:71:60:d1:5c:70:13:6d:e3:fe:75:
b3:d3:e0:8d:a4:a3:6a:9b:9f:2f:39:e0:36:14:b5:
0f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A3:19:48:C7:E6:3F:13:0F:24:F8:8D:91:36:EE:44:84:9E:8F:08
X509v3 Authority Key Identifier:
keyid:7D:32:DE:DA:31:FE:8E:AF:CD:AD:6E:2A:06:FD:E2:36:E7:D1:1D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fTLe2jH-jq_NrW4qBv3iNufRHWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/IqMZSMfmPxMPJPiNkTbuRISejwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/c43ed2-70b3-45d8-aa28-53fb018a8c0e/1/fTLe2jH-jq_NrW4qBv3iNufRHWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.223.0/24
Signature Algorithm: sha256WithRSAEncryption
43:0f:d3:c6:b4:05:4e:6b:16:77:92:58:9a:ea:36:b5:10:0b:
31:19:5a:8d:cb:39:ac:96:25:4d:5f:11:35:71:46:26:38:8b:
32:63:41:8d:7f:20:b7:1a:73:19:3c:bc:c9:b8:47:aa:a2:55:
f7:6f:73:69:3f:c8:bc:5b:51:56:b5:64:7c:68:e8:7b:fd:74:
40:41:ef:f7:de:4d:62:3d:6d:e7:6d:8d:02:b0:3b:11:e1:af:
c8:ee:db:5b:97:f6:4c:68:bb:87:c0:4b:f9:d9:60:b8:58:26:
e1:12:8d:0a:29:e2:74:88:34:09:95:02:13:18:f2:94:ff:1b:
90:6a:7f:40:01:b6:b3:c2:58:4c:3a:42:94:8a:cd:a7:91:15:
c6:24:a7:65:bf:cb:03:45:71:c5:3f:3d:aa:bb:fe:23:1a:f1:
cc:f1:31:46:6d:fb:c6:ac:d2:d8:34:76:a9:07:87:d8:95:28:
d3:61:d0:19:6e:c7:54:58:2f:3e:d0:3d:4a:d3:e1:44:da:28:
30:2b:09:4b:70:f8:15:b9:31:cf:ef:2c:f6:c8:01:6e:e4:af:
69:69:b0:5f:02:5f:ce:2e:56:cb:dd:bc:40:c1:6a:1d:a3:6e:
d7:18:7e:10:4e:1f:a3:72:32:ba:a3:21:ad:cf:89:31:33:42:
97:e4:58:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org