Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/9KCFMpEggy2kBvw4MIfFp7GncdQ.roa
File: 9KCFMpEggy2kBvw4MIfFp7GncdQ.roa (raw, json)
Hash identifier: oQuqpE/ZFOfM8I0BImtU+rLsnoeomw5ihDb/+yNYRbs=
Subject key identifier: F4:A0:85:32:91:20:83:2D:A4:06:FC:38:30:87:C5:A7:B1:A7:71:D4
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 01856D2F226263E4E2F991EF30095DC008D7
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/9KCFMpEggy2kBvw4MIfFp7GncdQ.roa
Signing time: Sun 01 Jan 2023 11:54:43 +0000
ROA not before: Sun 01 Jan 2023 11:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15585
IP address blocks: 86.118.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:22:62:63:e4:e2:f9:91:ef:30:09:5d:c0:08:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jan 1 11:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4a085329120832da406fc383087c5a7b1a771d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6e:51:d5:ae:9e:0d:cf:6c:4e:c5:3c:e4:1d:
89:85:05:11:79:ae:7b:55:8a:58:3f:08:1e:e4:87:
0f:fb:e7:e5:9f:c3:de:66:ba:d2:07:62:76:cb:5e:
b2:b2:3a:4c:62:f5:2c:98:e0:09:03:79:dc:66:90:
1f:a1:6c:72:f9:66:3b:7a:d0:01:e6:d6:fd:8d:8c:
33:bd:30:49:ab:f7:16:77:59:06:77:b8:a6:4d:72:
69:6e:10:6b:f2:a9:3c:af:e4:30:9e:fb:5c:23:f2:
90:aa:17:45:6c:5e:1c:56:88:98:ce:a7:74:99:4c:
14:5d:51:05:0e:e4:14:ac:1b:54:9a:ef:81:d9:8b:
38:cb:a3:80:a7:b7:1b:94:5b:36:42:48:63:0b:3f:
46:b7:19:b5:e6:7e:3e:b3:ae:18:e4:6f:79:f4:b9:
0f:de:a0:a9:44:65:40:c8:89:a3:fb:eb:3a:b1:16:
4b:fc:38:0b:60:e9:08:62:e2:7e:8c:ec:e6:32:35:
84:4f:e0:3f:a2:f9:ce:48:f3:ff:72:d9:91:e5:2c:
b8:96:4a:17:b2:f5:af:2c:a3:9f:35:d4:0d:e5:74:
a9:b1:07:d9:7c:54:e5:56:a7:6c:fb:79:a4:aa:65:
cc:76:4c:a0:e7:cc:3f:8f:53:60:e0:37:b7:05:df:
1b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A0:85:32:91:20:83:2D:A4:06:FC:38:30:87:C5:A7:B1:A7:71:D4
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/9KCFMpEggy2kBvw4MIfFp7GncdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2e:b3:57:b0:24:af:65:1f:c2:b3:12:75:8a:68:16:9c:11:78:
e4:e5:46:62:7d:d4:e6:9e:c0:25:24:19:45:1a:ce:1d:d0:92:
68:2d:aa:3d:f5:b2:31:66:98:aa:18:1e:88:11:49:b5:31:4c:
f0:bc:f8:06:85:8e:0f:c9:90:2b:a5:2c:cb:f4:63:ae:f9:23:
72:76:09:f4:dd:8a:26:d4:64:cf:09:46:cf:7c:6d:95:fc:26:
54:95:68:65:ef:5f:79:cc:16:e3:23:cd:e5:10:31:23:bd:d4:
c7:a4:f7:7c:ab:d0:70:3c:e6:4a:27:ac:69:5e:ff:0c:87:fc:
19:44:05:b9:66:24:cd:57:61:05:66:79:f7:ee:a1:28:cf:d4:
f2:63:22:90:79:9a:36:e4:e1:cc:d1:dc:a0:d0:3a:c4:4e:2f:
18:1b:03:08:71:cd:25:3f:42:ed:2b:57:72:7e:84:b6:7d:bf:
73:3e:b6:1d:5c:70:9d:11:7d:4a:cc:f5:c8:25:07:c1:55:15:
0e:fb:56:29:62:00:17:ab:65:e5:96:99:81:34:76:78:ad:4a:
25:07:02:6f:3a:6a:8f:b0:8e:57:de:38:9d:3c:88:aa:fc:5a:
d4:7f:16:68:2d:32:4b:81:2d:68:96:99:fd:bb:ce:7d:73:5d:
09:ce:ce:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org