Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/08e15b-4a24-4ce0-9454-f87a322a7776/1/iJICaDZ_37yPCE-LhZ8nfxu_myw.roa
File: iJICaDZ_37yPCE-LhZ8nfxu_myw.roa (raw, json)
Hash identifier: 4HhhmVwRTyNcnuu/VWrP5AT1lMCY4tr158PDevCJ2YA=
Subject key identifier: 88:92:02:68:36:7F:DF:BC:8F:08:4F:8B:85:9F:27:7F:1B:BF:9B:2C
Certificate issuer: /CN=1bd21dfb24f7d8ce2311ba4076775474bd50be64
Certificate serial: 0186C621DCBB4825082306D27931DD27FE9D
Authority key identifier: 1B:D2:1D:FB:24:F7:D8:CE:23:11:BA:40:76:77:54:74:BD:50:BE:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9Id-yT32M4jEbpAdndUdL1QvmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/08e15b-4a24-4ce0-9454-f87a322a7776/1/iJICaDZ_37yPCE-LhZ8nfxu_myw.roa
Signing time: Thu 09 Mar 2023 11:29:13 +0000
ROA not before: Thu 09 Mar 2023 11:29:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.17.44.0/22 maxlen: 22
130.255.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 14:51:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:21:dc:bb:48:25:08:23:06:d2:79:31:dd:27:fe:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bd21dfb24f7d8ce2311ba4076775474bd50be64
Validity
Not Before: Mar 9 11:29:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88920268367fdfbc8f084f8b859f277f1bbf9b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1b:ba:e3:28:b1:9f:3d:d4:97:22:36:99:6c:
07:a1:ef:5e:1f:71:56:78:d2:72:e6:5d:aa:0e:02:
4a:d5:b1:1d:78:7e:2a:ff:03:08:4f:a4:93:73:12:
29:57:2a:93:7d:3a:9b:2b:72:05:c2:80:c1:6e:de:
9a:69:bb:7e:c3:4d:a9:76:3d:10:f2:fc:d6:0c:78:
a4:9e:ab:e1:34:07:3e:c5:39:28:10:3d:f5:90:6e:
89:b9:ed:f8:59:95:25:54:55:e0:42:f2:ea:41:67:
20:c2:6f:62:d3:a8:0d:88:8e:f9:be:54:b1:d9:7f:
52:f7:81:41:c5:55:0a:63:5d:73:c0:71:a4:85:68:
20:4c:19:5b:2f:f7:01:53:d7:7d:a9:7d:53:9d:f7:
09:ba:2e:68:e6:b5:94:51:ff:0a:fe:6d:17:b0:d9:
ae:5b:53:23:50:96:e8:87:4e:be:78:a5:19:63:2c:
46:ab:bd:e3:18:8f:c5:d5:50:22:0c:57:36:57:29:
db:0f:19:0b:54:b5:6f:96:d7:16:c4:59:c1:0f:c8:
53:53:66:26:18:bc:f2:6b:cf:1c:c7:a2:60:4b:d2:
e0:0b:4f:9e:7c:79:6b:ac:8d:c8:38:e9:82:69:65:
56:b4:b0:07:01:f1:38:e6:dd:5b:b7:f5:bc:27:50:
fd:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:92:02:68:36:7F:DF:BC:8F:08:4F:8B:85:9F:27:7F:1B:BF:9B:2C
X509v3 Authority Key Identifier:
keyid:1B:D2:1D:FB:24:F7:D8:CE:23:11:BA:40:76:77:54:74:BD:50:BE:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9Id-yT32M4jEbpAdndUdL1QvmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/08e15b-4a24-4ce0-9454-f87a322a7776/1/iJICaDZ_37yPCE-LhZ8nfxu_myw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/08e15b-4a24-4ce0-9454-f87a322a7776/1/G9Id-yT32M4jEbpAdndUdL1QvmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.27.0/24
185.17.44.0/22
Signature Algorithm: sha256WithRSAEncryption
50:e6:10:4a:0d:ee:ac:3c:2f:f9:39:5f:26:24:73:f1:f9:74:
95:02:dd:9c:62:5b:98:69:ae:b4:a3:dd:99:91:2e:15:3d:96:
7b:5d:d0:6f:61:cf:12:72:29:55:cc:e3:21:7b:b3:3e:17:c2:
26:6b:d1:af:fe:81:e6:9a:b3:fb:85:71:38:a8:3e:c3:e7:92:
7b:25:1f:ef:9c:da:ab:b6:b1:8b:01:d2:ca:a5:11:3f:a8:78:
f9:6c:dc:ae:4a:49:51:1f:6f:f9:c1:77:4a:bf:95:69:0d:4f:
7a:70:fe:85:8f:54:6f:3e:b7:3e:15:05:68:4d:14:52:f2:2f:
16:80:5c:bb:5b:a5:ba:4d:58:a9:6b:dd:ff:ec:7c:e2:d7:a6:
20:88:ac:b2:88:eb:3a:48:3b:19:03:2b:24:94:f0:e8:cf:9f:
09:09:c7:6e:e7:48:34:9c:22:b7:d3:2a:40:d1:b6:d2:1a:27:
a4:a3:04:c4:b4:25:0e:b2:0e:a4:f5:c6:6a:d5:38:44:a6:77:
27:73:93:c2:4e:7e:a9:14:e4:93:cb:32:ed:e4:b2:0e:e1:77:
76:46:84:73:9f:b1:48:16:d2:50:54:fc:75:ff:85:6d:db:b9:
00:c1:1e:2c:56:c5:18:c1:ea:41:cf:03:7e:18:89:5c:a5:48:
bc:3b:88:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:45 2024 by rpki-client on console-fra.rpki-client.org