Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/rIECWN2Yt9bz7xwG-W5UiHAMDg0.roa
File: rIECWN2Yt9bz7xwG-W5UiHAMDg0.roa (raw, json)
Hash identifier: sMiTX1pmjqLQ4+YM3V+hzB9R7iNvbzQpWHGv2Bp7jvY=
Subject key identifier: AC:81:02:58:DD:98:B7:D6:F3:EF:1C:06:F9:6E:54:88:70:0C:0E:0D
Certificate issuer: /CN=a1f7882861c29ed599be4a937480c4d13e25bfc2
Certificate serial: 01856FD5371D003CD832310487471E611CE5
Authority key identifier: A1:F7:88:28:61:C2:9E:D5:99:BE:4A:93:74:80:C4:D1:3E:25:BF:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofeIKGHCntWZvkqTdIDE0T4lv8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/rIECWN2Yt9bz7xwG-W5UiHAMDg0.roa
Signing time: Mon 02 Jan 2023 00:15:22 +0000
ROA not before: Mon 02 Jan 2023 00:15:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202617
IP address blocks: 84.247.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:37:1d:00:3c:d8:32:31:04:87:47:1e:61:1c:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f7882861c29ed599be4a937480c4d13e25bfc2
Validity
Not Before: Jan 2 00:15:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac810258dd98b7d6f3ef1c06f96e5488700c0e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d5:98:c5:ac:96:1f:94:bf:62:c1:a5:ca:b7:
46:36:c2:e6:d0:e8:f7:5d:86:a9:f9:6a:c5:8c:c1:
c1:25:ae:f6:95:d8:dc:6c:8d:8c:37:e7:b8:99:a3:
4b:5b:da:86:0b:01:8d:bd:55:f0:60:3e:c3:1c:22:
fa:aa:ae:70:65:a0:e3:ff:d3:ee:fd:db:68:74:99:
24:1b:b1:19:ab:21:9d:28:a5:c6:7d:e4:8f:33:41:
aa:0b:6a:20:2c:9a:83:b6:e2:59:6b:84:95:61:57:
5a:cf:4d:2d:ad:d1:7f:00:d6:01:4a:e6:1c:af:bd:
2d:f4:05:75:07:76:fe:fc:c3:d3:7a:97:07:8d:d6:
18:1b:52:79:32:5e:27:a0:9a:46:01:76:e5:67:af:
a3:de:25:81:91:f5:ff:69:dc:a8:fd:03:fd:29:00:
f5:db:78:8c:1a:5a:b4:c5:b5:08:10:09:44:a9:d3:
ba:73:0e:e1:52:14:7a:6d:68:3c:e3:f7:67:83:2b:
f1:71:91:55:dd:0c:08:9b:30:a1:56:1e:12:d6:0c:
31:e6:c1:81:1f:9b:cf:6b:a2:8c:93:24:81:ce:c1:
8c:d0:4c:fb:f0:35:65:d6:06:99:ba:ad:9b:a0:08:
96:95:64:69:c5:4d:1e:89:c8:e5:57:48:42:73:8a:
84:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:81:02:58:DD:98:B7:D6:F3:EF:1C:06:F9:6E:54:88:70:0C:0E:0D
X509v3 Authority Key Identifier:
keyid:A1:F7:88:28:61:C2:9E:D5:99:BE:4A:93:74:80:C4:D1:3E:25:BF:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofeIKGHCntWZvkqTdIDE0T4lv8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/rIECWN2Yt9bz7xwG-W5UiHAMDg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/ofeIKGHCntWZvkqTdIDE0T4lv8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.247.18.0/24
Signature Algorithm: sha256WithRSAEncryption
54:76:98:f3:80:3f:04:2d:43:64:11:b3:38:61:8a:3d:97:a1:
6f:2b:e6:de:26:62:8c:36:14:de:86:dc:96:9a:7b:eb:1b:29:
3f:ca:fe:f1:4c:49:2d:e5:d7:19:7e:69:8d:bb:4e:c8:ce:8f:
17:ae:0c:f1:22:b1:f5:ae:a2:44:6d:b0:ad:a5:b0:17:ac:40:
39:33:04:d2:fd:d0:1e:5d:58:e5:c2:25:0d:50:38:7f:d9:4f:
47:af:df:95:26:13:65:c6:14:ad:dc:d5:0f:e7:e2:79:47:26:
fe:74:b2:5b:e8:a7:72:18:d3:b6:2b:fb:ec:ef:0b:cb:f8:1c:
b8:e4:7f:60:84:6b:ad:04:14:63:8f:3d:c8:03:dd:98:0c:57:
3d:02:54:f9:8a:9c:b5:0e:84:f8:7a:d3:54:3e:4b:2c:30:39:
8b:4a:35:ca:5e:9f:68:fb:1a:b6:16:7e:36:9b:07:48:2b:48:
0d:c3:7f:22:38:c6:66:cc:0d:3e:05:8c:6d:2d:31:ba:2a:62:
c9:dd:54:78:45:33:e0:a9:15:14:49:95:db:e4:21:e1:99:c2:
28:f7:11:6a:db:77:88:17:46:ce:66:99:17:97:a7:8c:02:13:
47:22:8d:6d:9c:a1:be:2c:e3:98:07:b5:84:57:4c:94:00:5d:
4d:d2:3b:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:28 2024 by rpki-client on console-fra.rpki-client.org