Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/iU-1txeFYBtmYrlwZzk00GkWpBM.roa
File: iU-1txeFYBtmYrlwZzk00GkWpBM.roa (raw, json)
Hash identifier: OoVmotqE3y0NWNIn0HVW4Ih1EfiGSGDe/uQxkclYlhk=
Subject key identifier: 89:4F:B5:B7:17:85:60:1B:66:62:B9:70:67:39:34:D0:69:16:A4:13
Certificate issuer: /CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Certificate serial: 01856B25699FC953FB45DBF898DAD463AB26
Authority key identifier: 27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/iU-1txeFYBtmYrlwZzk00GkWpBM.roa
Signing time: Sun 01 Jan 2023 02:24:51 +0000
ROA not before: Sun 01 Jan 2023 02:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32787
IP address blocks: 185.51.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:69:9f:c9:53:fb:45:db:f8:98:da:d4:63:ab:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Validity
Not Before: Jan 1 02:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=894fb5b71785601b6662b970673934d06916a413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:39:47:d7:30:15:7c:c6:58:8a:8f:36:47:c4:
bd:fa:59:07:99:04:cd:f5:22:98:61:6d:f7:83:43:
a3:22:55:15:b8:35:6b:ec:f9:93:88:f5:9e:00:01:
df:42:fc:eb:2c:56:58:95:24:4c:4f:2a:97:32:47:
3f:cc:93:14:95:2e:6d:88:88:6b:5a:e5:1e:20:53:
02:d1:19:53:51:29:5e:54:ff:f7:5d:3d:b4:01:c6:
6c:b7:e0:8f:00:b4:4c:98:b6:0d:80:98:a4:4b:fa:
5b:3a:27:f4:ab:b6:e3:d0:cb:b0:e9:ce:db:1b:86:
76:04:a5:90:f8:39:69:7a:a7:9b:d6:91:18:af:bf:
dd:13:9f:58:af:57:68:b4:c2:8f:88:33:9c:f9:6f:
ac:72:c3:2f:2e:f6:15:dd:98:47:6e:fe:d9:72:78:
94:73:85:5b:d8:13:98:bf:9b:7d:e0:9d:f3:c5:76:
92:74:64:df:eb:39:03:5a:79:02:6c:67:33:ed:32:
83:df:ba:1b:d1:c4:38:8d:58:6f:37:f3:53:7e:32:
2e:bb:f4:73:3c:dc:c1:a6:7b:50:b0:e6:43:af:4b:
87:c0:98:bf:c5:cd:04:8c:d0:c6:40:48:78:95:94:
ad:d7:0b:c7:dd:30:ef:c0:8d:39:51:87:95:17:77:
f6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4F:B5:B7:17:85:60:1B:66:62:B9:70:67:39:34:D0:69:16:A4:13
X509v3 Authority Key Identifier:
keyid:27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/iU-1txeFYBtmYrlwZzk00GkWpBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.123.0/24
Signature Algorithm: sha256WithRSAEncryption
90:27:09:34:93:d3:b7:d3:b6:9a:2d:08:f8:57:4b:56:3f:23:
52:2c:68:ae:d8:0d:a2:6e:1c:b2:34:1e:38:ac:bb:b2:f9:c7:
31:29:45:97:4a:36:6b:1e:2e:3b:8e:08:b7:50:4e:4e:f4:a6:
50:3a:e7:30:d7:1e:61:e8:5c:16:1e:a5:a3:3c:d6:8b:ac:a9:
9d:ec:f7:dc:e8:20:71:6c:8c:09:55:98:ad:4d:d3:2a:40:52:
dc:a7:2e:e8:b3:a0:ce:ed:89:ef:48:f8:eb:c6:12:09:69:3d:
85:5d:7d:df:e4:5c:22:06:28:ef:39:a9:98:63:6a:5e:90:36:
ca:57:c0:76:f3:5f:88:c7:28:3c:6f:96:8b:b7:cf:05:0b:a3:
af:5d:83:18:60:34:17:da:7d:70:83:ae:98:ae:ed:68:24:ad:
d8:1e:24:22:b7:9e:b9:46:4b:06:c8:92:a6:21:33:91:28:8c:
cb:1b:28:88:02:27:3c:6f:2e:49:9a:c1:d5:93:94:fd:59:0a:
c6:d4:68:46:c5:3c:e3:56:50:57:26:60:ec:60:77:5a:24:80:
87:ae:51:20:fe:36:1c:44:f0:cf:39:1a:20:8b:ae:29:3a:43:
83:ec:95:38:ea:3d:a7:f0:36:86:e4:de:95:4f:11:52:5c:df:
ea:08:f3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:45 2024 by rpki-client on console-ams.rpki-client.org