Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/iTcdly3298lyvUqcHe3D7fCeSjA.roa
File: iTcdly3298lyvUqcHe3D7fCeSjA.roa (raw, json)
Hash identifier: zKaY2bZE0gJc+4z/k1PHyEEpN/I3z/6JzR2CvyOSiZk=
Subject key identifier: 89:37:1D:97:2D:F6:F7:C9:72:BD:4A:9C:1D:ED:C3:ED:F0:9E:4A:30
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018945D67ACCF3A4B23A55C95B22F87A399E
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/iTcdly3298lyvUqcHe3D7fCeSjA.roa
Signing time: Tue 11 Jul 2023 16:43:51 +0000
ROA not before: Tue 11 Jul 2023 16:43:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210972
IP address blocks: 185.115.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:d6:7a:cc:f3:a4:b2:3a:55:c9:5b:22:f8:7a:39:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 11 16:43:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89371d972df6f7c972bd4a9c1dedc3edf09e4a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:23:b9:ff:3d:d5:e2:72:a9:0c:7d:e1:ec:da:
ba:37:d2:c8:3a:3d:f9:02:5d:91:03:9e:75:f1:fc:
b6:d5:50:23:da:e2:a6:f0:2c:f8:ba:69:be:ed:ee:
6f:1a:63:76:bb:7c:4d:4a:ad:4d:3b:ea:13:7b:f9:
3e:37:27:42:6e:79:d8:58:56:40:c3:55:52:df:fd:
f5:e4:f6:d3:e2:1a:63:de:17:95:84:6d:1e:c2:4c:
cd:f0:a4:2e:90:d4:d0:5f:58:ac:56:dd:a3:b8:ac:
f8:28:3a:f9:ee:50:6f:a5:24:89:b5:0a:3c:71:94:
c5:70:b2:34:ce:63:a7:e6:84:04:ca:ca:c1:f1:67:
a9:5c:fa:52:fe:27:be:33:58:10:74:a9:3e:f4:99:
bb:aa:10:d9:1a:4f:a8:fb:c3:59:a8:7f:a7:95:5e:
2f:e1:ec:70:fa:55:b8:f3:fc:19:ec:b2:3f:69:e0:
d6:1b:9f:0b:e0:87:b6:e6:02:02:51:6d:a6:39:7d:
77:00:b8:39:f1:48:4a:d6:70:84:67:5d:6f:ff:d6:
fd:32:9a:c1:7e:29:1d:11:5f:56:d0:1d:4e:d5:8b:
52:ae:34:81:d5:98:b8:e8:df:59:7b:0b:4f:e7:5a:
d0:97:f6:68:dd:5a:f6:15:92:b6:36:0e:d2:28:02:
51:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:37:1D:97:2D:F6:F7:C9:72:BD:4A:9C:1D:ED:C3:ED:F0:9E:4A:30
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/iTcdly3298lyvUqcHe3D7fCeSjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.207.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:2b:d2:dc:b4:1f:46:5a:59:87:e6:e0:61:2c:85:07:3d:58:
56:54:35:9c:b3:15:02:cb:d2:12:1b:89:20:77:7e:d8:5c:f6:
ed:0b:c2:6a:74:b5:f5:c0:53:6a:83:35:ce:83:89:ef:93:87:
a0:61:a8:6c:9d:30:df:38:25:80:b7:75:b9:46:df:ee:3d:7f:
6e:c6:b3:dc:84:8d:b4:54:de:44:ef:6a:e4:88:73:e9:08:ff:
ce:cd:eb:a4:2b:52:3b:bc:d2:f7:dc:d4:1e:ae:f9:9a:15:99:
6a:fc:26:3e:54:55:e4:d4:19:33:f9:67:84:21:7d:c9:07:91:
34:00:e3:86:35:7a:1f:63:f6:65:f9:6a:22:fb:55:6c:e0:ef:
15:5e:0b:63:76:14:a9:24:cc:63:99:6c:46:25:b5:54:b6:b6:
a6:d8:68:53:ce:8e:15:f8:e8:18:86:c9:18:8e:33:36:6c:ba:
ff:5d:db:b5:05:e0:fb:04:0b:88:d3:6f:76:d2:72:5f:54:fd:
6a:22:bf:c0:65:fa:85:88:a6:7f:3b:46:73:1f:2a:ab:8e:58:
97:54:e9:90:25:0e:26:59:54:87:d0:9c:75:18:31:39:de:e0:
33:6a:f1:18:5f:b1:79:2b:a8:fa:87:20:8d:8a:3b:de:f9:25:
88:f5:31:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:49 2024 by rpki-client on console-ams.rpki-client.org