Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/1cd134-4d03-4fcd-b229-7bf0356a6bab/1/15oMf7nHM3tZryMl6eqIq3XGC6I.roa
File: 15oMf7nHM3tZryMl6eqIq3XGC6I.roa (raw, json)
Hash identifier: pJiykHl3+kdZcvcDlHqNI1WLvBitz6WIZj0fmB3O+9Y=
Subject key identifier: D7:9A:0C:7F:B9:C7:33:7B:59:AF:23:25:E9:EA:88:AB:75:C6:0B:A2
Certificate issuer: /CN=111b09710acdb72086d658e90d8f025fa6a111b1
Certificate serial: 0187EBC6C6A42A79B3ED49A801E6A7D93DB6
Authority key identifier: 11:1B:09:71:0A:CD:B7:20:86:D6:58:E9:0D:8F:02:5F:A6:A1:11:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERsJcQrNtyCG1ljpDY8CX6ahEbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/1cd134-4d03-4fcd-b229-7bf0356a6bab/1/15oMf7nHM3tZryMl6eqIq3XGC6I.roa
Signing time: Fri 05 May 2023 11:58:05 +0000
ROA not before: Fri 05 May 2023 11:58:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 185.101.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:c6:c6:a4:2a:79:b3:ed:49:a8:01:e6:a7:d9:3d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111b09710acdb72086d658e90d8f025fa6a111b1
Validity
Not Before: May 5 11:58:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d79a0c7fb9c7337b59af2325e9ea88ab75c60ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:13:ed:6a:92:9b:a8:35:90:a6:e5:66:0f:e2:
fd:a1:fb:72:9c:d0:5b:04:c0:84:6b:7d:2d:4e:a0:
06:cc:50:e9:1a:5c:d6:fc:d8:37:19:fb:40:6d:a9:
63:bc:34:18:6f:e2:df:ab:e3:99:59:9c:2d:9f:6c:
37:d9:7e:51:74:7b:5e:f2:29:c4:03:4c:61:d1:4b:
14:e3:ef:2c:47:c5:94:86:d9:52:5d:46:4a:c3:79:
d0:4e:d1:82:59:ec:0c:39:f6:e3:e1:0b:c1:81:ff:
8a:bb:89:ac:4d:98:2c:a4:71:d9:6c:75:e9:52:49:
21:57:7d:52:14:ca:27:46:96:cd:b4:45:f2:81:a3:
c1:aa:d1:4a:72:31:e7:a2:38:2e:34:f5:0e:df:57:
77:f7:d5:31:af:24:30:b1:60:e8:cf:33:c9:88:83:
60:8b:06:02:2b:6f:ec:14:45:44:8f:eb:10:93:51:
1d:e7:ed:88:31:ad:17:d8:d9:73:69:57:75:cb:1a:
ec:a9:5e:29:6b:37:15:c9:bb:73:d6:fb:61:7e:c0:
56:b6:ff:cb:13:4c:ce:a1:eb:06:08:84:5e:71:89:
1c:ac:35:78:4b:41:01:93:28:74:9a:bd:4c:ee:0f:
71:33:30:26:f5:93:6f:d9:2c:bf:dc:cc:a9:4d:ed:
2b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9A:0C:7F:B9:C7:33:7B:59:AF:23:25:E9:EA:88:AB:75:C6:0B:A2
X509v3 Authority Key Identifier:
keyid:11:1B:09:71:0A:CD:B7:20:86:D6:58:E9:0D:8F:02:5F:A6:A1:11:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERsJcQrNtyCG1ljpDY8CX6ahEbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1cd134-4d03-4fcd-b229-7bf0356a6bab/1/15oMf7nHM3tZryMl6eqIq3XGC6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/1cd134-4d03-4fcd-b229-7bf0356a6bab/1/ERsJcQrNtyCG1ljpDY8CX6ahEbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.14.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ce:e2:a4:c2:f0:d6:42:5a:34:79:2d:ac:fb:05:46:ec:16:
32:12:d0:f5:f9:83:ba:f9:74:b6:1b:0f:4c:82:43:74:54:1f:
b0:0c:41:a8:0d:65:65:15:72:20:de:0a:13:d5:fd:f5:81:c6:
95:b7:27:36:90:d8:1a:5d:a9:f8:53:0f:62:6a:88:0e:b2:24:
5e:96:dc:fe:1b:c7:c4:a2:e0:55:a3:5e:55:40:e3:7b:47:b2:
df:64:19:5f:98:dd:47:b9:98:94:a7:c9:40:c6:1f:35:e0:1b:
da:89:a2:c5:02:72:79:2d:a3:eb:ba:02:da:38:af:3b:d6:c8:
56:b0:a9:71:e1:dc:7b:3b:e2:f4:72:c9:da:8e:d2:02:03:37:
99:5d:1c:a4:57:f0:40:b6:cd:f1:4f:56:75:36:c1:c0:03:eb:
96:fd:bc:56:c8:6a:52:84:ed:8c:39:56:28:12:e5:a9:bf:38:
e8:3e:32:e3:2d:2e:75:3b:f2:6b:86:bc:45:b9:c3:a0:ca:a1:
62:13:29:a1:f6:83:f1:26:e8:71:1f:49:db:41:c0:d8:bc:6a:
49:98:50:b2:90:07:cc:d3:14:12:cd:1c:fa:e7:3b:0e:dd:8e:
34:87:67:e2:5f:ef:8f:e2:75:28:08:55:54:bf:63:d0:06:bd:
c2:ad:d2:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:47 2024 by rpki-client on console-fra.rpki-client.org