Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/vTF7UkyaQ1TzEuMBi1fQatyYN4w.roa
File: vTF7UkyaQ1TzEuMBi1fQatyYN4w.roa (raw, json)
Hash identifier: rxefgeQjK6+oewaQjf1GMi835MPGultlnlCCFvLOLtQ=
Subject key identifier: BD:31:7B:52:4C:9A:43:54:F3:12:E3:01:8B:57:D0:6A:DC:98:37:8C
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 018978AE2A104B2D44F810ECDA19A8458A9C
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/vTF7UkyaQ1TzEuMBi1fQatyYN4w.roa
Signing time: Fri 21 Jul 2023 13:40:27 +0000
ROA not before: Fri 21 Jul 2023 13:40:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.18.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:ae:2a:10:4b:2d:44:f8:10:ec:da:19:a8:45:8a:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jul 21 13:40:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd317b524c9a4354f312e3018b57d06adc98378c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:08:37:da:84:08:e7:22:c0:9e:59:4f:8f:4f:
8a:b5:9b:35:d5:d2:2c:fc:61:de:48:6a:57:61:90:
fc:ce:bd:09:9d:92:55:71:14:c2:4b:ea:52:14:37:
91:9d:e1:a2:d5:2c:b7:e2:9b:af:0e:16:a5:d5:85:
44:8d:19:0f:04:32:43:20:4a:03:31:e7:96:41:77:
1b:ef:d0:93:4a:78:51:38:66:61:32:90:ef:1a:09:
72:f5:4f:7b:d9:bf:ed:f8:6f:98:b1:35:22:a0:6f:
72:9d:7d:ab:23:89:87:29:81:be:e3:d5:77:08:15:
28:aa:6f:df:7c:b3:7f:4e:ec:89:2a:a0:9d:c1:a6:
f8:1c:b0:81:0f:53:3a:45:3b:8a:53:f8:91:e1:56:
66:10:9a:1c:1b:75:d0:49:70:16:c7:db:e7:96:7d:
1d:5a:ab:e9:df:03:b7:8e:47:bb:51:fd:30:86:21:
2a:00:e3:e1:23:17:e5:21:75:b4:9f:f1:9d:22:35:
7e:08:ba:d5:09:a4:1c:15:4b:f5:91:a4:5d:17:a1:
aa:a7:ce:27:a9:25:3e:82:bf:ad:c4:7e:ae:14:ce:
57:6d:d7:8e:5f:db:74:b3:d0:d5:e9:0a:bd:8c:1d:
0b:ac:81:fe:f6:2b:ac:9e:b3:0d:ad:31:93:04:91:
93:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:31:7B:52:4C:9A:43:54:F3:12:E3:01:8B:57:D0:6A:DC:98:37:8C
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/vTF7UkyaQ1TzEuMBi1fQatyYN4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.123.0/24
Signature Algorithm: sha256WithRSAEncryption
77:ef:e0:2f:61:1c:3b:f6:0e:0a:0b:c0:a6:63:f9:55:e3:5a:
b8:e8:40:92:f0:ca:d2:c0:a6:90:fa:74:53:bd:75:02:0f:2a:
19:34:19:f7:a7:2f:9f:a7:59:8b:3e:d5:1c:16:8b:7a:94:08:
e6:f7:b4:d9:7a:f3:f7:0c:63:6e:30:bd:3e:3f:fa:79:58:9d:
9f:9a:41:d8:34:9e:e6:eb:d5:a1:78:e0:78:2b:e2:dc:75:5e:
f0:f6:82:57:5d:d8:9d:20:85:4d:82:7f:bf:20:26:5c:8c:9d:
2d:97:2d:32:82:90:f6:fc:f2:9e:27:ad:24:22:01:85:76:37:
ab:0e:7e:51:e9:60:54:ab:d1:ba:d7:4c:1d:d2:02:40:b5:ad:
c2:b6:c0:3a:88:dd:90:96:5b:3e:22:cd:25:95:0a:ff:ee:fd:
99:97:ff:d9:1e:95:9e:ee:b4:f7:f0:43:15:a4:27:c7:85:5a:
b3:52:e3:0c:61:3f:34:24:d4:3c:26:4e:f4:92:15:fb:c3:74:
92:4a:ae:19:65:c6:31:d4:1d:44:1c:bb:fd:65:d4:cf:8d:4d:
48:cf:b0:06:dc:4c:65:0a:0f:b6:52:24:16:9e:25:0f:96:fa:
e2:be:d3:6b:fa:cb:6b:80:99:84:f1:0d:3b:94:22:5a:bb:50:
f6:a5:59:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:18 2024 by rpki-client on console-fra.rpki-client.org