Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/idg_zAPuUTyeG8tcQXsl4tDjZnw.roa
File: idg_zAPuUTyeG8tcQXsl4tDjZnw.roa (raw, json)
Hash identifier: Jh+ASHxdOZ2R+3IVw6KSWIVtdJ6Blq0QcriB3ZNz4Gw=
Subject key identifier: 89:D8:3F:CC:03:EE:51:3C:9E:1B:CB:5C:41:7B:25:E2:D0:E3:66:7C
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0187508B3A04D499D1D49D2AD062BED526EF
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/idg_zAPuUTyeG8tcQXsl4tDjZnw.roa
Signing time: Wed 05 Apr 2023 08:31:54 +0000
ROA not before: Wed 05 Apr 2023 08:31:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29066
IP address blocks: 185.233.18.0/24 maxlen: 24
45.155.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 May 2023 04:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:8b:3a:04:d4:99:d1:d4:9d:2a:d0:62:be:d5:26:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Apr 5 08:31:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d83fcc03ee513c9e1bcb5c417b25e2d0e3667c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:90:87:fe:3a:90:61:9e:81:c4:91:74:88:23:
bd:59:ec:98:09:bd:04:1c:4c:27:ee:ee:ee:c4:4c:
18:d7:7c:1a:0b:67:dc:a5:6b:d3:e7:22:cf:73:ba:
20:24:d0:a9:07:af:ad:bd:4e:12:ca:b0:23:f1:f2:
2f:46:19:ce:5b:8c:f2:1c:a0:be:a1:46:26:50:9b:
33:f0:ad:0f:fa:71:a9:6a:77:66:b4:77:c2:80:ad:
b2:bc:14:b1:93:74:49:1e:93:7f:b0:b7:67:b4:f2:
06:78:b0:47:1b:67:37:96:b0:16:94:21:7c:53:28:
c6:ab:2d:dd:36:ce:f8:42:c6:8a:9e:ff:00:75:fc:
e2:b6:92:e1:86:7d:9a:2b:f7:d7:4f:75:4a:5b:a3:
84:f0:40:c7:4e:eb:f6:1e:70:e3:af:90:57:79:3c:
2a:f8:68:6c:ce:f0:ce:cb:f8:18:a4:c9:9f:5c:63:
f1:b5:1e:43:33:e0:5f:74:8e:1d:f4:46:7f:55:91:
8a:df:5a:32:ac:71:88:8f:60:c1:32:50:00:a1:ac:
42:c6:d1:eb:ea:39:79:03:39:c8:e9:1c:d6:47:01:
4c:ae:94:dc:2d:6e:39:d7:28:bf:0f:c8:b2:76:9a:
78:8b:dd:b2:b7:5d:73:ca:fb:b8:f0:b5:5d:6e:08:
ef:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D8:3F:CC:03:EE:51:3C:9E:1B:CB:5C:41:7B:25:E2:D0:E3:66:7C
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/idg_zAPuUTyeG8tcQXsl4tDjZnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.88.0/24
185.233.18.0/24
Signature Algorithm: sha256WithRSAEncryption
48:68:e7:d8:ed:85:d7:f2:45:da:26:37:c5:1a:51:d1:a4:23:
8d:76:4a:e9:29:75:41:2c:dc:53:01:4a:45:37:55:7a:32:cc:
1a:eb:82:23:c6:19:b0:ea:90:ea:57:cc:a7:f1:72:68:f0:7b:
9a:27:ce:95:7c:2a:3d:2c:b2:9c:4b:f4:c2:aa:84:1e:72:12:
99:a8:fc:ca:4a:bd:60:f3:ca:c5:70:65:36:aa:2c:0b:5e:f0:
34:07:ea:ab:c8:5c:a5:15:e0:93:05:21:cd:cd:a8:8a:62:ba:
aa:69:6f:85:ae:f8:d8:42:dd:dd:99:7d:c5:e7:b5:2a:72:5d:
e1:22:25:12:d8:73:7a:65:4b:5a:0c:ff:53:3c:58:0e:97:bb:
f2:4c:95:41:25:c3:91:0d:d2:a2:1b:7b:96:f1:37:6e:71:04:
e4:b8:23:ff:be:28:4b:43:b5:12:3f:e9:f0:5e:4e:fb:68:cf:
66:92:6d:21:af:66:dd:e2:52:01:b7:64:ff:05:f0:79:12:3a:
aa:6d:ac:15:5e:e3:c3:06:84:53:18:2a:67:46:c4:a4:70:04:
20:7c:f2:ea:57:d6:82:06:54:30:f5:2f:2c:9a:f2:07:13:96:
3a:34:e0:d9:f6:cb:c1:8d:7b:a1:ad:90:f1:75:72:01:27:97:
a2:40:39:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org