Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ikcgot4NnuRfgIDCxzePCOAi0pg.roa
File: ikcgot4NnuRfgIDCxzePCOAi0pg.roa (raw, json)
Hash identifier: ry/1QWCl3Du6ayP9HBCiJHve/li5dmRX3s9WYHZ8HOU=
Subject key identifier: 8A:47:20:A2:DE:0D:9E:E4:5F:80:80:C2:C7:37:8F:08:E0:22:D2:98
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0185B2DD09E5D867C9C49EA020A178F2E859
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ikcgot4NnuRfgIDCxzePCOAi0pg.roa
Signing time: Sun 15 Jan 2023 00:38:28 +0000
ROA not before: Sun 15 Jan 2023 00:38:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213205
IP address blocks: 185.233.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 15:57:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b2:dd:09:e5:d8:67:c9:c4:9e:a0:20:a1:78:f2:e8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 15 00:38:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a4720a2de0d9ee45f8080c2c7378f08e022d298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b4:3f:be:75:a0:b4:df:ba:88:74:13:a3:77:
1a:41:0f:98:8b:33:b7:2e:92:74:02:d6:7c:16:e1:
cf:e3:fd:2b:37:f7:ad:3e:bf:d1:b8:17:78:ec:e1:
0f:4e:b6:f5:5c:ee:60:56:05:54:63:bf:6d:d8:20:
5e:f2:0c:15:2d:11:f8:a4:59:66:87:71:d5:5d:bf:
1a:7b:27:3f:5b:0c:70:40:fe:b5:b3:da:db:79:a6:
a7:1e:64:41:0b:33:43:e7:83:36:82:8e:82:ea:69:
12:4f:a2:b0:9d:f1:c8:b8:6d:e6:48:93:72:dc:e1:
96:95:02:98:e3:8a:33:6e:4b:e3:16:1a:81:1b:58:
bf:34:b5:69:3e:ae:27:de:36:5e:d2:43:04:f7:de:
3c:cc:fe:ed:dd:bd:4f:97:ca:35:48:7b:4c:b8:83:
fb:a6:08:73:7a:b2:84:7a:f5:67:67:4d:c9:4b:a9:
ae:47:41:de:6e:2f:97:c5:b6:33:a6:c1:ac:00:de:
89:a0:81:c3:66:28:a3:61:4d:cd:ae:08:d0:11:0b:
4c:6a:64:3b:8d:62:79:3a:aa:8f:3f:c2:60:f0:ee:
ee:0a:45:31:bf:b4:b5:50:52:43:24:03:18:85:59:
d2:0e:21:43:7a:d2:71:83:fe:16:d7:a1:5b:14:9c:
31:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:47:20:A2:DE:0D:9E:E4:5F:80:80:C2:C7:37:8F:08:E0:22:D2:98
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/ikcgot4NnuRfgIDCxzePCOAi0pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.18.0/24
Signature Algorithm: sha256WithRSAEncryption
72:41:64:e7:c3:6a:a6:f7:df:8d:b5:d1:c4:5c:6f:68:cb:04:
f7:c2:1a:cd:19:7f:68:06:ae:8f:b4:50:cf:90:6b:11:1b:77:
02:22:76:ac:39:5f:a4:05:45:10:be:32:0f:24:c9:2e:6a:cb:
2f:b3:41:9a:18:64:af:c9:84:af:31:cf:b3:3a:c5:5c:cd:f0:
d6:f7:82:bb:55:c1:ae:c5:d0:b7:8f:a8:88:62:d0:fd:06:05:
14:98:b3:03:9a:e9:d8:03:e4:18:cd:54:e6:2e:63:62:2b:9b:
03:89:62:1b:3e:59:28:aa:67:2c:45:c0:31:e1:ac:60:5a:35:
7d:ab:2b:aa:2e:b8:cd:8c:67:53:f0:69:9c:69:21:c4:0a:ef:
ab:26:98:cc:d6:6e:7c:00:1e:72:6b:30:92:97:c3:07:0c:e1:
51:b0:74:cc:6f:59:9a:b9:cf:f4:cc:07:5b:12:58:71:da:a7:
56:1c:ee:97:09:d8:fb:2a:6f:c9:12:d9:9c:7c:78:4d:fe:43:
dd:21:24:c8:26:32:7a:3e:9d:32:be:e3:f5:f9:9d:71:be:9c:
d2:a5:ad:82:49:a0:fa:8e:2c:1c:f2:a2:6a:05:79:76:2d:ae:
e7:21:78:58:8d:ba:d1:63:34:db:1f:67:f8:52:8a:06:52:d9:
53:1b:a5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org