Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/iVTc0c-EleU6JM4oTGUCw3MFy9g.roa
File: iVTc0c-EleU6JM4oTGUCw3MFy9g.roa (raw, json)
Hash identifier: rPkrVMla2UeruzclLJRSzWdMcY5gWBpyPboUcVyPA+Y=
Subject key identifier: 89:54:DC:D1:CF:84:95:E5:3A:24:CE:28:4C:65:02:C3:73:05:CB:D8
Certificate issuer: /CN=091cc5d90c9b681a6cb4e772ccaebec342fb9b05
Certificate serial: 018625D34A44A075BA94A07C47E1CA0CA18E
Authority key identifier: 09:1C:C5:D9:0C:9B:68:1A:6C:B4:E7:72:CC:AE:BE:C3:42:FB:9B:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CRzF2QybaBpstOdyzK6-w0L7mwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/iVTc0c-EleU6JM4oTGUCw3MFy9g.roa
Signing time: Mon 06 Feb 2023 08:24:09 +0000
ROA not before: Mon 06 Feb 2023 08:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31175
IP address blocks: 185.117.204.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:25:d3:4a:44:a0:75:ba:94:a0:7c:47:e1:ca:0c:a1:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091cc5d90c9b681a6cb4e772ccaebec342fb9b05
Validity
Not Before: Feb 6 08:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8954dcd1cf8495e53a24ce284c6502c37305cbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:05:f8:0a:e6:fb:a9:fa:e6:c2:3e:6e:7d:b8:
b8:dc:b7:18:c0:f3:4d:75:36:5a:2d:93:cb:1d:83:
04:8f:e2:7b:7a:8a:e8:9e:7c:0e:21:f9:8e:0d:a5:
b4:d6:3f:ab:dc:75:5b:95:3c:72:75:46:b4:15:24:
23:45:f4:d4:ab:d4:c6:93:ed:47:45:e9:65:ca:73:
96:f5:a4:48:a2:ff:85:87:70:cc:0c:4b:2a:cd:1c:
72:2f:57:2b:36:bb:b6:b3:f4:97:03:4c:50:d2:69:
b7:57:bc:32:fd:33:3c:14:38:d2:ab:a2:ef:79:23:
3e:be:4d:78:ff:e8:ed:ab:33:3d:75:85:2c:a3:87:
12:b6:07:ce:86:6a:49:4c:25:20:44:cb:c3:42:46:
a5:84:43:ed:dc:fa:c4:aa:4e:37:63:c1:19:7e:1a:
b6:98:5e:e7:ad:9f:40:fc:4d:8b:ff:c4:de:a2:1c:
ce:5d:6a:9f:37:79:ca:92:eb:ff:00:e7:44:79:44:
78:ef:65:60:a6:d0:ea:b7:e9:a1:ad:98:d7:a3:e0:
a0:c8:2b:c3:d0:6e:f5:26:c7:d1:05:5f:c4:c3:2f:
30:3d:b4:aa:25:e0:85:2d:28:a8:38:de:72:bf:e7:
0c:fc:3c:13:db:f1:ce:ea:49:14:76:9a:23:69:a3:
a4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:54:DC:D1:CF:84:95:E5:3A:24:CE:28:4C:65:02:C3:73:05:CB:D8
X509v3 Authority Key Identifier:
keyid:09:1C:C5:D9:0C:9B:68:1A:6C:B4:E7:72:CC:AE:BE:C3:42:FB:9B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CRzF2QybaBpstOdyzK6-w0L7mwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/iVTc0c-EleU6JM4oTGUCw3MFy9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/738f78-438c-4bfd-806b-73bfad832d2d/1/CRzF2QybaBpstOdyzK6-w0L7mwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.204.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:d8:f6:69:65:01:3b:ce:9b:82:ae:1a:8c:ad:29:b0:74:79:
0b:56:71:8a:bc:a3:b8:20:a0:70:42:13:e4:01:f4:c0:92:99:
63:fa:62:68:65:1d:7e:df:76:65:09:ba:72:10:e4:86:81:b5:
2c:22:84:6c:31:1b:c7:42:fc:3c:27:b1:b3:ea:e5:44:ba:d0:
d4:a2:69:15:fe:0b:fc:3f:ec:be:87:3b:ab:74:52:a4:aa:e7:
40:aa:6f:b9:a3:f3:0d:d4:05:15:bc:09:ad:7c:4e:5d:46:6d:
9b:83:9e:4a:93:8d:db:41:a7:2f:1a:49:99:34:aa:ca:fa:21:
27:69:96:e4:b9:a4:13:2a:7c:05:e1:73:ea:de:12:9b:91:59:
7e:10:5d:87:67:3c:4c:b8:40:2b:8a:73:48:ee:8b:20:87:77:
c0:61:9a:0f:9d:2d:cb:4a:75:84:06:a4:ff:a4:38:4c:66:af:
e1:02:3c:6e:f6:82:55:86:1c:cc:4f:8d:25:d2:cf:61:1c:23:
ee:20:84:f5:84:ee:a2:e8:81:5e:f0:33:56:f9:3a:8f:0b:b8:
6b:2f:66:15:93:77:12:f2:29:98:ae:f9:ac:1f:2a:a2:19:21:
8f:eb:1e:36:6e:2d:90:6a:f0:66:4b:56:f1:54:0f:b7:14:34:
41:e2:ba:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:00 2024 by rpki-client on console-fra.rpki-client.org