Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/cXmQxBvpvr0e89goEIAoBMId1Fo.roa
File: cXmQxBvpvr0e89goEIAoBMId1Fo.roa (raw, json)
Hash identifier: 9FOXJtPxRQifzpsNHUe535d23Jpo3xgGB9vrbCO6on4=
Subject key identifier: 71:79:90:C4:1B:E9:BE:BD:1E:F3:D8:28:10:80:28:04:C2:1D:D4:5A
Certificate issuer: /CN=9b19758a087876816dc19361eaf1e9412de73f86
Certificate serial: 018B5D5BE9BD6FC80190E0B42685D4A198C2
Authority key identifier: 9B:19:75:8A:08:78:76:81:6D:C1:93:61:EA:F1:E9:41:2D:E7:3F:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mxl1igh4doFtwZNh6vHpQS3nP4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/cXmQxBvpvr0e89goEIAoBMId1Fo.roa
Signing time: Mon 23 Oct 2023 16:26:26 +0000
ROA not before: Mon 23 Oct 2023 16:26:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211462
IP address blocks: 185.150.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:5b:e9:bd:6f:c8:01:90:e0:b4:26:85:d4:a1:98:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b19758a087876816dc19361eaf1e9412de73f86
Validity
Not Before: Oct 23 16:26:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=717990c41be9bebd1ef3d82810802804c21dd45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:08:82:c9:ad:3b:18:60:af:58:ac:29:da:
89:02:4e:54:03:4f:de:0a:48:74:f7:18:37:e3:d4:
74:96:49:11:79:29:93:8c:d5:24:32:97:34:5e:60:
b6:aa:35:f3:ef:2c:24:b2:c2:72:db:0f:f8:9c:91:
4b:97:91:0f:09:25:4e:a3:28:81:4f:f1:57:e5:15:
41:63:27:08:f6:92:bc:37:74:e8:05:2d:da:c1:11:
33:16:52:45:cf:aa:ca:0a:97:a5:ef:a3:ea:9e:a8:
e7:20:a7:0d:a5:b5:21:54:7c:9c:ca:9d:43:3d:31:
f6:4b:e5:63:1a:6e:59:f7:09:3b:bc:9e:c4:51:01:
21:06:5d:f8:db:21:79:a6:d0:08:dd:bc:d2:53:20:
b0:09:fb:4a:cd:f0:be:8b:27:84:8f:41:10:8c:a4:
3c:44:7d:7e:0a:8f:f2:b6:bf:c4:ab:31:dc:52:00:
c1:91:ac:ba:bd:1a:42:12:01:77:97:4a:55:d4:6a:
be:73:c2:d9:4d:ec:a9:f4:21:f4:d8:d2:39:92:d9:
60:4f:96:ac:73:a5:3e:c8:5e:fb:3f:58:2d:7b:58:
aa:4e:d1:06:b2:85:ea:51:e3:b3:fe:44:9d:33:68:
32:99:bc:54:e6:28:22:63:f4:bb:51:04:1b:28:96:
ae:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:79:90:C4:1B:E9:BE:BD:1E:F3:D8:28:10:80:28:04:C2:1D:D4:5A
X509v3 Authority Key Identifier:
keyid:9B:19:75:8A:08:78:76:81:6D:C1:93:61:EA:F1:E9:41:2D:E7:3F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mxl1igh4doFtwZNh6vHpQS3nP4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/cXmQxBvpvr0e89goEIAoBMId1Fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/mxl1igh4doFtwZNh6vHpQS3nP4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.18.0/24
Signature Algorithm: sha256WithRSAEncryption
16:b8:ad:38:d9:25:63:32:2f:0e:17:53:ca:db:2b:9c:57:52:
e4:9b:74:d1:7d:1b:f4:9a:01:5a:8c:7b:ef:6d:86:52:1d:35:
94:85:87:24:62:8b:67:b2:b6:c4:3d:79:2b:64:0d:ee:59:81:
4d:a7:f7:c9:59:13:6f:25:81:1d:b9:2b:ef:45:69:e7:76:85:
da:eb:47:02:a9:04:db:bc:cf:d5:76:9f:9f:11:5d:e8:73:b1:
7a:18:b4:53:68:dc:f5:71:27:b6:f4:8d:0c:b9:e9:56:18:51:
cc:75:c9:8d:b5:9c:96:28:72:ba:56:e5:21:18:62:af:32:51:
1a:bf:1f:67:b2:76:82:85:47:71:50:b2:6e:0c:86:2c:47:e3:
1d:ab:6b:20:9b:99:fa:7b:69:c4:f4:4c:80:01:ea:a4:37:d2:
39:83:48:12:73:1e:b4:81:bf:54:a0:9d:7a:fd:21:4a:da:78:
10:e7:95:8c:88:6b:8f:be:fe:c5:94:ca:2f:39:12:39:73:c5:
fa:34:c1:13:38:e7:ac:b3:da:81:20:31:80:07:3e:0b:a7:75:
c8:6f:7b:3d:10:2a:75:36:08:8a:c7:91:54:91:34:c5:19:a7:
37:a4:55:b3:e2:02:21:33:87:86:78:ed:4b:6e:27:c5:f1:94:
95:99:ef:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:05 2024 by rpki-client on console-fra.rpki-client.org