Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/Cmc90XhOMZFt80bIetyJGZP690Q.roa
File: Cmc90XhOMZFt80bIetyJGZP690Q.roa (raw, json)
Hash identifier: +JZ8N47gHCpNRZ/X3LZ0a22LwHX21jySIDfJaykDl+I=
Subject key identifier: 0A:67:3D:D1:78:4E:31:91:6D:F3:46:C8:7A:DC:89:19:93:FA:F7:44
Certificate issuer: /CN=f7f4902d240b25d7eb77f4f02e24f233f44a9a13
Certificate serial: 01880519AF2D48DFA6F4C28CCDA060E60C1E
Authority key identifier: F7:F4:90:2D:24:0B:25:D7:EB:77:F4:F0:2E:24:F2:33:F4:4A:9A:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9_SQLSQLJdfrd_TwLiTyM_RKmhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/Cmc90XhOMZFt80bIetyJGZP690Q.roa
Signing time: Wed 10 May 2023 09:59:09 +0000
ROA not before: Wed 10 May 2023 09:59:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48016
IP address blocks: 185.57.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:05:19:af:2d:48:df:a6:f4:c2:8c:cd:a0:60:e6:0c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7f4902d240b25d7eb77f4f02e24f233f44a9a13
Validity
Not Before: May 10 09:59:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a673dd1784e31916df346c87adc891993faf744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a4:e9:88:f6:6b:c4:05:1e:4e:7a:e8:29:f4:
0f:6b:1a:5d:ae:e0:78:32:31:a3:5a:70:82:f0:1d:
40:8b:b7:47:11:02:48:85:b0:91:5a:95:0b:07:68:
f2:d3:7c:2e:af:97:8d:50:b7:45:b8:ef:67:04:62:
b7:aa:ce:80:ef:14:2b:90:09:c7:63:cb:8f:0f:68:
4a:6c:48:d3:67:9e:81:e5:92:f0:f1:3b:78:00:03:
78:23:74:7f:fc:0f:d4:85:15:fc:d7:e7:c4:ba:ea:
02:f1:32:d3:a8:f1:45:86:28:6a:c8:c4:25:24:32:
fc:7e:be:36:b1:ac:a7:f4:5f:31:f4:38:12:5e:ae:
8a:68:87:59:a0:c3:29:d3:c2:52:2f:99:45:70:4f:
6d:37:b2:87:01:88:6a:8b:d0:ba:d7:b5:2b:c6:da:
e2:52:c4:e7:36:e9:91:0d:2e:83:9f:65:2b:4b:25:
47:37:72:14:02:2b:d1:7f:26:7d:91:24:c1:6c:10:
b3:d7:02:74:ba:c1:6e:b6:e3:7f:24:e8:81:1a:eb:
7e:8a:1c:b5:8c:f3:96:e4:ad:b4:66:48:15:b4:2b:
4a:a8:f9:bf:95:cc:b8:ab:39:b0:00:76:4b:27:47:
76:25:3a:9c:ca:b5:fe:c3:da:54:9d:c3:7e:47:21:
ee:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:67:3D:D1:78:4E:31:91:6D:F3:46:C8:7A:DC:89:19:93:FA:F7:44
X509v3 Authority Key Identifier:
keyid:F7:F4:90:2D:24:0B:25:D7:EB:77:F4:F0:2E:24:F2:33:F4:4A:9A:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9_SQLSQLJdfrd_TwLiTyM_RKmhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/Cmc90XhOMZFt80bIetyJGZP690Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/c6a4fe-a760-4c4c-81b0-53ab88c5f2c7/1/9_SQLSQLJdfrd_TwLiTyM_RKmhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.18.0/24
Signature Algorithm: sha256WithRSAEncryption
08:3d:2c:3f:49:ef:ef:01:7e:44:73:33:98:08:fa:72:8c:bf:
7e:55:0c:33:b2:9e:f4:2e:d1:cb:02:2c:58:de:5d:2f:35:eb:
67:c3:cf:d3:4f:31:19:e2:65:6b:e1:62:b9:37:c3:e8:fb:cf:
c9:35:29:3e:8b:ce:68:c5:1b:64:ba:03:84:35:eb:e2:73:c7:
7a:b4:4d:6d:ad:be:f7:c8:cf:db:14:dc:90:94:f2:36:70:e7:
43:68:cb:0e:1e:e8:19:0c:34:fb:8a:ec:f2:d8:a9:43:57:57:
3d:2a:5f:e1:a6:46:81:bf:ea:d6:18:22:8b:4b:c3:c7:2e:cb:
32:8a:da:61:76:de:fc:ec:f6:5e:b9:b9:f0:d4:7b:a3:4b:9b:
8a:05:01:c8:37:fa:d6:49:d4:cf:c2:26:45:16:83:cb:ab:b8:
71:30:0b:45:ce:c1:5b:e9:fb:2e:bf:5d:f4:9b:1d:79:15:1d:
04:3d:a7:53:6c:6f:50:8b:39:b6:75:95:05:0d:cc:4e:40:8c:
1d:2f:93:4d:08:f2:7a:cf:02:65:a7:e1:be:23:12:e8:b7:29:
5c:c5:25:3b:aa:7f:f2:0b:ba:d6:25:b7:c5:6a:32:12:6b:06:
97:19:94:84:53:02:e9:1f:d6:d7:b0:9a:31:fd:b6:89:3e:56:
33:34:38:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:47 2024 by rpki-client on console-fra.rpki-client.org