Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/RCDG2_ItPo-fm3d4kEcnq711B3M.roa
File: RCDG2_ItPo-fm3d4kEcnq711B3M.roa (raw, json)
Hash identifier: 77tx95tUgypLd6Vv2Hwt10L3hI+kuAjIMqu5795KIJg=
Subject key identifier: 44:20:C6:DB:F2:2D:3E:8F:9F:9B:77:78:90:47:27:AB:BD:75:07:73
Certificate issuer: /CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Certificate serial: 018572A7F722AB7A818E1C3026529EBB5711
Authority key identifier: 8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/RCDG2_ItPo-fm3d4kEcnq711B3M.roa
Signing time: Mon 02 Jan 2023 13:24:48 +0000
ROA not before: Mon 02 Jan 2023 13:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48851
IP address blocks: 141.226.207.0/24 maxlen: 24
141.226.214.0/24 maxlen: 24
141.226.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:f7:22:ab:7a:81:8e:1c:30:26:52:9e:bb:57:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Validity
Not Before: Jan 2 13:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4420c6dbf22d3e8f9f9b7778904727abbd750773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:28:7d:4f:4f:57:b5:ed:8f:85:41:1b:34:34:
e3:83:c4:c7:09:51:02:24:88:86:50:83:3f:7a:93:
2b:ae:90:3c:29:72:18:6d:8d:48:ed:03:af:36:cb:
40:23:f2:de:03:cb:64:50:af:fc:2e:e2:a0:fb:f6:
9c:f6:50:86:28:e2:27:0b:70:d0:af:04:a5:77:d6:
99:3d:15:99:c3:bb:c9:61:03:85:5d:30:ba:84:43:
49:c1:fb:67:2a:99:86:2f:20:a5:0c:3d:e0:96:56:
16:cb:d6:17:ce:55:b0:0c:f3:cc:ea:40:e7:a6:43:
c0:34:51:4d:81:4c:77:8f:78:26:5e:53:f7:2d:ce:
13:55:57:a0:56:39:a0:54:5a:1a:10:89:24:59:5b:
61:ed:98:30:55:46:ad:27:4e:b0:28:6d:13:32:e2:
27:03:b8:9c:04:bd:f8:71:6c:20:ac:3c:48:e0:14:
b0:eb:d3:0c:91:26:6d:22:6b:6e:46:da:b3:eb:c9:
31:7a:19:b4:8a:cf:4b:1e:e3:43:f4:56:87:0e:21:
56:15:a4:52:22:e0:be:53:92:72:df:19:63:f8:99:
a0:4d:7b:3b:d7:2e:b0:0c:66:13:d1:5b:a3:02:02:
bf:35:cf:61:df:2a:06:e4:fc:e8:ff:fd:f6:05:13:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:20:C6:DB:F2:2D:3E:8F:9F:9B:77:78:90:47:27:AB:BD:75:07:73
X509v3 Authority Key Identifier:
keyid:8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/RCDG2_ItPo-fm3d4kEcnq711B3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/itpL9fGQ85mLgMYUmhRjJw-77hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.207.0/24
141.226.214.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:f6:7b:92:75:e8:21:27:b1:49:97:31:c6:64:22:c1:c3:98:
07:6b:9f:89:e5:5d:b8:ca:35:74:b3:e6:fa:c9:2c:41:15:db:
24:78:fa:08:e6:59:84:c8:e1:1d:e6:57:dd:dc:00:b6:8a:44:
43:1a:63:03:28:36:c9:23:4a:90:8e:50:51:75:1b:f5:b9:be:
a8:c2:9d:95:a4:5f:ef:64:c2:bd:31:46:74:fa:36:3b:cd:dc:
6c:df:dc:ed:54:7c:49:5e:5f:0e:c3:ee:75:e6:5e:54:37:e2:
b3:77:ff:f6:bb:de:f7:7c:ca:81:1d:61:7f:c4:9a:ea:97:a7:
2f:b8:bc:d7:29:c3:5f:e7:db:da:88:69:6b:4f:b4:0c:c1:42:
50:a8:ac:79:46:3b:00:cd:1b:05:59:a2:df:e0:80:d5:de:c9:
d2:5c:ce:95:bd:50:f5:8a:cd:20:03:f1:b1:6d:5b:47:ee:b6:
2e:58:7c:9a:aa:77:86:d3:22:89:79:86:17:71:77:58:e2:14:
48:e3:e8:a1:bd:38:59:f7:7a:33:a0:af:42:dd:c2:ba:4b:13:
ce:ce:f6:2d:fd:f3:15:a8:cf:2b:19:a5:0a:b8:27:2a:d6:75:
da:e0:bf:1c:08:89:b5:44:31:7f:45:f3:74:4a:94:e7:2f:b5:
64:b4:29:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:14 2024 by rpki-client on console-ams.rpki-client.org