Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/IoL2trNukGOPPbiwZjmA_zQorm8.roa
File: IoL2trNukGOPPbiwZjmA_zQorm8.roa (raw, json)
Hash identifier: ESwoyJbH7W+RPlNGZAlh2yHLnkZ+xtLIuajxsliQe9o=
Subject key identifier: 22:82:F6:B6:B3:6E:90:63:8F:3D:B8:B0:66:39:80:FF:34:28:AE:6F
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 01856B9C678BEEEAD29C6222A03B7A6ED39F
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/IoL2trNukGOPPbiwZjmA_zQorm8.roa
Signing time: Sun 01 Jan 2023 04:34:50 +0000
ROA not before: Sun 01 Jan 2023 04:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59781
IP address blocks: 185.72.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:67:8b:ee:ea:d2:9c:62:22:a0:3b:7a:6e:d3:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Jan 1 04:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2282f6b6b36e90638f3db8b0663980ff3428ae6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:40:d4:0b:b1:47:e1:38:15:36:a9:2a:99:6f:
44:a2:9f:63:bf:40:49:5f:9f:7d:e2:d0:28:d5:de:
36:1d:8d:38:c9:4a:a5:5c:e9:8a:b6:b0:e6:6a:3a:
6a:90:39:91:bd:f1:8c:f9:df:3d:5f:08:ec:6b:e5:
64:af:46:e3:4d:aa:16:b0:ee:d5:bc:a7:fe:69:f6:
f0:1d:d2:63:58:6c:65:51:16:da:f6:46:78:66:3e:
a0:ef:ce:96:5a:5d:9e:9f:4e:7e:23:a5:88:2f:b2:
0d:2c:ce:a6:a0:c3:fb:7c:66:93:2b:e0:8c:82:36:
04:fd:d7:0e:ab:f0:5b:5b:c4:64:5f:5e:4f:b2:e5:
14:15:fb:6f:25:2c:81:2b:55:52:57:79:8c:82:fb:
f6:22:7c:ee:2c:ba:f9:9a:80:03:6e:cf:c8:79:0f:
43:3a:e5:14:91:4b:49:1c:b7:03:30:57:0f:07:a7:
14:7e:4e:e5:72:c9:e0:71:1d:11:9f:f9:9d:95:b9:
d4:b7:2a:2f:34:93:69:84:4f:11:ba:1d:c1:93:cf:
55:34:f5:40:7a:99:3d:ae:52:8f:91:89:50:61:72:
b3:13:cb:7f:67:89:1f:0b:53:39:d9:8b:a8:b2:15:
3f:b4:e9:df:91:db:92:9a:a0:55:53:fb:96:cf:4a:
3e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:82:F6:B6:B3:6E:90:63:8F:3D:B8:B0:66:39:80:FF:34:28:AE:6F
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/IoL2trNukGOPPbiwZjmA_zQorm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.48.0/24
Signature Algorithm: sha256WithRSAEncryption
53:93:b8:94:ef:25:15:fd:17:5d:e4:9e:b4:04:46:61:ab:88:
dc:45:2d:22:01:f3:16:67:69:6e:b9:62:b3:1d:34:2f:6b:da:
64:66:70:2f:8b:7e:70:a6:64:84:b3:ae:b8:61:c8:d9:76:eb:
ba:a7:f2:82:71:61:ed:99:77:a1:51:af:6a:bf:a4:36:8f:36:
f1:a9:57:44:9a:8d:24:5a:6c:4e:3c:49:fb:80:9f:6c:16:c0:
0c:7c:48:b9:27:56:c3:cc:1c:55:b9:07:03:9c:be:5e:80:4b:
fd:ef:fa:41:56:5f:08:8f:33:75:c0:4d:45:c2:ee:87:d7:bd:
64:52:4c:ef:0a:64:de:d6:b5:f6:47:b1:5c:26:d1:21:9f:84:
a6:0b:fa:99:fa:cc:ab:22:73:56:9b:5e:91:52:93:c9:33:72:
0d:1e:ac:ab:9d:bc:48:c4:75:b1:e8:be:87:cb:56:93:ac:4f:
5d:44:24:9e:06:92:1e:7c:2f:5a:19:b9:45:8b:a1:e8:0c:83:
d1:c4:fc:d2:18:2a:cd:21:d2:ba:a5:c5:38:7f:de:05:c2:3f:
19:c1:c8:28:90:05:1f:d4:79:c0:b0:ec:c4:c4:64:c1:e9:38:
16:26:57:e7:a8:96:8f:89:d5:9a:5e:93:54:7c:b6:96:48:c1:
0f:41:14:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:34 2024 by rpki-client on console-fra.rpki-client.org