Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/ci5sgxJRgAa3vLJ55oJeuf5Y628.roa
File: ci5sgxJRgAa3vLJ55oJeuf5Y628.roa (raw, json)
Hash identifier: qxNSCy0NCRMnKOWNM8v29ew4gPZC367Mf7gblwgyTJA=
Subject key identifier: 72:2E:6C:83:12:51:80:06:B7:BC:B2:79:E6:82:5E:B9:FE:58:EB:6F
Certificate issuer: /CN=2dc81d24c45ddaa345f9064de29fbca7b129a52c
Certificate serial: 018C33A8FBAA6BA354EBE7F639595767E7B2
Authority key identifier: 2D:C8:1D:24:C4:5D:DA:A3:45:F9:06:4D:E2:9F:BC:A7:B1:29:A5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LcgdJMRd2qNF-QZN4p-8p7EppSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/ci5sgxJRgAa3vLJ55oJeuf5Y628.roa
Signing time: Mon 04 Dec 2023 07:09:21 +0000
ROA not before: Mon 04 Dec 2023 07:09:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 269070
IP address blocks: 185.14.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:33:a8:fb:aa:6b:a3:54:eb:e7:f6:39:59:57:67:e7:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dc81d24c45ddaa345f9064de29fbca7b129a52c
Validity
Not Before: Dec 4 07:09:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=722e6c8312518006b7bcb279e6825eb9fe58eb6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2f:a7:cb:5f:c2:42:28:fb:37:a0:b2:57:14:
92:8d:a4:47:09:86:de:04:2f:cd:33:59:76:16:a2:
a1:3a:b4:4c:b4:f9:b0:bb:7c:a4:d7:12:1f:94:11:
a4:ce:c5:6e:34:81:57:9b:48:54:b6:e2:40:c4:d4:
31:ac:98:11:63:3b:18:13:ca:d4:e4:1b:fb:63:a3:
15:1a:c3:d1:d9:04:e3:81:30:d9:18:ee:6d:56:3e:
33:ef:f9:38:3a:b3:44:d2:30:58:09:6e:e8:5b:e1:
95:a4:99:c9:86:84:74:75:95:26:62:7e:15:33:f9:
20:48:d2:1c:de:3e:eb:b4:81:5d:7f:bd:d3:07:d0:
52:7b:00:f7:b9:ff:27:9d:c0:88:a1:58:6b:96:70:
6a:3e:ba:25:1c:8e:e9:31:2c:76:52:8c:5a:c7:92:
08:fa:4c:31:8b:b9:5b:d5:64:fc:73:21:63:63:cc:
ba:29:93:df:65:1d:0a:f3:27:3f:dd:9e:c0:14:be:
87:94:4b:c8:75:2f:45:99:7b:c6:62:99:90:a4:d7:
ea:13:e9:bf:d4:ec:74:a5:8c:26:ac:8e:7f:4d:73:
ba:72:8a:bf:d6:d4:17:5e:93:fe:c5:36:84:3a:de:
82:5b:4e:25:bc:99:28:15:ad:f3:2b:11:ad:76:32:
97:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2E:6C:83:12:51:80:06:B7:BC:B2:79:E6:82:5E:B9:FE:58:EB:6F
X509v3 Authority Key Identifier:
keyid:2D:C8:1D:24:C4:5D:DA:A3:45:F9:06:4D:E2:9F:BC:A7:B1:29:A5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LcgdJMRd2qNF-QZN4p-8p7EppSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/ci5sgxJRgAa3vLJ55oJeuf5Y628.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/LcgdJMRd2qNF-QZN4p-8p7EppSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.238.0/24
Signature Algorithm: sha256WithRSAEncryption
18:bb:6a:eb:1e:4a:85:c1:91:f5:10:81:18:00:04:17:f6:fa:
9d:7c:ff:36:49:b8:f0:1f:db:d8:b0:be:7b:72:eb:e0:f0:f3:
e7:fc:13:5f:67:70:79:fa:65:0d:d4:11:11:81:b6:7c:db:0e:
1f:f5:ba:fa:da:76:d9:cf:c9:77:c5:26:62:7b:15:4e:9d:7f:
20:ea:06:ae:aa:71:fb:b2:c5:1c:09:4a:43:b4:be:98:d2:7c:
32:e0:61:2e:69:88:2a:cd:b6:6d:e1:c9:9b:a9:d6:14:fd:fb:
7a:75:4a:29:e1:a9:08:3e:82:b8:eb:49:33:27:d1:62:79:db:
14:e6:4e:c6:ed:dc:18:57:c6:f0:53:45:56:e8:80:b8:e1:e0:
77:71:87:12:b5:62:f7:b8:8e:b6:5c:8a:83:b7:ea:53:2e:00:
ad:a1:92:b4:9d:0b:ef:26:c4:cc:f0:c5:b1:95:04:df:d5:69:
ac:2a:be:d2:dd:7f:f6:3b:2b:bc:ad:fe:4b:23:ae:84:f1:c8:
09:0e:ba:f4:dd:88:11:1b:a4:8c:ad:a2:3a:c5:37:48:c3:26:
7c:a6:4b:6f:71:54:64:cc:ef:9d:ce:3c:5f:ca:06:09:05:b4:
5d:65:55:3a:25:e8:43:c4:60:62:2d:0a:30:ab:1b:6b:18:ed:
be:5d:cc:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:05 2024 by rpki-client on console-ams.rpki-client.org