Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/IEjRYYkd6j4q8tfhs7MCUhCH-4g.roa
File: IEjRYYkd6j4q8tfhs7MCUhCH-4g.roa (raw, json)
Hash identifier: ujOJBDWKPel211djp8xdpJyl9CxRCPwRauE53OYGrk8=
Subject key identifier: 20:48:D1:61:89:1D:EA:3E:2A:F2:D7:E1:B3:B3:02:52:10:87:FB:88
Certificate issuer: /CN=79a304ba34b61a15e3797ffd4d1ae8c218c1c7bf
Certificate serial: 018CCA2A07B86B662104EBC1D63AB3E74EAD
Authority key identifier: 79:A3:04:BA:34:B6:1A:15:E3:79:7F:FD:4D:1A:E8:C2:18:C1:C7:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaMEujS2GhXjeX_9TRrowhjBx78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/IEjRYYkd6j4q8tfhs7MCUhCH-4g.roa
Signing time: Tue 02 Jan 2024 12:33:21 +0000
ROA not before: Tue 02 Jan 2024 12:33:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47951
IP address blocks: 185.23.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 10:03:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:07:b8:6b:66:21:04:eb:c1:d6:3a:b3:e7:4e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a304ba34b61a15e3797ffd4d1ae8c218c1c7bf
Validity
Not Before: Jan 2 12:33:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2048d161891dea3e2af2d7e1b3b302521087fb88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ec:b1:9a:65:1a:3f:f2:9b:6d:55:b5:3c:43:
8e:ef:b4:6c:3f:86:de:f4:0d:c1:c9:4b:ed:21:06:
0d:af:42:5d:a4:a6:10:80:91:8f:5a:d4:f9:63:c2:
e4:57:a3:33:0c:97:8f:bb:81:0d:15:0e:ec:5d:7f:
8f:9c:d7:96:53:85:db:09:29:e2:cf:2e:dc:66:a5:
80:78:85:20:c9:8d:20:a0:6f:c2:7a:62:52:06:cf:
d1:1d:47:38:d3:33:d7:70:4e:88:11:51:db:fd:68:
01:6d:6b:9d:13:9f:f5:d6:20:c9:02:c8:8a:2c:b3:
bf:40:10:2a:bc:cc:94:4d:27:7e:ef:ef:3d:1a:f5:
1e:3a:ac:13:20:b4:5c:54:b5:f4:6d:41:eb:70:96:
fa:aa:d6:30:bf:5e:79:ba:90:3f:b0:87:91:ee:93:
6d:c0:be:45:eb:79:8a:22:48:5c:b1:92:20:e5:04:
50:77:95:ee:a4:c1:5a:bf:eb:e7:91:a4:b4:ae:ca:
51:a4:73:2f:75:6d:f1:53:2f:c3:8e:37:09:0b:0f:
52:4d:ef:30:39:03:6e:de:74:4c:5f:cd:8c:c8:d1:
dd:76:a5:2d:b9:99:28:aa:c1:7c:98:31:73:53:75:
ab:28:29:5b:2d:ef:ea:e5:0c:be:16:bd:e5:37:20:
44:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:48:D1:61:89:1D:EA:3E:2A:F2:D7:E1:B3:B3:02:52:10:87:FB:88
X509v3 Authority Key Identifier:
keyid:79:A3:04:BA:34:B6:1A:15:E3:79:7F:FD:4D:1A:E8:C2:18:C1:C7:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaMEujS2GhXjeX_9TRrowhjBx78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/IEjRYYkd6j4q8tfhs7MCUhCH-4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e60107-19f3-4194-bc2f-99a0d29ba563/1/eaMEujS2GhXjeX_9TRrowhjBx78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.111.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:49:fa:b3:d0:0d:5a:00:ca:0f:e2:0f:6d:ee:d8:14:8d:8c:
fb:fc:94:3d:b7:ca:90:c4:21:df:01:4d:06:2d:03:04:cc:d3:
bf:a3:21:22:ec:15:e0:d0:7e:9a:ff:88:02:46:ac:d3:9b:e8:
7c:3a:90:cf:c8:1c:e3:98:ec:95:0f:13:07:48:66:9c:bf:bc:
55:5d:92:e8:2a:4b:42:39:60:7f:74:75:5a:b9:39:78:4e:79:
b1:ed:1c:66:24:24:08:fc:18:8c:a4:b1:fc:40:0c:be:33:dc:
ef:8f:c7:b6:f3:32:8f:71:41:4b:f2:cc:40:56:14:c8:42:d7:
e2:6f:e1:20:38:99:a8:60:1e:b2:ee:81:6f:26:e8:6a:69:c2:
4d:ef:cf:f4:83:b6:34:d6:9c:79:43:02:02:a8:1a:2d:93:15:
2e:03:b4:72:36:0e:48:bb:e3:84:2d:b3:7e:52:b1:ec:de:48:
a9:fb:d9:1a:73:23:a5:cb:6b:3b:12:e9:c2:3e:30:a3:68:1e:
89:a3:f2:5e:da:66:55:3c:3e:1c:3e:d6:89:b4:11:a4:39:be:
06:0e:4c:21:d4:c3:97:d4:8f:58:fc:07:fc:e6:82:c7:33:36:
e1:b1:a5:da:31:73:c1:49:e1:92:84:4c:83:06:b7:27:87:bd:
d8:bb:82:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org