Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/IJJTiAfl_aQv3Tpiu-YdleUF4RE.roa
File: IJJTiAfl_aQv3Tpiu-YdleUF4RE.roa (raw, json)
Hash identifier: X4vP9CHiRvKE8T+FBmeXuZVv/GgFBVP2RqJEouaQed8=
Subject key identifier: 20:92:53:88:07:E5:FD:A4:2F:DD:3A:62:BB:E6:1D:95:E5:05:E1:11
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 0185A1F4AAC8DF714A581EA52F3F026627C4
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/IJJTiAfl_aQv3Tpiu-YdleUF4RE.roa
Signing time: Wed 11 Jan 2023 17:50:44 +0000
ROA not before: Wed 11 Jan 2023 17:50:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.138.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a1:f4:aa:c8:df:71:4a:58:1e:a5:2f:3f:02:66:27:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: Jan 11 17:50:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2092538807e5fda42fdd3a62bbe61d95e505e111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a1:2e:09:e2:8d:1f:b8:d8:05:ca:eb:d9:a5:
d6:d9:74:8f:2e:90:5d:48:c6:1c:41:09:d8:13:eb:
96:2c:f9:e7:43:b6:4b:df:0b:b3:f3:6d:be:d4:d3:
4b:65:02:b9:fb:6b:71:ab:fc:1b:c8:96:54:ac:44:
7a:80:da:3b:51:22:47:5d:e3:9f:58:18:7f:cc:7e:
52:db:c0:e0:ee:b1:56:db:b0:92:c2:5b:77:4c:04:
9f:d9:9c:9e:1f:46:8f:6e:84:60:0d:56:c2:48:df:
01:f6:00:07:aa:11:00:3b:8d:50:64:00:57:70:88:
97:0e:03:5a:5e:87:f0:80:c1:8f:42:36:86:b2:ad:
a0:53:11:e2:19:ac:28:77:d1:1d:f4:94:2b:79:6e:
bd:98:b2:aa:4f:3d:9c:44:f0:90:04:d0:a0:5e:6d:
57:4a:d8:17:3b:fc:77:2f:ad:c6:ac:47:f8:6d:d7:
a9:5f:4d:ca:b6:f0:34:b1:ac:28:45:b9:8c:23:7b:
41:92:9f:b2:6b:3b:2f:00:69:7f:1e:bc:b4:1d:3a:
f6:c5:56:7d:01:98:c3:f6:9b:db:ed:90:07:67:41:
ef:2a:9a:f1:78:91:ee:19:62:62:0e:35:9a:ec:7c:
11:be:3e:85:69:5a:7b:b4:af:b9:a0:2f:e7:50:04:
9e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:92:53:88:07:E5:FD:A4:2F:DD:3A:62:BB:E6:1D:95:E5:05:E1:11
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/IJJTiAfl_aQv3Tpiu-YdleUF4RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.235.0/24
Signature Algorithm: sha256WithRSAEncryption
01:15:36:8e:ad:e3:27:86:69:ee:da:b3:22:04:57:89:ab:c0:
d7:54:64:34:38:f2:9d:b2:c9:2d:4d:c9:9b:c1:18:57:19:f8:
08:b7:c7:35:16:e0:d5:ed:ee:a2:19:f2:c5:06:4f:17:0d:3c:
cd:cd:78:ff:e2:b9:56:3e:75:5c:21:00:81:22:25:79:62:cf:
b6:18:05:fb:f6:9e:9c:e2:71:23:6f:08:43:9a:14:d8:2d:d7:
2d:ec:8b:d7:a3:8d:61:af:e3:6c:c6:4b:7d:1d:a0:cc:b9:f7:
c7:e4:bd:e5:aa:b4:3b:0e:ac:c5:00:c9:24:5f:2b:5a:79:f5:
fa:56:51:fa:cb:af:67:5c:27:8b:1b:b9:71:b7:5e:e0:3d:b5:
d5:ba:f8:8d:64:da:54:b0:d5:ef:ec:20:86:4e:8c:9a:3a:30:
57:29:f6:9f:02:53:92:47:d6:ad:ff:9b:07:23:79:62:6d:00:
c6:71:0c:28:ed:12:ae:c1:82:17:91:3e:3a:18:05:cb:63:56:
8b:91:69:c5:42:3a:ee:d9:70:6a:ba:54:48:86:ca:f3:e0:91:
3a:e9:6f:36:ab:03:34:0e:62:b9:d9:64:bc:32:e5:4e:53:df:
fb:4a:07:22:d8:11:48:a6:6e:55:fb:32:b6:a9:93:0a:99:68:
f9:67:09:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:46 2023 by rpki-client on console-ams.rpki-client.org