Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/imdbwK-iM1q467FMUdo4sepGLKE.roa
File: imdbwK-iM1q467FMUdo4sepGLKE.roa (raw, json)
Hash identifier: nv21DCLutFZdh+aMbiwMevsE2aDJTOI/RP4L7ml3prE=
Subject key identifier: 8A:67:5B:C0:AF:A2:33:5A:B8:EB:B1:4C:51:DA:38:B1:EA:46:2C:A1
Certificate issuer: /CN=2c96946c501ddf48696da2cf110fdceb286fac98
Certificate serial: 0185718320DD4F08B1241275ACB0ECE954A7
Authority key identifier: 2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/imdbwK-iM1q467FMUdo4sepGLKE.roa
Signing time: Mon 02 Jan 2023 08:04:57 +0000
ROA not before: Mon 02 Jan 2023 08:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198730
IP address blocks: 185.223.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:20:dd:4f:08:b1:24:12:75:ac:b0:ec:e9:54:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c96946c501ddf48696da2cf110fdceb286fac98
Validity
Not Before: Jan 2 08:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a675bc0afa2335ab8ebb14c51da38b1ea462ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ab:42:46:58:2e:11:8a:2c:ef:7e:a8:b3:ae:
ad:83:5d:5b:30:5b:a9:6b:46:38:ff:dc:a7:27:cc:
6c:74:d3:93:e6:f4:b6:2f:98:e7:22:05:de:39:34:
f3:60:ca:e4:32:33:43:dd:a3:48:3c:8e:25:06:65:
f1:d4:40:1e:bc:11:35:bb:93:cc:8f:17:1b:0d:e0:
ff:ca:7d:43:89:13:77:76:cb:d1:e6:9d:3f:c0:83:
00:1f:c8:70:02:e9:cc:42:4e:f7:e5:26:cc:8e:b2:
d3:0a:30:42:a8:97:5d:40:13:34:bc:7b:ca:33:02:
fd:6c:f2:4b:c8:d6:f5:94:aa:ff:5e:da:89:63:d8:
92:88:be:f0:9c:53:09:67:7f:46:36:3c:e1:b9:7f:
24:32:58:c5:09:cd:da:20:61:c7:b6:4f:9c:c5:af:
20:41:1c:76:e3:14:2e:78:46:3c:e3:80:88:fa:b2:
95:33:79:0e:ed:01:85:1b:90:09:24:54:b0:a9:cf:
61:e1:d7:cb:f0:68:b3:4d:fc:0c:69:10:f4:45:dc:
53:77:7d:13:f2:52:b6:92:39:c4:90:d1:77:c4:1f:
88:be:a7:0d:b4:1d:a9:31:7f:dd:58:e3:e9:bb:61:
4a:f6:9d:ac:21:6b:24:cf:f0:b3:07:85:6a:9e:1c:
34:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:67:5B:C0:AF:A2:33:5A:B8:EB:B1:4C:51:DA:38:B1:EA:46:2C:A1
X509v3 Authority Key Identifier:
keyid:2C:96:94:6C:50:1D:DF:48:69:6D:A2:CF:11:0F:DC:EB:28:6F:AC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJaUbFAd30hpbaLPEQ_c6yhvrJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/imdbwK-iM1q467FMUdo4sepGLKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04fef8-d2df-4f7a-92b4-7f970a3af9cd/1/LJaUbFAd30hpbaLPEQ_c6yhvrJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.84.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:14:f9:54:b2:f1:b2:e8:c7:5a:ae:df:57:37:c1:f3:be:6c:
56:34:1e:d8:57:5f:1a:89:31:bd:b4:8d:aa:e2:e6:b1:98:94:
93:c4:b7:0a:09:e7:d5:86:d9:06:8d:4e:36:a7:52:1e:be:5e:
ef:65:21:81:f6:1b:ae:4c:d2:7b:ea:a9:ba:f7:22:05:c9:2c:
2e:18:9e:73:51:f8:7f:68:c2:b4:a1:ce:54:f3:09:b4:5e:c3:
6b:88:96:d4:a3:c7:be:51:fe:61:94:6b:73:ff:20:21:8e:af:
fe:07:da:99:c3:7d:fd:5e:cc:6c:69:85:ee:52:5e:4c:31:0a:
05:1e:6c:6d:0c:67:6d:71:3f:97:dc:db:ef:db:82:6e:bc:e2:
64:37:97:2a:8e:5d:79:82:20:30:0e:52:fd:30:8e:8d:2a:f3:
bc:38:82:57:1c:7e:8b:ca:d6:ae:aa:9f:72:7d:cb:f3:68:19:
66:09:d0:8c:78:dc:b3:6a:e6:20:08:75:24:b4:2b:a2:49:ff:
9d:5a:0e:93:c3:50:03:43:ab:e0:b0:ee:b5:c5:9b:d6:8a:ca:
04:66:9a:6e:f9:20:f5:5e:3d:56:12:0c:56:3c:e2:b2:63:5b:
66:e6:1f:5d:84:ea:18:b0:d1:5a:5a:72:2f:d7:aa:79:e2:61:
73:15:d3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:03 2024 by rpki-client on console-ams.rpki-client.org