Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/ErgRbwlM8qh8hYyaiUp7MOJN6zg.roa
File: ErgRbwlM8qh8hYyaiUp7MOJN6zg.roa (raw, json)
Hash identifier: 3iWXSuzcI/kRJ0Yc1JJK/Dsprr9LjV5GTPrQjo9BYPY=
Subject key identifier: 12:B8:11:6F:09:4C:F2:A8:7C:85:8C:9A:89:4A:7B:30:E2:4D:EB:38
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 01856FCB940CC3A381C84D8FBA596B6CB397
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/ErgRbwlM8qh8hYyaiUp7MOJN6zg.roa
Signing time: Mon 02 Jan 2023 00:04:50 +0000
ROA not before: Mon 02 Jan 2023 00:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 451660
IP address blocks: 185.18.228.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:94:0c:c3:a3:81:c8:4d:8f:ba:59:6b:6c:b3:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 2 00:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12b8116f094cf2a87c858c9a894a7b30e24deb38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:60:dc:57:66:3d:a3:8c:61:d0:6c:09:a3:f3:
1e:51:17:ba:f4:7e:7c:2a:ff:6a:52:a9:d3:48:51:
3f:6d:6b:d9:1c:75:b9:ad:08:c7:1d:19:d4:98:30:
07:4d:52:22:da:32:6e:2e:ad:e4:c5:4b:55:19:79:
59:24:6a:53:6c:c5:ee:54:30:f1:bc:e9:85:78:f2:
ab:64:f0:5d:ab:d0:0b:29:53:6a:99:e2:f4:26:09:
2b:df:8b:04:14:69:df:8e:e6:77:30:ff:2b:f6:38:
76:bd:dd:ee:d1:4a:51:5e:37:f0:4a:78:3a:58:b6:
00:36:7e:75:36:d3:7b:b6:c2:83:1c:d0:9f:a0:f9:
17:66:79:4a:96:68:73:47:b9:c2:c3:8e:e5:c3:ba:
a6:08:c1:34:d8:fb:d3:61:be:78:c7:76:7d:7d:de:
2d:20:2e:ba:fb:02:9b:e7:7a:51:41:ac:0c:d6:8c:
57:d5:f7:90:b2:b7:78:98:61:80:40:4f:c4:ec:6f:
a7:41:07:27:31:92:84:14:99:66:56:ed:9d:e2:09:
f0:c3:03:44:50:17:de:f2:46:8a:e2:80:18:fc:ba:
b8:9e:a6:0d:9e:e7:2c:16:94:90:cf:7f:b0:47:68:
b6:20:64:56:73:17:03:4c:12:71:af:9e:c8:92:4d:
3b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B8:11:6F:09:4C:F2:A8:7C:85:8C:9A:89:4A:7B:30:E2:4D:EB:38
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/ErgRbwlM8qh8hYyaiUp7MOJN6zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.228.0/23
Signature Algorithm: sha256WithRSAEncryption
92:0e:09:bb:54:fc:6b:bc:8f:73:c0:12:35:54:4a:f2:d4:5b:
46:96:af:0d:fd:ae:ba:2a:f7:8b:64:c6:76:b8:b5:c4:b1:c4:
cc:47:a9:49:ac:79:ce:d6:18:44:9b:33:b1:2c:28:ea:17:17:
62:b4:54:2e:19:93:c1:5b:12:fe:06:80:f3:cd:26:b0:d2:2c:
be:37:8a:19:1d:e3:eb:00:1d:aa:08:fb:c2:12:a9:2f:9a:bb:
45:3d:e3:18:a9:03:52:b1:30:a2:af:13:45:9b:c9:a4:4e:27:
f4:e4:4c:ed:b8:11:0d:04:19:31:cc:f8:0d:b0:95:f9:c4:c2:
4f:bc:ba:b8:36:92:d4:c3:82:4b:82:ff:99:1c:8a:39:6c:c5:
44:ed:c2:b4:c9:ca:91:e1:2f:8f:70:40:53:f4:3f:b7:56:04:
7c:95:7c:72:4f:88:69:21:b4:79:65:c4:77:ec:92:25:38:44:
a6:a4:d3:ab:01:cc:6e:03:2d:37:8a:36:fc:9d:db:c7:55:df:
35:f0:31:b3:d7:d8:aa:64:e3:e5:0a:e7:4d:9b:c3:74:09:08:
00:b4:3c:41:64:f7:cd:60:85:8c:a8:b9:fb:d2:73:6f:0a:02:
e8:d9:8e:19:78:af:17:e1:06:95:1c:16:dc:56:84:f0:5f:8d:
2a:d6:29:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:35 2024 by rpki-client on console-ams.rpki-client.org