Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/ErwqRkceVqx8Bws0XEM_ofKBaJM.roa
File: ErwqRkceVqx8Bws0XEM_ofKBaJM.roa (raw, json)
Hash identifier: xzZMImpX2p8lJmI6XIQOrA6KY5qr9QC8Lup1CnkwXtA=
Subject key identifier: 12:BC:2A:46:47:1E:56:AC:7C:07:0B:34:5C:43:3F:A1:F2:81:68:93
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 018571D7CBCE213414F72D6EDAA1A0AB8C38
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/ErwqRkceVqx8Bws0XEM_ofKBaJM.roa
Signing time: Mon 02 Jan 2023 09:37:25 +0000
ROA not before: Mon 02 Jan 2023 09:37:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.123.101.0/24 maxlen: 24
2a11:840:24::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jul 2023 13:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:cb:ce:21:34:14:f7:2d:6e:da:a1:a0:ab:8c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jan 2 09:37:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12bc2a46471e56ac7c070b345c433fa1f2816893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:39:01:48:d8:ce:6f:fc:95:5f:18:5d:64:1c:
cc:95:8c:24:33:f5:94:e9:e3:9b:c6:00:87:e6:ac:
7d:6e:52:61:0a:cd:19:0e:fb:25:54:4b:8c:b8:6d:
2f:79:ac:ac:69:27:9c:58:da:fb:b8:8a:7b:1f:f2:
34:45:82:27:52:a4:88:17:81:6e:37:4f:d6:fe:4b:
30:50:8e:49:5a:75:23:24:81:87:3a:0b:e0:11:2e:
09:87:ea:b6:a9:82:45:a1:cd:87:63:58:59:f8:99:
2e:a0:54:b6:83:71:f0:80:47:2e:3e:d1:6d:7c:34:
de:3d:ad:c0:63:52:3d:be:ed:0e:c1:3f:78:0b:8d:
84:b7:14:9d:46:e7:6b:aa:b6:e2:02:4f:0b:2f:ac:
1a:15:46:f0:a1:f5:e1:47:4e:9c:04:91:5f:5e:9c:
43:3f:1c:4e:02:76:a2:63:d8:f8:55:70:92:99:09:
70:26:6d:5b:27:95:f6:96:34:65:49:a9:15:8c:e0:
a0:19:81:08:a0:a4:5b:91:6c:f0:dd:3a:12:68:29:
7c:fd:ab:fd:3f:62:54:97:ab:c9:f6:8f:34:03:92:
21:97:0b:7a:97:ff:d0:e7:48:98:23:75:01:23:0b:
ed:37:1f:6b:47:4f:4d:21:1f:11:2a:39:45:a4:5d:
fd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BC:2A:46:47:1E:56:AC:7C:07:0B:34:5C:43:3F:A1:F2:81:68:93
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/ErwqRkceVqx8Bws0XEM_ofKBaJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.101.0/24
IPv6:
2a11:840:24::/48
Signature Algorithm: sha256WithRSAEncryption
52:51:46:02:3a:78:33:7a:74:82:00:aa:e9:68:30:f2:a6:a1:
8b:3e:d4:f1:21:83:53:46:88:94:5a:86:68:93:e7:cf:79:3c:
fd:55:18:eb:d8:61:66:5b:5d:8b:70:c0:05:40:ea:64:f6:eb:
9f:b7:0a:fd:76:5f:e6:8e:b1:fe:c3:73:a8:2a:dd:e3:9d:ea:
27:08:e9:e8:96:d2:16:ec:35:0d:26:6c:7b:a8:5c:06:11:d2:
8a:cc:64:5d:eb:48:28:de:6d:a1:cd:87:3e:19:45:c7:23:d5:
cf:87:8d:02:5a:aa:f3:42:81:05:06:a6:aa:de:2f:2a:bc:6e:
86:04:dc:df:ff:23:76:93:c6:4f:3c:44:85:bb:c3:d2:8c:f5:
10:3b:bb:23:4b:35:a4:7d:8d:67:20:60:58:0b:cd:4a:41:81:
92:9b:53:d2:27:1c:78:e6:e0:60:6a:2b:8c:be:c8:e6:1a:1e:
4e:37:60:58:41:a4:96:ca:08:e6:8c:af:32:15:32:ea:de:28:
70:81:6c:83:a2:01:58:30:54:33:83:7f:d5:28:15:39:1e:f1:
86:fe:1d:19:e1:e5:ee:9b:36:c2:78:3c:5d:9c:ea:aa:d6:32:
93:f5:2d:07:9a:11:97:92:64:22:41:89:7b:b8:46:15:d5:82:
f3:52:89:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org