Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/IlsGFXAL-sWdC8zgBJjsdR0xLb8.roa
File: IlsGFXAL-sWdC8zgBJjsdR0xLb8.roa (raw, json)
Hash identifier: LE0BWzGXmWV41dFmrNkPVWIcTDEIJNqakRPKmJhKSsA=
Subject key identifier: 22:5B:06:15:70:0B:FA:C5:9D:0B:CC:E0:04:98:EC:75:1D:31:2D:BF
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 018892E9F132A925F74312EB33003BF17DEE
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/IlsGFXAL-sWdC8zgBJjsdR0xLb8.roa
Signing time: Tue 06 Jun 2023 22:53:05 +0000
ROA not before: Tue 06 Jun 2023 22:53:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136258
IP address blocks: 185.213.23.0/24 maxlen: 24
109.104.152.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
2a11:840:12::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:18::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:6::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jul 2023 21:07:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:92:e9:f1:32:a9:25:f7:43:12:eb:33:00:3b:f1:7d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jun 6 22:53:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=225b0615700bfac59d0bcce00498ec751d312dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:56:25:f5:9b:32:33:b3:bd:f5:a5:02:97:e7:
ed:98:d6:99:c8:68:d2:89:06:57:13:5f:f7:f6:a1:
cd:19:32:d4:54:dd:75:10:20:1a:e6:a5:a2:b8:a9:
71:5d:aa:8c:8b:b2:85:7a:e1:f1:2b:ff:65:f8:54:
74:fc:63:2e:40:a7:da:ee:77:41:ad:f2:31:0c:57:
08:71:3c:45:b3:98:c2:d8:40:54:a9:b1:63:4a:aa:
d7:39:dc:1d:86:f6:43:c4:67:c3:a2:b3:52:a9:dc:
84:c6:16:e7:e4:90:4f:23:52:f2:b1:35:47:9f:ea:
37:8c:7c:b6:54:a2:c7:19:32:4a:c5:e7:5c:ae:1e:
1d:14:7d:64:62:34:52:f4:34:23:1f:24:e4:9a:96:
38:e0:4e:b1:be:c7:e9:85:22:aa:70:76:cf:26:56:
2f:7b:9d:b3:d7:3f:ca:09:9a:e0:e9:d7:e5:de:c9:
80:5a:a5:23:d5:48:26:74:e1:a6:77:34:0b:13:35:
4f:c0:90:38:a0:30:e6:ca:9b:0c:d6:45:50:2a:14:
50:e6:79:d8:b9:ca:5b:5d:35:4a:77:fb:e1:d5:23:
7d:8e:44:75:26:84:7f:d3:ea:28:4c:13:6a:d7:79:
f4:e9:98:31:ad:da:24:8d:a5:e2:d8:64:3e:40:e5:
b2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5B:06:15:70:0B:FA:C5:9D:0B:CC:E0:04:98:EC:75:1D:31:2D:BF
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/IlsGFXAL-sWdC8zgBJjsdR0xLb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/23
185.126.239.0/24
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:25::/48
2a11:840:40::/47
2a11:840:47::/48
Signature Algorithm: sha256WithRSAEncryption
60:8b:c6:7e:78:18:a4:ca:5c:25:c4:a0:42:b4:3a:85:50:24:
a2:9c:87:7a:74:e1:e9:25:d2:86:28:fb:6f:52:49:93:eb:1a:
e0:d2:ca:b0:65:2a:a8:56:a6:3b:ab:9c:13:f3:dc:3d:4b:45:
4c:f5:79:89:10:75:4f:91:99:95:93:d6:26:c0:46:f6:2f:5f:
01:7c:3e:69:bd:78:a1:7d:ad:80:89:ce:f3:59:77:f3:c4:26:
84:f5:8b:99:0b:46:a2:29:2f:9e:9b:8f:3f:57:7d:93:e1:3e:
e1:9c:18:21:3f:8f:7d:99:30:c8:d4:dc:06:77:9e:d2:d7:11:
4b:1a:e5:bf:6b:a6:1c:2b:6c:2c:c5:24:5f:96:96:01:80:83:
df:82:35:87:9d:ec:76:71:d7:3e:d0:6b:04:ee:34:d5:2b:56:
f9:01:5f:fe:fc:17:3a:1d:f5:9d:c9:c2:db:da:0d:1a:48:4b:
87:9c:1e:b8:05:92:06:55:29:e7:97:7c:bd:0f:58:c3:d4:2a:
8b:a8:62:65:2b:6b:1e:79:5e:68:b9:e2:46:3a:fe:33:74:cd:
e0:f5:60:8d:5c:42:06:c8:89:1f:0a:46:6f:6e:cf:d5:2f:fa:
49:b7:00:0f:16:9f:8d:01:85:5b:e8:fc:57:c6:34:96:cc:a0:
b0:99:d3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:51 2024 by rpki-client on console-ams.rpki-client.org