Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/ybCURIXRQ3ftYxr2sCmDjtCf8JQ.roa
File: ybCURIXRQ3ftYxr2sCmDjtCf8JQ.roa (raw, json)
Hash identifier: H7h1qMoN9m/VhdkTRtkIlGiuCSK6dj8ltyv3Uljir6o=
Subject key identifier: C9:B0:94:44:85:D1:43:77:ED:63:1A:F6:B0:29:83:8E:D0:9F:F0:94
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 0189F3DE6E8CFA4725B2FD1EB8F23829A66E
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/ybCURIXRQ3ftYxr2sCmDjtCf8JQ.roa
Signing time: Mon 14 Aug 2023 11:46:27 +0000
ROA not before: Mon 14 Aug 2023 11:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206991
IP address blocks: 185.123.101.0/24 maxlen: 24
185.123.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:de:6e:8c:fa:47:25:b2:fd:1e:b8:f2:38:29:a6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Aug 14 11:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9b0944485d14377ed631af6b029838ed09ff094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e2:22:58:28:a5:36:14:a3:65:02:e3:a9:0a:
21:82:b2:4c:44:b6:36:91:c6:37:b9:f7:c1:1a:df:
9c:78:53:b4:27:fc:b3:f2:ca:26:e7:20:cc:ee:e1:
45:02:c8:58:f1:c9:b1:a1:58:7b:0e:75:b2:c1:46:
04:e1:50:d3:88:a2:d7:2a:2a:c9:ff:ee:9f:65:6f:
4f:3f:0a:36:6d:87:2e:17:0e:a6:9f:e7:41:af:42:
56:81:c5:a2:a0:fe:a5:55:49:cf:4f:df:28:ac:1a:
24:b1:3d:6f:70:87:51:6d:68:5a:6f:19:be:4b:7c:
21:2e:d4:9a:6e:18:9a:c4:90:d4:b5:39:c5:c4:fd:
2a:f2:2e:fe:dc:ef:12:e7:4f:57:8a:ea:23:7a:e5:
30:10:5e:d5:d0:95:cd:e9:28:c1:16:23:7a:8b:c2:
17:18:fa:96:af:ed:15:c6:35:47:2d:33:4d:b9:91:
60:cc:18:de:98:88:ae:b6:f4:e1:07:5a:61:2d:c9:
c8:80:e8:62:ab:0f:d8:08:aa:d9:c4:3a:29:b5:94:
39:da:6d:2a:83:36:6f:e2:a3:1a:de:6d:df:9f:9e:
e3:a3:43:1c:63:62:a9:fa:04:ce:24:16:96:15:c8:
b0:5e:00:1a:aa:e0:79:5d:bf:37:5f:0b:37:9c:8b:
f1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B0:94:44:85:D1:43:77:ED:63:1A:F6:B0:29:83:8E:D0:9F:F0:94
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/ybCURIXRQ3ftYxr2sCmDjtCf8JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.123.100.0/23
Signature Algorithm: sha256WithRSAEncryption
69:26:70:ba:ec:37:6d:17:ee:25:8e:b1:c4:3b:d3:52:bb:d5:
1a:94:0d:c7:6d:99:c7:23:87:04:f5:7e:bf:58:24:2e:68:f1:
f3:ab:53:9c:5b:29:35:c5:c4:2f:f0:bd:29:7f:1a:9b:78:35:
e6:29:a1:f7:b8:6b:2d:06:c1:51:53:7d:72:2c:49:07:61:58:
9c:29:2d:c2:50:80:b9:23:ae:04:48:21:4c:60:f6:45:6e:37:
3b:4b:26:e6:29:36:d1:54:88:86:64:e4:40:01:d8:67:b4:c4:
aa:ce:c5:4c:bd:07:f5:b7:71:98:08:db:dc:92:cd:00:72:ab:
91:c8:c6:1b:f6:c0:96:05:e0:b4:ec:e8:8b:ff:0e:c3:fd:22:
e9:6b:20:e3:26:05:91:0f:80:c4:31:cf:81:59:bb:a7:83:08:
74:25:57:8b:43:26:5b:4a:91:42:c7:c0:25:90:6e:f8:1d:7c:
f0:d6:62:2a:a8:99:2b:1c:f1:84:54:94:ed:3a:96:68:38:22:
e5:57:bb:07:68:d0:fb:64:c2:53:f5:93:22:f7:69:bc:6e:ea:
d7:c6:3a:0c:73:0f:d9:17:00:0a:2a:f4:85:5d:db:f1:fc:60:
b1:c3:3c:bc:2b:9d:17:38:30:e7:24:57:05:30:00:67:7b:64:
9d:2e:27:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:20 2024 by rpki-client on console-fra.rpki-client.org