Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ib_gZz_ubzh0WVc9V24I-bS3KF8.roa
File: ib_gZz_ubzh0WVc9V24I-bS3KF8.roa (raw, json)
Hash identifier: 6YSw9E0OMlc0666BxNt2l4+3itLqInwonlRq+kCU3q0=
Subject key identifier: 89:BF:E0:67:3F:EE:6F:38:74:59:57:3D:57:6E:08:F9:B4:B7:28:5F
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01856C78606E267488A33635AAA126908DC6
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ib_gZz_ubzh0WVc9V24I-bS3KF8.roa
Signing time: Sun 01 Jan 2023 08:35:06 +0000
ROA not before: Sun 01 Jan 2023 08:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210773
IP address blocks: 185.177.24.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 05:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:60:6e:26:74:88:a3:36:35:aa:a1:26:90:8d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 08:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89bfe0673fee6f387459573d576e08f9b4b7285f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6a:c4:28:4b:e2:01:a5:73:e4:ad:13:34:02:
08:77:4e:c2:bc:eb:ae:11:d7:8c:50:aa:a3:a5:5c:
19:e8:86:5f:c0:fb:86:76:22:90:ed:ea:37:57:d1:
9f:3e:3c:73:dd:2c:d0:9b:3d:6d:dc:d3:9d:46:0d:
d1:28:54:4e:c0:77:f2:bd:d6:b3:b2:ba:12:d7:4d:
48:bc:75:25:72:8d:de:3b:de:e7:cf:21:51:31:ad:
c9:14:15:93:74:4f:d7:86:e5:60:88:c6:69:db:68:
07:e4:04:d7:7e:b2:23:38:71:8f:4e:e3:e7:41:d0:
c3:64:a1:d2:a0:20:51:3d:1e:4b:d2:0f:11:42:0a:
b4:6d:87:69:1e:6d:f4:6f:ef:f1:92:59:80:28:2b:
a0:fa:ca:82:4b:35:48:b9:5e:43:eb:77:81:90:bf:
0a:4b:87:dd:b2:b3:73:f3:14:ac:ab:1c:a9:f8:3a:
0b:13:23:b7:c0:20:88:05:c5:30:33:da:eb:9d:61:
3f:76:4f:44:d2:13:ba:47:42:4b:5b:23:ae:29:37:
1a:ea:0f:ff:dd:75:86:f8:11:7a:e3:20:b4:23:50:
3e:a3:f7:cf:7f:e9:ac:9e:15:18:1c:e3:41:70:43:
80:fe:1a:39:d3:c3:24:4f:8c:a2:6d:82:a4:0e:19:
ba:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BF:E0:67:3F:EE:6F:38:74:59:57:3D:57:6E:08:F9:B4:B7:28:5F
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/ib_gZz_ubzh0WVc9V24I-bS3KF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.24.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:7a:4d:ac:c3:68:4b:3e:86:0b:92:8d:a0:c9:d4:0f:7c:80:
72:aa:50:93:7b:28:32:8f:0b:5f:a1:7e:33:97:16:89:40:0c:
f7:00:72:07:00:25:f5:4a:a0:5e:a6:c2:ed:66:31:5d:04:e2:
6a:f0:40:63:c5:31:ce:fc:69:51:60:83:d0:cf:67:6b:8b:16:
83:fe:07:86:a8:99:c9:49:e1:17:cc:cd:44:cc:8f:c6:6c:f5:
22:b1:e0:4c:ed:9f:70:fb:cb:30:f5:b9:5b:17:80:10:48:34:
11:35:58:d6:50:20:05:b5:a2:95:37:d0:57:22:1a:6e:0f:96:
0b:a9:79:ec:56:cf:ad:a7:d4:ed:ed:98:0c:33:e9:a7:f8:93:
e2:1d:c3:ea:de:27:32:ad:cb:25:95:40:60:0c:d0:94:e3:62:
e4:eb:13:6c:9f:22:d0:1f:9d:e7:3e:cf:2d:4e:f8:28:10:15:
c9:a2:5d:fc:34:8a:b4:63:98:cd:57:8e:fa:73:06:0e:e2:71:
7f:b7:aa:8f:3c:44:31:3d:ae:37:46:34:e4:e1:c7:92:1c:81:
62:bc:82:54:60:af:6a:a8:c6:87:8c:50:75:07:41:dd:9c:b3:
68:6f:18:94:3f:86:24:ed:be:d6:da:9b:54:e2:1a:c5:69:b3:
0c:b6:fb:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org