Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/ICpKIto_nGHKu7TlN9WiZ-zNKdE.roa
File: ICpKIto_nGHKu7TlN9WiZ-zNKdE.roa (raw, json)
Hash identifier: 1ZZmDvvg5/TKAXOeivGxhzkueSvzD3kRISV9UCMy6FM=
Subject key identifier: 20:2A:4A:22:DA:3F:9C:61:CA:BB:B4:E5:37:D5:A2:67:EC:CD:29:D1
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 01856EEFE036FE308190FCE9B7C549A40259
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/ICpKIto_nGHKu7TlN9WiZ-zNKdE.roa
Signing time: Sun 01 Jan 2023 20:04:52 +0000
ROA not before: Sun 01 Jan 2023 20:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.221.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:e0:36:fe:30:81:90:fc:e9:b7:c5:49:a4:02:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Jan 1 20:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=202a4a22da3f9c61cabbb4e537d5a267eccd29d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1d:04:3d:ed:9a:e3:e8:4e:bf:a2:de:96:37:
f5:7f:96:22:ce:45:8f:3f:73:ee:b6:ac:e5:4e:2d:
7c:67:95:c7:24:15:4e:61:66:e6:43:cb:7f:c6:0d:
55:6d:d2:cc:f3:75:0f:a3:8a:6a:40:cb:e7:a2:6e:
f9:72:fd:eb:02:f2:d7:22:f2:3f:08:84:26:e5:63:
06:30:86:22:47:d4:28:97:98:81:8f:36:ca:4a:98:
35:49:17:35:a8:eb:1e:be:d1:5b:7e:b1:b2:52:f0:
69:bc:7c:8a:7e:18:aa:ab:e2:30:ea:f1:25:86:b8:
36:a2:c2:88:f2:50:c0:48:e7:cd:62:b2:4d:a2:20:
45:3f:d2:e7:d8:6e:92:3b:a4:81:ad:38:6c:63:12:
6b:00:b6:4b:4e:71:ff:d3:11:10:6e:e6:2f:25:92:
03:9c:30:34:c1:b7:45:6e:eb:80:26:67:28:64:77:
9b:c1:96:9b:b9:99:15:5b:dd:98:51:91:bb:78:e0:
7d:fe:d4:89:e2:a8:90:0b:8f:1f:ac:8d:bd:9f:92:
e8:a1:1e:9e:bd:cf:88:f4:e7:73:d0:09:0e:61:f7:
70:1c:2c:bf:09:8b:36:fc:b5:67:6a:11:f1:24:f4:
2d:35:7a:da:a6:d8:46:15:0e:e5:c9:8e:64:e6:03:
21:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2A:4A:22:DA:3F:9C:61:CA:BB:B4:E5:37:D5:A2:67:EC:CD:29:D1
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/ICpKIto_nGHKu7TlN9WiZ-zNKdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.84.0/24
Signature Algorithm: sha256WithRSAEncryption
63:35:c7:bb:dd:c0:fb:43:50:c4:37:df:e2:aa:5f:1b:d1:0e:
9f:08:ab:42:fa:dd:00:a5:be:55:df:1b:4d:f1:02:6b:50:5f:
a5:ee:3b:50:e1:ef:88:c2:79:7c:03:35:c3:94:dc:7d:77:81:
a8:99:28:ce:6a:3f:bc:6b:ee:c6:31:7f:00:80:65:b9:ae:7d:
34:9f:72:20:ba:65:a7:0e:7d:91:2e:05:ab:11:b0:8f:fa:ad:
17:d6:60:57:2e:d1:b5:24:5e:d8:26:1a:02:70:a4:cb:6b:38:
29:15:d2:88:d9:8d:cc:26:a7:1d:14:8b:85:cd:ce:10:17:b4:
d1:98:39:c8:90:71:22:fb:9d:0f:11:37:e5:bc:63:93:4e:33:
74:a8:9d:61:5b:43:0d:20:c2:d6:2a:7b:a6:8b:75:fa:a1:6a:
87:4d:17:56:47:e3:58:94:cb:01:c8:e1:b9:ac:a9:10:62:4c:
ff:4d:41:b4:43:4a:4a:08:41:ba:ca:75:26:cd:85:e3:46:1c:
00:12:99:af:e0:c8:9c:d5:f2:fb:81:4d:bf:19:22:26:9c:e2:
95:cd:0b:d0:ee:d5:bf:07:5a:66:0b:35:62:a7:1f:97:b9:21:
f3:73:93:16:96:c3:b9:e8:db:1b:58:b3:b6:97:ee:51:b8:b7:
2d:63:ff:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:34 2024 by rpki-client on console-ams.rpki-client.org