Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IeDM_ofCbGFotm4plVpZkGYWA48.roa
File: IeDM_ofCbGFotm4plVpZkGYWA48.roa (raw, json)
Hash identifier: HUO9Q8ZF1FDl4eQLtbYxeq9CpZiA9RZsexEW5sgfdHs=
Subject key identifier: 21:E0:CC:FE:87:C2:6C:61:68:B6:6E:29:95:5A:59:90:66:16:03:8F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B62C4771112122FF62F119694DBC13
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IeDM_ofCbGFotm4plVpZkGYWA48.roa
Signing time: Mon 02 Jan 2023 09:00:42 +0000
ROA not before: Mon 02 Jan 2023 09:00:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18229
IP address blocks: 185.255.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:2c:47:71:11:21:22:ff:62:f1:19:69:4d:bc:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21e0ccfe87c26c6168b66e29955a59906616038f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:21:80:74:06:75:d6:52:78:31:bc:7c:21:bb:
49:9d:6d:04:84:7c:49:dc:fc:3f:1d:49:20:ee:f5:
d1:69:29:05:2c:19:d2:94:16:89:fb:12:db:96:f8:
fd:25:24:38:6d:8e:bc:7b:51:c8:63:b3:f6:cf:68:
d2:1d:a3:75:da:64:dd:dc:a6:94:c6:60:68:89:8b:
f5:52:08:dd:40:f1:43:41:4f:9b:a2:fe:d2:f3:c9:
f1:1c:a0:db:34:10:75:a7:e4:e1:07:78:36:6c:ec:
a1:a8:a1:cd:68:08:35:99:12:7d:3d:ad:3e:d2:b4:
91:9e:ee:92:1c:c0:23:f7:33:42:88:5f:d2:68:a1:
04:49:6c:2e:85:41:61:7c:07:f1:0a:cd:c9:74:8d:
5d:6d:15:1f:9e:7a:bd:ae:b2:04:bf:bb:10:77:fd:
f0:56:43:75:41:57:2f:80:c7:da:45:9e:fd:29:14:
63:52:14:5c:fd:f8:57:ef:6c:79:c9:ac:d0:09:83:
c5:9d:ea:de:dd:61:0e:32:91:d3:04:6d:b1:ae:5d:
c3:88:01:57:aa:88:5a:38:29:07:87:ed:80:ec:71:
f1:cc:e1:f0:85:1b:e6:ff:93:8e:60:5a:e1:cc:fa:
ee:0e:26:c8:c0:98:53:85:02:07:be:e8:31:da:a1:
ea:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E0:CC:FE:87:C2:6C:61:68:B6:6E:29:95:5A:59:90:66:16:03:8F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IeDM_ofCbGFotm4plVpZkGYWA48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.127.0/24
Signature Algorithm: sha256WithRSAEncryption
23:22:38:a0:3d:f8:66:06:f0:1c:57:9f:75:57:9f:3a:24:b5:
33:91:ad:00:44:8b:cd:a3:bc:72:40:1d:e6:9a:32:1c:2f:e0:
8d:e2:1f:e3:8b:22:9b:92:a9:8b:36:3e:79:35:76:26:d3:a6:
d6:38:28:28:0c:9b:90:ed:c2:1a:db:81:a2:47:57:78:8e:ed:
5e:d0:a2:53:88:7b:ad:f5:24:72:33:bc:8e:6a:cf:54:38:48:
5e:b5:64:19:b0:37:2a:0b:c0:6b:58:dd:04:67:3c:9f:78:bc:
e7:a3:f5:54:e3:df:ac:b7:c9:5c:61:f5:c4:62:90:1e:4b:3c:
47:e7:ac:86:83:6f:88:14:06:06:a4:85:06:7c:b0:df:a4:f7:
f2:5c:27:46:96:83:d3:04:4d:ec:f3:26:6b:c9:e2:d2:e6:1e:
b5:74:ab:a2:ba:47:36:88:da:4c:63:1f:17:7b:ad:d4:79:cc:
dd:8c:60:c6:ba:e9:b0:a8:97:ad:a3:bd:e8:9a:67:1c:ae:92:
5b:f8:f9:4c:26:8e:27:7b:68:08:26:71:dd:2e:38:56:3f:1e:
24:fe:38:aa:66:30:06:3c:54:26:78:57:fd:ad:80:c9:ef:a1:
ab:d1:7c:47:52:da:3c:9e:a7:68:65:40:6a:94:ae:c3:b9:56:
3a:6d:c6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org