Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/IVA9WD3_6GpBev4zTMklS2LF3Zw.roa
File: IVA9WD3_6GpBev4zTMklS2LF3Zw.roa (raw, json)
Hash identifier: hzOOKvYOy31R63fA1J6j4fMNbMViLYumQhWp+1i6COY=
Subject key identifier: 21:50:3D:58:3D:FF:E8:6A:41:7A:FE:33:4C:C9:25:4B:62:C5:DD:9C
Certificate issuer: /CN=8d4f3f8ba7dcf5894f2f611d7dfab53d4a63c0a9
Certificate serial: 0185710BE1384C30CD33A9E7D69A9B615A87
Authority key identifier: 8D:4F:3F:8B:A7:DC:F5:89:4F:2F:61:1D:7D:FA:B5:3D:4A:63:C0:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU8_i6fc9YlPL2Edffq1PUpjwKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/IVA9WD3_6GpBev4zTMklS2LF3Zw.roa
Signing time: Mon 02 Jan 2023 05:54:41 +0000
ROA not before: Mon 02 Jan 2023 05:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200839
IP address blocks: 185.76.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0b:e1:38:4c:30:cd:33:a9:e7:d6:9a:9b:61:5a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4f3f8ba7dcf5894f2f611d7dfab53d4a63c0a9
Validity
Not Before: Jan 2 05:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21503d583dffe86a417afe334cc9254b62c5dd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d2:ee:fa:cf:03:77:f2:d5:f7:77:e8:71:8c:
d0:46:84:42:80:92:3c:4b:b1:b9:3e:0e:11:7a:03:
53:90:fd:06:66:3a:21:20:e4:8b:11:78:de:6b:8b:
8b:f0:fb:a4:4c:ec:18:37:a4:71:31:fa:87:6e:70:
ec:65:11:7b:79:d1:38:a8:4c:3e:28:9f:aa:a2:bb:
85:3f:81:fa:90:3c:de:1b:8f:b1:a0:65:07:e0:94:
ac:ff:b8:af:ad:e4:c7:7f:b9:88:11:1c:09:3d:fb:
fc:a9:ec:33:b3:e2:53:f9:3b:24:91:9a:80:a7:44:
8c:ac:23:44:dd:41:0f:28:15:21:85:ff:79:3a:d7:
df:8e:ae:f3:f0:0d:cc:71:4b:75:8d:c9:cd:df:a4:
03:6d:b0:04:5c:56:34:d4:94:b2:19:b3:6c:81:e1:
63:b2:a0:cc:e1:19:c4:d5:e8:1f:c7:09:30:79:47:
17:f2:6d:87:94:5d:90:70:ed:3c:12:55:56:98:40:
55:57:b1:e4:74:2e:7b:25:77:b6:1a:99:d1:bf:a0:
fb:b6:6e:53:dc:ab:49:2e:b4:bd:80:67:b4:5f:10:
34:fd:04:b6:77:8f:05:c9:02:47:9a:6c:14:be:56:
ca:a0:76:00:07:7e:c5:4f:e5:c8:73:f1:1b:9f:e3:
2e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:50:3D:58:3D:FF:E8:6A:41:7A:FE:33:4C:C9:25:4B:62:C5:DD:9C
X509v3 Authority Key Identifier:
keyid:8D:4F:3F:8B:A7:DC:F5:89:4F:2F:61:1D:7D:FA:B5:3D:4A:63:C0:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU8_i6fc9YlPL2Edffq1PUpjwKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/IVA9WD3_6GpBev4zTMklS2LF3Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/jU8_i6fc9YlPL2Edffq1PUpjwKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:7d:92:9b:5c:f7:81:4e:5b:8d:88:15:0a:d0:4e:0d:7d:ab:
45:2e:94:70:1d:4c:8a:2d:42:88:a3:9b:ee:0d:9a:ee:1a:fe:
e0:e5:fe:e5:4a:2a:a6:ea:1a:62:3a:56:e6:31:3a:2a:95:bd:
b3:f6:f1:3d:b5:0b:c5:54:c1:58:6a:b3:fa:dc:18:45:50:4b:
02:43:f1:48:cb:61:b1:70:47:7d:75:df:fb:2e:48:8d:cd:05:
02:28:56:dc:46:ed:43:d2:e4:4c:7b:df:6a:33:00:8e:06:07:
f7:0b:f6:81:7e:a5:d5:9a:e9:49:25:73:cd:f0:7c:75:03:b4:
14:32:53:d2:35:96:b2:a3:70:c6:84:14:08:60:ff:18:bf:6d:
e7:02:24:5b:25:d9:f0:2c:99:87:0c:50:40:31:b0:cb:66:84:
f7:16:be:60:ba:ec:fe:78:b0:28:60:70:c3:6a:87:27:f6:c9:
ce:91:22:44:58:25:23:af:6c:9e:b3:88:b5:a5:bd:1d:58:01:
77:03:33:2e:28:95:fe:5d:02:c1:36:29:b7:28:ee:72:03:d5:
a1:bb:a8:14:ce:45:79:b7:0a:fe:01:83:6c:05:1d:28:46:6c:
64:38:c8:1c:dc:ac:ad:54:0c:7b:80:12:03:07:b9:1a:a8:9a:
fc:64:76:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:59 2024 by rpki-client on console-ams.rpki-client.org