Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/1irw4krcvS7ovr9KFmlOBYeqLcw.roa
File: 1irw4krcvS7ovr9KFmlOBYeqLcw.roa (raw, json)
Hash identifier: dRoMiDBGcUjmH2J7E//wRk76TBb53/YIBO6yFOHSglA=
Subject key identifier: D6:2A:F0:E2:4A:DC:BD:2E:E8:BE:BF:4A:16:69:4E:05:87:AA:2D:CC
Certificate issuer: /CN=7dbc2eca324777d74bf2e73c15b0cc7ff3ee75a2
Certificate serial: 0189686D4258F1120D6935F99A695FE8C26D
Authority key identifier: 7D:BC:2E:CA:32:47:77:D7:4B:F2:E7:3C:15:B0:CC:7F:F3:EE:75:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fbwuyjJHd9dL8uc8FbDMf_PudaI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/1irw4krcvS7ovr9KFmlOBYeqLcw.roa
Signing time: Tue 18 Jul 2023 09:55:38 +0000
ROA not before: Tue 18 Jul 2023 09:55:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49036
IP address blocks: 185.113.168.0/24 maxlen: 24
185.113.169.0/24 maxlen: 24
185.113.170.0/24 maxlen: 24
185.113.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:6d:42:58:f1:12:0d:69:35:f9:9a:69:5f:e8:c2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbc2eca324777d74bf2e73c15b0cc7ff3ee75a2
Validity
Not Before: Jul 18 09:55:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d62af0e24adcbd2ee8bebf4a16694e0587aa2dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:c1:f8:d6:0b:c4:6a:83:1e:fd:6c:3c:cf:
1a:5b:c1:e2:af:96:49:ec:cd:4f:13:29:77:7a:ac:
b1:4f:72:88:bb:7c:4a:6f:d6:2c:67:7d:55:38:a2:
a7:4b:34:cf:12:c1:2c:e6:af:a0:27:e6:e0:31:1a:
7d:5d:ce:37:65:ce:0d:ad:73:13:ad:77:8e:33:69:
13:ad:fe:a6:6f:72:36:59:93:c6:59:3a:b4:ed:17:
41:83:5c:14:bb:04:4b:f4:2a:7e:f4:8a:a6:05:8a:
75:40:e0:72:63:57:b5:f3:97:6a:d1:ee:ac:fb:8c:
71:71:e1:5f:21:2c:f9:ad:61:06:31:f5:88:b8:f2:
df:8e:cb:b9:62:b3:2e:5b:9f:f0:3e:c8:94:2d:fd:
39:3a:57:da:c2:56:04:02:75:fd:06:30:b7:26:b0:
37:f3:97:04:d3:bd:7c:88:11:3f:bc:4d:2f:dc:d7:
59:ae:30:c5:2a:8d:2a:d8:7a:7c:ea:46:2e:f0:13:
9c:72:da:92:4d:3c:31:52:c7:d0:72:8d:40:7c:fe:
f2:5f:bd:92:3a:84:36:7f:a1:00:d1:bc:25:23:93:
5a:07:57:f7:e2:83:84:02:5e:4e:f1:f8:86:ef:92:
f1:f4:18:44:88:96:08:3d:89:88:0c:d2:5d:35:28:
d4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:2A:F0:E2:4A:DC:BD:2E:E8:BE:BF:4A:16:69:4E:05:87:AA:2D:CC
X509v3 Authority Key Identifier:
keyid:7D:BC:2E:CA:32:47:77:D7:4B:F2:E7:3C:15:B0:CC:7F:F3:EE:75:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fbwuyjJHd9dL8uc8FbDMf_PudaI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/1irw4krcvS7ovr9KFmlOBYeqLcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/7677e2-c971-4ae7-a7b3-c8d119ee2053/1/fbwuyjJHd9dL8uc8FbDMf_PudaI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:84:4f:b9:9a:5d:4b:73:40:35:9d:05:1d:35:f3:a4:65:41:
fc:42:6b:c7:0c:72:44:bc:5c:99:17:21:6e:29:59:95:41:c9:
c8:4e:8c:ed:f2:91:70:a5:05:e0:d1:fd:35:75:89:87:d9:20:
5e:e5:b7:57:64:c7:b6:14:f7:34:dc:64:87:0a:aa:84:78:9b:
5a:76:0e:36:63:a1:88:84:61:e8:be:2e:cc:a4:bd:ca:9d:ee:
ce:14:04:77:f8:ac:3a:9b:9b:cf:17:cf:1d:6f:db:e5:24:c2:
ec:37:f9:9d:34:53:d8:09:0c:11:37:e7:af:99:11:3f:cf:2e:
4c:d1:52:d9:4f:5a:74:0f:20:d6:35:2d:3e:58:ef:e4:81:c0:
cb:b4:10:25:e1:9e:ea:ac:10:62:2b:84:7d:fe:6d:c7:3d:a0:
f1:99:48:c6:49:d8:12:a6:2f:da:a4:d1:17:84:b9:7e:28:7a:
6d:b9:58:87:e2:35:be:a2:52:0c:b4:b9:99:8c:fd:e3:84:39:
40:4c:82:9c:54:23:f7:e4:05:34:db:aa:6c:3e:29:88:a7:0d:
ca:4c:37:83:bd:99:7f:94:9c:15:fe:d8:03:7d:0f:c3:07:ec:
6a:93:57:7d:7e:68:28:8b:14:a6:6e:d7:fd:f5:27:68:1c:98:
23:05:de:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:35 2024 by rpki-client on console-fra.rpki-client.org