Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/iyazG39go2xTwcH9tCDcg9PSemk.roa
File: iyazG39go2xTwcH9tCDcg9PSemk.roa (raw, json)
Hash identifier: p05jIbP9VQJGPWBptRYibml1H+5dd4wP1s1BrUWD288=
Subject key identifier: 8B:26:B3:1B:7F:60:A3:6C:53:C1:C1:FD:B4:20:DC:83:D3:D2:7A:69
Certificate issuer: /CN=c15e7d7bb69efacb0c73902972c74d72d29bf77f
Certificate serial: 018BB98B04CCCFC7F361374311A107DA9C82
Authority key identifier: C1:5E:7D:7B:B6:9E:FA:CB:0C:73:90:29:72:C7:4D:72:D2:9B:F7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wV59e7ae-ssMc5ApcsdNctKb938.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/iyazG39go2xTwcH9tCDcg9PSemk.roa
Signing time: Fri 10 Nov 2023 14:02:57 +0000
ROA not before: Fri 10 Nov 2023 14:02:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211043
IP address blocks: 185.102.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:8b:04:cc:cf:c7:f3:61:37:43:11:a1:07:da:9c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c15e7d7bb69efacb0c73902972c74d72d29bf77f
Validity
Not Before: Nov 10 14:02:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b26b31b7f60a36c53c1c1fdb420dc83d3d27a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:53:83:60:12:0d:02:45:8b:e0:0a:55:a4:af:
8d:23:ee:89:17:cb:1e:7e:a9:e2:e6:a4:96:5f:4b:
83:0c:9c:80:88:c4:2b:b8:2c:91:38:2a:bf:96:d1:
55:42:8f:06:fb:96:bf:6a:5b:46:41:46:43:2c:3c:
a3:b7:5a:af:8d:58:d6:bf:91:0a:f5:9b:03:39:cf:
86:1d:38:ee:5b:85:f3:99:36:54:52:58:1f:06:97:
cc:2c:68:f4:f0:e7:e6:4e:cd:4d:79:de:bb:67:0f:
52:25:6b:d3:d6:29:5b:f9:3f:96:38:60:33:e1:55:
24:f0:f7:79:e6:a6:3a:50:5c:76:32:af:5b:64:d5:
8c:36:a8:17:eb:46:c0:43:fa:8e:b9:03:39:26:f8:
2d:1c:f7:33:07:b9:70:b5:2e:9a:ff:ff:ac:f9:f1:
b9:1d:80:67:de:01:7a:2e:3b:c9:c0:a4:0f:68:dc:
e9:23:c5:21:23:4c:23:d8:7f:1b:0e:c2:51:91:18:
89:f5:38:5f:3c:d5:18:22:b0:5d:79:2a:17:1f:04:
78:29:c3:c0:b5:4d:f7:8d:85:b3:29:44:0a:8f:49:
fd:c6:45:1a:b8:af:b5:83:6a:69:46:ca:6a:56:92:
84:0a:26:7e:ee:53:11:1c:53:40:cb:25:66:56:3a:
71:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:26:B3:1B:7F:60:A3:6C:53:C1:C1:FD:B4:20:DC:83:D3:D2:7A:69
X509v3 Authority Key Identifier:
keyid:C1:5E:7D:7B:B6:9E:FA:CB:0C:73:90:29:72:C7:4D:72:D2:9B:F7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wV59e7ae-ssMc5ApcsdNctKb938.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/iyazG39go2xTwcH9tCDcg9PSemk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ea402a-0ff6-47d9-9cd0-347a0f7c5b08/1/wV59e7ae-ssMc5ApcsdNctKb938.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.171.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:dc:2c:7c:aa:45:98:63:96:1a:e0:7d:ab:9a:29:5f:e1:a7:
92:4f:cd:17:cd:92:0f:20:f5:81:c5:80:4c:70:2a:d5:79:38:
13:06:72:fa:1b:3f:5f:d0:91:0f:b7:6e:85:45:00:9d:7c:3b:
b8:d5:ef:a0:cd:89:50:dc:5e:02:a9:ed:7a:c7:61:ea:ff:fa:
6d:07:e6:01:44:2b:07:24:c7:c5:f3:49:0f:45:3d:11:68:f3:
04:3e:9f:a5:84:01:df:13:d2:a5:ea:49:80:d4:2e:0b:68:a2:
13:65:c5:1e:18:28:39:8e:6d:c1:ec:76:d7:a6:b9:7e:dc:1d:
99:2c:dc:24:9c:f3:7c:42:3d:bb:3c:42:eb:40:11:d8:5a:91:
52:00:98:cb:d8:be:27:df:56:33:68:51:2e:6a:9e:69:80:09:
14:de:b2:3e:01:df:89:f7:f5:c2:fd:9a:e6:c6:a1:c7:e3:34:
de:ae:be:2b:db:b3:fe:f5:9b:e9:24:ac:f2:07:09:ac:c9:2f:
9d:dd:d0:0e:18:92:47:b9:ba:47:c3:dc:54:d4:5e:5e:76:d0:
bc:b8:2d:3c:09:7b:29:ab:f2:c7:36:2c:79:28:d3:8a:18:e9:
ca:d7:23:6f:19:b4:f5:98:d6:0f:77:fb:11:e0:24:d3:3c:48:
b9:ac:34:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:02 2024 by rpki-client on console-fra.rpki-client.org