Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/Iw4H_-3kJntsMbESDMRzPwg9XVI.roa
File: Iw4H_-3kJntsMbESDMRzPwg9XVI.roa (raw, json)
Hash identifier: gfWWWFEhEMYWK2SrDWkxQNBa7AulHbqClWfSEG1CyPY=
Subject key identifier: 23:0E:07:FF:ED:E4:26:7B:6C:31:B1:12:0C:C4:73:3F:08:3D:5D:52
Certificate issuer: /CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Certificate serial: 018B46347B3E1248D97614ABB11CAC26F182
Authority key identifier: F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/Iw4H_-3kJntsMbESDMRzPwg9XVI.roa
Signing time: Thu 19 Oct 2023 04:32:06 +0000
ROA not before: Thu 19 Oct 2023 04:32:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 86.106.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:46:34:7b:3e:12:48:d9:76:14:ab:b1:1c:ac:26:f1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0cc7a447482e57b0604babb82a52409cde3b36d
Validity
Not Before: Oct 19 04:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=230e07ffede4267b6c31b1120cc4733f083d5d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2c:9c:db:80:27:c5:65:36:6f:70:91:2a:8c:
dc:99:5e:f7:ea:27:f6:f5:d8:79:fa:43:a3:4d:76:
1e:87:07:b9:49:80:f3:82:71:be:41:95:6d:4c:65:
d0:5a:3e:06:be:55:bc:d9:60:6e:22:54:30:19:a2:
fa:20:5a:79:f2:84:f7:85:26:58:d9:d1:cf:88:0a:
f9:5e:9a:5f:9c:c2:8d:a0:0d:d6:35:cd:95:95:ba:
f5:fb:64:e3:2c:62:d0:f2:b7:7c:86:bb:a4:5f:4b:
ee:2c:d6:a5:72:1a:0c:9a:91:5c:35:f3:ec:51:58:
43:b3:f5:1f:d9:69:c3:f1:5d:1e:f0:f7:96:93:49:
24:f3:d3:47:e4:fa:4b:67:6f:ff:1f:eb:0c:63:29:
b8:36:08:3f:a0:5a:2e:a3:91:28:de:38:d4:37:ed:
e4:95:88:48:5e:d0:fd:5c:0f:d2:3a:69:4d:58:cc:
23:6a:26:53:dd:bd:86:ac:8e:4b:e2:55:66:b8:b5:
ef:28:58:04:87:7c:94:18:3f:3d:a5:ff:bf:cc:a0:
34:01:03:84:ad:dd:be:d8:b2:d5:40:1b:63:93:a0:
53:88:25:da:a0:c8:91:8a:8c:70:a2:05:59:f2:91:
bb:e3:b7:33:8d:57:a3:38:1d:c4:a0:0c:50:6f:6f:
0a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0E:07:FF:ED:E4:26:7B:6C:31:B1:12:0C:C4:73:3F:08:3D:5D:52
X509v3 Authority Key Identifier:
keyid:F0:CC:7A:44:74:82:E5:7B:06:04:BA:BB:82:A5:24:09:CD:E3:B3:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Mx6RHSC5XsGBLq7gqUkCc3js20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/Iw4H_-3kJntsMbESDMRzPwg9XVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e58dc-7c90-49d7-8855-fa32d2d52968/1/8Mx6RHSC5XsGBLq7gqUkCc3js20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.24.0/24
Signature Algorithm: sha256WithRSAEncryption
72:72:36:75:6b:96:a6:a3:be:d6:89:bc:1e:e6:19:cd:0d:94:
e3:e2:d7:9d:87:fa:d8:2d:bb:43:da:11:b3:90:43:d3:4b:b8:
c1:d1:77:a8:53:87:a3:00:21:d1:4a:6f:59:2d:a1:84:b5:e1:
72:2b:a0:6c:cc:e8:7e:06:9c:a7:ff:4f:e5:cd:1a:82:1f:f7:
d0:12:5a:2d:de:41:5e:be:89:a3:a5:47:f6:c7:8b:72:89:95:
7f:97:5d:d0:27:06:fc:92:3f:b6:25:7c:e1:3a:6f:6e:58:59:
60:21:25:68:ef:74:a7:81:53:3b:74:d5:8c:fc:58:9b:47:3e:
77:78:d4:7f:9f:b2:25:e7:03:83:39:55:fd:e2:4d:8b:88:d6:
3b:0e:76:0b:29:1d:8b:90:31:53:89:15:70:13:22:1d:ca:21:
38:23:ed:cd:74:2a:de:e7:9a:4b:5f:c5:76:a8:a1:35:57:ea:
c3:c4:b0:4d:02:48:13:3e:f2:87:ed:24:01:4a:d7:99:b4:44:
e4:9c:bc:6f:3a:23:dc:d1:86:d9:04:99:f6:f2:67:fc:76:a1:
f8:9b:03:a2:ea:d1:a7:e2:2e:37:1c:7c:0e:ad:e5:4c:de:5d:
02:1c:38:cc:36:97:68:80:5f:a5:0b:cc:77:4e:2a:49:f6:3e:
41:2a:af:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:34 2024 by rpki-client on console-fra.rpki-client.org