Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/I0wgTV___MqHEnClx6AOPOl_lTQ.roa
File: I0wgTV___MqHEnClx6AOPOl_lTQ.roa (raw, json)
Hash identifier: z33w3A0NuWnrtps8d9Xp3DWbz0OJRy/qQqlZBKje26o=
Subject key identifier: 23:4C:20:4D:5F:FF:FC:CA:87:12:70:A5:C7:A0:0E:3C:E9:7F:95:34
Certificate issuer: /CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Certificate serial: 0185737A9E3340EF2F82CCE51192EAB6ADEF
Authority key identifier: 1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/I0wgTV___MqHEnClx6AOPOl_lTQ.roa
Signing time: Mon 02 Jan 2023 17:14:53 +0000
ROA not before: Mon 02 Jan 2023 17:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.118.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:9e:33:40:ef:2f:82:cc:e5:11:92:ea:b6:ad:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0871fc2e99892ea1115a302138e1d32a62182c
Validity
Not Before: Jan 2 17:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=234c204d5ffffcca871270a5c7a00e3ce97f9534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a0:d7:80:c6:21:ac:70:e4:55:4e:a5:ae:71:
65:20:e6:5e:da:6d:e6:a4:45:04:e9:80:2b:4a:6e:
d9:a7:98:51:94:b5:98:d1:c6:6e:d0:dd:2a:56:72:
c6:0a:7d:33:3a:69:0f:e4:96:cf:f9:42:ee:87:25:
3d:e7:c6:32:08:da:e5:28:5d:f8:be:06:5d:ba:e6:
d1:2c:5d:61:17:ab:bf:30:81:5f:49:d9:8e:5f:23:
a6:94:70:96:39:44:3f:68:b7:40:89:19:09:88:2c:
10:bb:bd:b8:77:a5:88:59:a7:66:30:0b:43:a3:0a:
fb:62:ae:78:3c:85:5f:e5:bf:f4:5b:b6:49:ce:97:
ff:ba:b7:6c:b2:6e:7f:88:eb:dd:d6:2d:40:ea:ad:
2d:09:4d:96:95:54:d8:4a:da:99:3b:31:74:04:9c:
f3:8a:16:73:83:9e:11:0e:a8:b3:b9:72:90:d5:34:
c1:05:f6:00:3f:34:8e:48:da:e6:61:28:b1:3e:0d:
7d:9b:9f:9b:97:7c:e8:c5:87:d6:ff:65:c2:ee:4f:
0a:8a:c0:51:86:9b:04:f7:02:99:02:d8:98:d4:f3:
65:19:9d:0e:2d:66:8e:f2:12:53:6c:75:cd:de:2c:
3d:9b:97:3b:ee:d6:2b:7d:72:59:9b:a4:02:dc:17:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4C:20:4D:5F:FF:FC:CA:87:12:70:A5:C7:A0:0E:3C:E9:7F:95:34
X509v3 Authority Key Identifier:
keyid:1D:08:71:FC:2E:99:89:2E:A1:11:5A:30:21:38:E1:D3:2A:62:18:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQhx_C6ZiS6hEVowITjh0ypiGCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/I0wgTV___MqHEnClx6AOPOl_lTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/205275-2ced-4a4e-b900-4f3e5b2e0c56/1/HQhx_C6ZiS6hEVowITjh0ypiGCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.109.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:0f:dc:c4:24:21:a2:97:58:5f:ec:45:70:2a:37:fc:9f:dc:
eb:62:8d:0b:4e:59:bd:8f:6a:7f:8e:42:a7:ed:96:2a:17:14:
8f:79:3c:19:1f:2c:e1:34:c0:b7:5d:4d:3f:8c:1c:7b:6f:4a:
b2:41:43:13:1a:f1:05:10:25:7d:10:90:4f:e3:c9:7b:ae:bf:
f7:ec:a6:7a:e3:95:81:fa:a3:61:60:83:d7:bd:eb:2b:c3:1e:
f9:12:b5:46:2c:6b:51:0d:d7:cd:51:55:19:dd:74:32:20:7f:
d1:be:ff:85:2b:e1:b7:f0:fa:63:36:ab:45:88:ce:98:a7:24:
9b:b4:2f:37:87:1f:c3:56:e3:0f:a4:19:6c:48:a6:23:d5:de:
5b:0b:a6:d4:2c:d6:5b:a6:1a:67:38:d4:c8:54:0c:af:58:89:
56:2d:e7:0f:f1:45:c1:65:d2:1f:12:a0:ab:35:44:d4:c2:13:
3d:18:52:64:ee:d3:1d:25:a4:18:df:e1:2e:01:58:23:24:55:
09:6e:74:a9:0e:47:0e:95:aa:a3:a1:8c:2e:e0:ec:a1:dc:06:
bc:4d:aa:ad:a4:9b:d6:7f:1e:b6:7b:e4:10:07:75:d2:1b:49:
22:c9:6c:ef:81:2d:38:02:a3:91:ba:51:de:aa:b1:90:84:45:
d8:b6:1d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:53 2024 by rpki-client on console-fra.rpki-client.org