Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/ioodmA8zA3VFhoAlGdOUI5sqa5c.roa
File: ioodmA8zA3VFhoAlGdOUI5sqa5c.roa (raw, json)
Hash identifier: NE4q32+bF3JyoBL9+7aIhohb4c5idL6vlfjJezdYPrY=
Subject key identifier: 8A:8A:1D:98:0F:33:03:75:45:86:80:25:19:D3:94:23:9B:2A:6B:97
Certificate issuer: /CN=e875464e89816ef00b0369502018a7e59ce2d36c
Certificate serial: 01856ECB67D33F678D873EE348ECB864C13D
Authority key identifier: E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/ioodmA8zA3VFhoAlGdOUI5sqa5c.roa
Signing time: Sun 01 Jan 2023 19:25:02 +0000
ROA not before: Sun 01 Jan 2023 19:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199966
IP address blocks: 185.40.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:67:d3:3f:67:8d:87:3e:e3:48:ec:b8:64:c1:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e875464e89816ef00b0369502018a7e59ce2d36c
Validity
Not Before: Jan 1 19:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a8a1d980f3303754586802519d394239b2a6b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:a8:97:41:56:ef:ba:b5:cb:f8:02:45:cf:
e0:0e:0f:46:0f:70:39:40:19:ed:c5:c6:bd:cd:aa:
12:e5:cb:37:ff:c4:b5:f4:e3:e4:db:e9:46:f9:f9:
49:13:46:93:4d:e8:df:bd:19:5d:77:94:ef:f7:13:
f6:67:50:6c:24:d1:d3:79:cb:bc:0e:1c:8e:68:a6:
2e:7c:3b:ea:9c:47:e8:0f:b0:b4:11:87:bc:4e:d9:
ca:6c:64:2d:18:8d:2e:eb:57:2e:56:a5:f9:22:b1:
bf:ce:42:01:41:de:1c:be:fd:ef:70:6e:ff:c8:fe:
a2:92:93:55:70:2c:de:49:94:07:01:e0:3b:52:6f:
ca:be:9c:91:dc:d8:0d:fe:d7:8e:8a:3c:d5:d3:14:
b3:5d:1d:8d:d4:fb:fb:45:ed:f5:9b:67:e6:26:45:
19:77:68:62:4e:91:36:5d:95:a9:a2:06:1c:15:d2:
b7:33:d5:1f:e7:21:59:0b:7e:46:6a:6f:8f:9c:fd:
75:0a:20:9b:b7:da:00:cd:de:7c:f9:a0:e0:84:7a:
fe:b1:89:8f:cb:f6:78:4c:c4:02:a0:71:c2:6c:d6:
4f:9c:4e:61:4e:8a:1f:90:33:9f:b2:ed:ff:8c:ee:
07:2b:8d:75:41:0e:60:0c:41:d9:7b:84:03:87:ad:
a6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8A:1D:98:0F:33:03:75:45:86:80:25:19:D3:94:23:9B:2A:6B:97
X509v3 Authority Key Identifier:
keyid:E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/ioodmA8zA3VFhoAlGdOUI5sqa5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/6HVGTomBbvALA2lQIBin5Zzi02w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.128.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:7c:05:e0:19:fb:c8:b1:b5:18:73:b2:b0:53:73:31:35:cc:
8f:84:aa:2c:c3:b1:53:6d:4e:32:00:90:75:77:94:a2:07:eb:
69:ad:44:a2:60:4e:f9:a1:99:16:cf:98:be:1a:29:af:f3:aa:
b9:6f:ee:e1:39:54:09:28:be:78:a8:2e:99:94:1a:cc:db:67:
20:b5:ea:db:a4:aa:0e:e3:2f:c9:0b:4b:68:40:f7:19:79:e5:
c0:a2:e4:41:f0:f1:fb:ab:f6:e1:da:67:ce:f7:92:44:b3:a8:
e7:ed:c1:0d:59:5c:a6:33:c4:28:f7:60:52:32:d3:8a:cf:7b:
d0:e2:70:40:5b:43:ee:a6:78:75:03:f1:c4:5a:c7:83:1f:f9:
57:e2:41:55:22:5d:85:39:9f:14:ba:6f:98:5e:0f:3f:2c:28:
90:3b:1e:11:00:f0:8b:a7:d5:fa:4d:06:ae:cb:29:20:c8:8c:
fa:08:f4:be:24:89:75:54:ac:45:aa:dd:dc:88:45:15:79:fb:
a5:30:e1:cb:5c:6f:4f:b6:26:73:92:03:ca:d5:6f:ce:5e:a0:
68:b3:ba:64:81:53:80:90:9f:a1:1c:e8:1d:91:69:ce:2f:f4:
18:ec:6a:f9:26:ac:7e:25:e0:2d:0b:bc:99:02:cb:29:0e:6c:
0d:01:3c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:14 2024 by rpki-client on console-ams.rpki-client.org