Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/IkgJNYstr9mpYakWhS43m5-XY5M.roa
File: IkgJNYstr9mpYakWhS43m5-XY5M.roa (raw, json)
Hash identifier: GlAxynv58iKLNEyA+X14u01VlqMjMlYmoOiGLH1hDM4=
Subject key identifier: 22:48:09:35:8B:2D:AF:D9:A9:61:A9:16:85:2E:37:9B:9F:97:63:93
Certificate issuer: /CN=8a7b09ab545851c789d2caa8942ba39cea13e93e
Certificate serial: 01894B72F2082EF86D9170123BE0771F929C
Authority key identifier: 8A:7B:09:AB:54:58:51:C7:89:D2:CA:A8:94:2B:A3:9C:EA:13:E9:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/insJq1RYUceJ0sqolCujnOoT6T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/IkgJNYstr9mpYakWhS43m5-XY5M.roa
Signing time: Wed 12 Jul 2023 18:52:51 +0000
ROA not before: Wed 12 Jul 2023 18:52:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12337
IP address blocks: 185.176.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:72:f2:08:2e:f8:6d:91:70:12:3b:e0:77:1f:92:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a7b09ab545851c789d2caa8942ba39cea13e93e
Validity
Not Before: Jul 12 18:52:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=224809358b2dafd9a961a916852e379b9f976393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:94:13:2c:cc:87:b5:1f:17:4c:0d:1b:c8:04:
16:51:a2:5a:b7:f6:51:8d:75:9c:d0:08:9b:41:0e:
81:99:b7:c2:5f:69:8c:c2:9f:01:ef:98:2c:58:ee:
cd:5e:07:3f:05:ef:c0:bd:28:ae:02:4f:09:4d:a4:
b7:70:88:ef:2d:15:49:6b:53:87:81:f9:f5:62:41:
ea:8b:54:5d:54:c4:18:73:10:b8:2d:f8:68:a8:b0:
81:38:2b:1f:28:7f:bf:e7:fe:d1:f7:fc:e8:b8:7c:
ce:3f:4a:25:e9:b8:e4:6d:8a:42:9a:b0:7d:1c:c4:
49:ea:cb:67:34:b1:5d:92:3d:85:82:e2:7c:f2:b7:
33:b9:d7:81:b3:a8:7b:cb:50:a5:61:ae:29:65:26:
c7:01:b0:02:d0:9c:bc:cb:eb:dc:da:8d:27:a3:5a:
7f:13:b5:62:0b:bb:da:c3:cb:02:11:d2:e6:37:35:
55:61:f1:21:c7:88:58:38:0e:8e:cb:36:61:07:9e:
d3:1b:8c:43:b2:21:e5:b6:f4:17:2b:51:d9:b7:7c:
64:78:d4:67:a0:b9:bc:c9:15:e7:5a:f8:fc:f6:16:
3d:32:f4:64:18:8e:c7:2c:e5:72:1e:5b:b8:2a:f6:
2f:7a:15:58:13:d7:c5:d5:0a:6c:d6:97:ee:a1:99:
2f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:48:09:35:8B:2D:AF:D9:A9:61:A9:16:85:2E:37:9B:9F:97:63:93
X509v3 Authority Key Identifier:
keyid:8A:7B:09:AB:54:58:51:C7:89:D2:CA:A8:94:2B:A3:9C:EA:13:E9:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/insJq1RYUceJ0sqolCujnOoT6T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/IkgJNYstr9mpYakWhS43m5-XY5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/731f56-a2a1-4c75-95c3-5e7dc828d05d/1/insJq1RYUceJ0sqolCujnOoT6T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.167.0/24
Signature Algorithm: sha256WithRSAEncryption
66:84:f0:0b:5e:da:6e:2b:1d:da:c7:0b:bb:ff:b0:cb:f2:94:
b0:47:dc:7f:70:0b:29:a1:40:14:ce:88:c8:3e:58:59:90:7a:
2a:b3:66:86:5f:2e:b7:2b:40:f3:44:3a:9b:fe:7e:25:cb:e3:
36:39:a5:b2:49:54:2b:b6:28:f1:68:a8:f4:29:2a:24:00:05:
e2:bc:5b:5c:d1:21:23:3f:9c:18:d3:90:f9:4f:04:b1:b6:2d:
c5:fb:10:c6:1a:88:e0:18:6e:a0:77:d9:ce:48:f2:6b:8d:37:
12:01:7c:45:38:84:5c:69:ed:67:82:58:59:da:27:b1:f4:5b:
de:c5:13:62:a4:80:17:0e:f6:2c:6f:90:e7:f0:2c:96:ba:90:
2e:a5:81:e2:22:91:0e:65:87:bb:85:31:e8:9b:6a:3f:bb:f9:
96:4f:3c:69:5c:cd:66:f3:49:a1:6f:c9:07:40:af:3d:2c:0c:
78:67:ae:40:e1:a5:9e:12:88:5c:e8:e3:e8:ec:db:6e:a3:07:
c1:73:25:a1:4e:c6:23:2a:23:f5:34:4f:3c:14:ad:6d:3a:d6:
82:cb:f2:ed:b6:11:0e:e9:35:dd:91:e7:3d:3a:1e:da:1d:5d:
93:89:2b:3f:9b:03:bd:24:5d:6d:26:34:3b:49:8c:15:59:7f:
d6:e3:6e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:06 2024 by rpki-client on console.sobornost.net