Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/g1Gx8MasBe7odUEkBpRAjIUS7as.roa
File: g1Gx8MasBe7odUEkBpRAjIUS7as.roa (raw, json)
Hash identifier: 62Q95rMU3forV+hsXls6ycRdEkuExMlOTenAMc60Ynw=
Subject key identifier: 83:51:B1:F0:C6:AC:05:EE:E8:75:41:24:06:94:40:8C:85:12:ED:AB
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018D3CE140C73491A4702DE635159D0DC24B
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/g1Gx8MasBe7odUEkBpRAjIUS7as.roa
Signing time: Wed 24 Jan 2024 19:10:11 +0000
ROA not before: Wed 24 Jan 2024 19:10:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.88.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Feb 2024 12:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3c:e1:40:c7:34:91:a4:70:2d:e6:35:15:9d:0d:c2:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jan 24 19:10:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8351b1f0c6ac05eee87541240694408c8512edab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:77:32:0c:6c:f9:7d:8c:33:30:91:43:6a:
82:09:5f:4a:4f:12:7e:ab:b7:09:68:09:7c:a5:be:
2e:13:1f:3f:c4:7d:42:8b:4f:22:54:05:c6:44:78:
e1:fc:58:fa:a0:f3:ad:bf:cb:1a:49:8c:fd:74:3f:
67:26:e7:8a:43:2f:7f:a1:45:ae:b1:e4:d1:18:eb:
82:11:2a:83:4e:85:d8:1c:13:04:12:43:79:70:ac:
9d:68:6d:d0:b5:e1:f1:93:31:b9:ea:32:63:e0:8d:
dd:38:20:3b:66:5c:33:58:79:e4:8f:c3:40:2d:d8:
c5:b0:16:63:10:4b:ba:fe:73:22:98:2f:d1:fa:57:
8e:fa:69:82:46:fc:78:d4:d7:c4:c1:62:a4:be:9f:
d1:38:53:b5:a3:39:75:9a:e2:7e:22:11:ff:d2:2a:
7c:24:d4:90:8c:43:db:b9:91:7a:83:4c:69:29:a8:
80:f6:42:af:c9:49:84:a9:bb:fe:d9:7c:03:35:7a:
15:f6:b0:39:98:00:aa:25:b2:d4:32:bc:29:78:54:
e8:ca:fa:d0:4e:37:5e:e8:0f:a7:c7:a3:96:f0:31:
9f:8a:f1:93:98:f8:20:6c:00:a2:1d:14:44:ff:c3:
f1:5f:22:22:a8:f3:12:1d:30:b1:ee:de:a8:79:59:
70:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:51:B1:F0:C6:AC:05:EE:E8:75:41:24:06:94:40:8C:85:12:ED:AB
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/g1Gx8MasBe7odUEkBpRAjIUS7as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.88.0/21
Signature Algorithm: sha256WithRSAEncryption
40:4b:0b:5a:98:5b:c0:fa:7f:bc:d2:f9:4c:94:76:9e:af:16:
56:3f:12:13:4a:7e:df:18:e1:55:79:86:d7:cc:b2:a2:9a:11:
9a:ad:7d:eb:5c:42:6a:b7:43:e0:02:42:65:76:4e:96:3f:1f:
8e:29:9a:ef:d0:e3:06:6a:06:13:f8:6e:f1:46:bc:ee:e1:9f:
13:b9:03:47:98:fc:cf:f3:f4:fa:6a:fe:8d:46:54:6a:67:04:
0b:ed:4b:75:3f:61:cf:94:f0:55:07:9e:02:83:ff:cd:06:09:
c1:39:66:6d:79:bb:91:1d:3b:93:44:3a:91:f2:20:bf:66:35:
ab:08:e1:32:1d:79:8c:48:d4:91:1a:e6:4e:6d:b4:9d:84:d7:
4a:c2:49:7d:e7:cb:f3:c6:9c:b3:d8:ae:38:b0:c9:09:2f:c0:
c5:fc:b9:72:dd:27:0a:16:32:99:8b:6f:4d:b5:c4:ee:85:45:
9d:a7:ed:86:31:20:dd:e4:d7:49:06:0a:bb:ba:ab:7d:81:02:
4e:f8:68:89:74:84:c6:12:39:c2:f1:61:3f:07:3d:c2:d6:2c:
35:74:94:b3:0b:96:74:10:a2:b1:07:b1:f5:08:37:3e:51:61:
83:d0:ec:68:2f:0c:c7:35:50:a0:ef:0d:1e:a0:cb:f4:03:3f:
aa:f6:db:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:06 2024 by rpki-client on console-fra.rpki-client.org