Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/e6zvtwCS9KWaFROsqVy6n3C9naA.roa
File: e6zvtwCS9KWaFROsqVy6n3C9naA.roa (raw, json)
Hash identifier: CjsCaoNQr2cWukO69D3JShTAzxXHqT8GlNHRBN8F9Js=
Subject key identifier: 7B:AC:EF:B7:00:92:F4:A5:9A:15:13:AC:A9:5C:BA:9F:70:BD:9D:A0
Certificate issuer: /CN=cff374657f57078f3ca2c71109d35927c2248681
Certificate serial: 01864ED50E5BA559F21C09F471E4CA268EFD
Authority key identifier: CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/e6zvtwCS9KWaFROsqVy6n3C9naA.roa
Signing time: Tue 14 Feb 2023 07:30:30 +0000
ROA not before: Tue 14 Feb 2023 07:30:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12963
IP address blocks: 176.100.0.0/24 maxlen: 24
176.100.1.0/24 maxlen: 24
176.100.2.0/23 maxlen: 24
176.100.4.0/24 maxlen: 24
176.100.8.0/24 maxlen: 24
176.100.9.0/24 maxlen: 24
176.100.10.0/23 maxlen: 24
176.100.5.0/24 maxlen: 24
176.100.6.0/24 maxlen: 24
176.100.14.0/24 maxlen: 24
176.100.15.0/24 maxlen: 24
176.100.16.0/24 maxlen: 24
176.100.17.0/24 maxlen: 24
176.100.16.0/20 maxlen: 20
176.100.12.0/24 maxlen: 24
176.100.13.0/24 maxlen: 24
176.100.24.0/24 maxlen: 24
176.100.21.0/24 maxlen: 24
176.100.22.0/24 maxlen: 24
176.100.23.0/24 maxlen: 24
176.100.18.0/24 maxlen: 24
176.100.19.0/24 maxlen: 24
176.100.20.0/24 maxlen: 24
176.100.28.0/24 maxlen: 24
176.100.29.0/24 maxlen: 24
176.100.30.0/24 maxlen: 24
176.100.25.0/24 maxlen: 24
176.100.26.0/24 maxlen: 24
176.100.27.0/24 maxlen: 24
176.100.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4e:d5:0e:5b:a5:59:f2:1c:09:f4:71:e4:ca:26:8e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff374657f57078f3ca2c71109d35927c2248681
Validity
Not Before: Feb 14 07:30:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bacefb70092f4a59a1513aca95cba9f70bd9da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ac:d6:79:60:9c:6b:41:f0:29:56:7e:c0:b6:
0b:b9:3d:21:ea:1d:9d:08:13:60:84:e8:b4:a9:b8:
0f:ac:58:0b:f9:11:e7:83:dd:5e:60:cd:d6:8a:71:
fc:cf:4a:69:4f:4c:ce:37:8e:84:af:9b:c4:27:6e:
bd:e8:b4:c3:1e:8e:7f:a7:d4:03:b5:a7:01:03:38:
84:ae:b3:e7:eb:11:39:01:f3:06:01:42:89:4f:a7:
b4:9c:4f:78:f0:17:86:e6:44:2f:32:0e:d1:6c:4d:
39:5e:ef:ae:d4:73:cb:da:08:5b:c4:5f:07:10:92:
39:53:04:6d:3b:49:a8:44:3e:66:10:25:f0:09:6c:
10:69:37:c8:c0:e6:e8:1f:11:a0:55:19:eb:08:3c:
de:97:e0:28:df:86:e5:dd:ae:49:0d:04:b4:34:79:
bf:d0:6a:a1:38:b7:0f:82:e3:27:78:c5:3e:48:17:
46:43:5e:bb:6a:f3:bf:8d:61:aa:a3:92:08:f7:70:
50:ec:a3:e6:0c:f5:e6:02:52:d9:94:1b:37:df:e7:
c2:ac:a2:a8:8e:ea:d9:c9:37:40:4b:2d:2f:ce:58:
8a:36:78:0f:77:0c:5a:f3:b9:ef:95:d0:1e:4d:c6:
e7:84:3f:7c:4a:1a:4a:5f:d2:11:dc:6c:f3:07:0f:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AC:EF:B7:00:92:F4:A5:9A:15:13:AC:A9:5C:BA:9F:70:BD:9D:A0
X509v3 Authority Key Identifier:
keyid:CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/e6zvtwCS9KWaFROsqVy6n3C9naA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/z_N0ZX9XB488oscRCdNZJ8IkhoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.0.0-176.100.6.255
176.100.8.0-176.100.31.255
Signature Algorithm: sha256WithRSAEncryption
50:8c:fe:c0:0e:ee:b4:9e:af:ce:37:50:b2:e3:23:14:8b:a5:
1f:4b:d1:0c:99:85:2b:cc:2d:20:11:bf:90:ca:e2:65:4a:5a:
0b:3b:f5:e1:35:7d:e8:f8:63:9b:b2:55:01:f7:ab:02:a7:48:
d9:c7:4b:a3:ba:cd:1d:b6:e1:8e:8d:5e:eb:ff:d4:b9:24:b3:
3e:68:11:42:a7:a2:7c:a0:89:9b:47:25:fa:c8:bc:ed:b8:a4:
dc:9f:fa:40:c0:5a:7e:4b:86:81:d0:9f:98:53:b2:50:e4:71:
83:a5:58:58:09:75:94:ef:84:42:8d:9e:cc:a5:30:d1:36:0b:
d7:f2:4e:43:d7:ac:7b:b9:05:df:cf:4e:86:5d:50:3b:75:fa:
12:12:a3:4f:44:7b:ce:ec:fc:f0:c4:84:2c:4f:63:08:96:b2:
63:f0:98:59:ff:ec:9b:d9:ae:47:5c:8f:70:e8:52:4a:a5:25:
0e:44:49:25:e6:ff:0d:85:71:f7:82:aa:93:f5:2a:b6:f0:c0:
ac:a3:ce:18:9a:02:cf:88:f9:6b:5a:49:35:40:11:fb:a4:06:
b0:76:a4:c0:aa:96:96:9d:1a:ac:ff:83:31:63:23:93:41:04:
e9:29:5b:2e:12:8f:5d:5c:8a:f4:a8:78:f3:ea:5c:f1:77:b9:
1b:92:b8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:20 2024 by rpki-client on console-fra.rpki-client.org