Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/hrDjRWbwSTJ7BrCBOpUV8kr0ueQ.roa
File: hrDjRWbwSTJ7BrCBOpUV8kr0ueQ.roa (raw, json)
Hash identifier: Z6zXRNvAGkktMsp/B3g5GKXIYPysdhP9WCOjQwGMNUU=
Subject key identifier: 86:B0:E3:45:66:F0:49:32:7B:06:B0:81:3A:95:15:F2:4A:F4:B9:E4
Certificate issuer: /CN=cff374657f57078f3ca2c71109d35927c2248681
Certificate serial: 01857169A57537942884AEDFB844CF36CC6E
Authority key identifier: CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/hrDjRWbwSTJ7BrCBOpUV8kr0ueQ.roa
Signing time: Mon 02 Jan 2023 07:37:07 +0000
ROA not before: Mon 02 Jan 2023 07:37:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12963
IP address blocks: 176.100.0.0/24 maxlen: 24
176.100.1.0/24 maxlen: 24
176.100.2.0/23 maxlen: 24
176.100.4.0/24 maxlen: 24
176.100.8.0/24 maxlen: 24
176.100.9.0/24 maxlen: 24
176.100.10.0/23 maxlen: 24
176.100.5.0/24 maxlen: 24
176.100.6.0/24 maxlen: 24
176.100.14.0/24 maxlen: 24
176.100.15.0/24 maxlen: 24
176.100.16.0/24 maxlen: 24
176.100.17.0/24 maxlen: 24
176.100.16.0/20 maxlen: 20
176.100.12.0/24 maxlen: 24
176.100.13.0/24 maxlen: 24
176.100.24.0/24 maxlen: 24
176.100.21.0/24 maxlen: 24
176.100.22.0/24 maxlen: 24
176.100.23.0/24 maxlen: 24
176.100.18.0/24 maxlen: 24
176.100.19.0/24 maxlen: 24
176.100.20.0/24 maxlen: 24
176.100.29.0/24 maxlen: 24
176.100.30.0/24 maxlen: 24
176.100.27.0/24 maxlen: 24
176.100.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 07:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:a5:75:37:94:28:84:ae:df:b8:44:cf:36:cc:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff374657f57078f3ca2c71109d35927c2248681
Validity
Not Before: Jan 2 07:37:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86b0e34566f049327b06b0813a9515f24af4b9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:94:6b:04:c3:f6:f9:d8:4b:00:4b:b3:e6:
73:a1:27:ea:0d:7d:f2:00:b0:db:1d:fe:4f:b1:c6:
f5:64:e5:df:ed:eb:13:e3:c1:5c:58:e1:82:bc:7e:
73:6e:89:26:23:45:61:f5:a7:d2:85:43:0e:3f:2b:
11:64:2f:84:09:ce:6f:b5:99:5c:79:df:2b:92:93:
d5:80:7a:96:49:02:1a:cd:4f:d7:74:d3:e6:08:d7:
e6:9f:32:03:79:75:47:9a:f2:cc:73:2b:b7:b2:d2:
93:b3:ab:eb:09:2b:f7:1b:45:64:4b:51:d0:79:3c:
a0:b1:9c:16:b4:2c:3b:dc:3f:aa:93:ea:be:2e:a5:
4f:7f:1c:91:2f:7c:4e:a5:ce:04:94:fa:86:25:16:
0c:81:3e:9d:81:dd:c7:81:33:c9:16:54:d7:1a:7a:
fe:90:92:d4:1b:9c:38:2c:63:d8:56:0e:ee:5e:d3:
42:e9:96:15:5b:25:da:88:43:39:08:ae:73:f8:57:
13:b4:0c:f7:68:c7:0f:52:c4:2d:ca:cb:ef:e7:82:
07:a6:5b:5e:31:9c:17:4d:74:dd:ed:85:5c:a7:56:
52:f1:39:1f:3f:79:af:c2:8f:cb:91:5b:40:3d:32:
39:b0:aa:d9:69:ef:ca:3f:5e:cf:04:fc:8e:c5:14:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B0:E3:45:66:F0:49:32:7B:06:B0:81:3A:95:15:F2:4A:F4:B9:E4
X509v3 Authority Key Identifier:
keyid:CF:F3:74:65:7F:57:07:8F:3C:A2:C7:11:09:D3:59:27:C2:24:86:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_N0ZX9XB488oscRCdNZJ8IkhoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/hrDjRWbwSTJ7BrCBOpUV8kr0ueQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cd2146-7fbe-4e5d-93ba-3ea2ebfe8707/1/z_N0ZX9XB488oscRCdNZJ8IkhoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.0.0-176.100.6.255
176.100.8.0-176.100.31.255
Signature Algorithm: sha256WithRSAEncryption
a0:bd:b9:30:8e:fb:88:5a:84:3c:26:00:61:03:35:c2:e1:b0:
0f:b3:19:b4:d6:54:bc:7c:0a:52:19:f7:19:b7:c2:a6:ff:19:
9a:2e:d1:96:d8:d4:fd:e8:a2:f0:d4:8c:82:53:ed:12:dc:02:
6c:2c:8f:5a:4d:34:f4:6b:bb:11:c8:70:c5:8e:73:ff:16:cd:
f1:9e:1f:9f:4a:6d:b5:e4:b0:60:f6:c1:91:b1:63:f9:56:f9:
db:d6:67:04:ee:38:6d:a3:3c:75:4f:90:03:ac:3f:7a:00:6b:
41:ce:59:f8:81:6f:5c:36:cd:ed:04:56:d4:ff:22:38:95:14:
b8:b0:5a:d8:ad:07:b4:43:74:e0:f2:d1:e5:7e:da:8e:9b:69:
a9:76:33:f8:88:9b:a9:1e:91:95:a0:1d:2b:25:10:70:d0:15:
39:aa:2c:e1:2a:31:a0:84:32:24:3c:6b:1d:a8:c2:9f:ed:22:
0b:0a:70:4c:20:86:64:7d:bf:75:2d:76:c5:14:d7:87:f8:52:
85:f4:c7:ed:ff:18:ce:60:b5:fa:be:05:85:86:28:be:bf:29:
2c:a2:ca:33:37:5e:88:4f:44:c7:af:d1:b9:f7:63:c5:5f:1f:
2d:b8:a6:13:df:dc:00:51:db:c5:a4:a8:0d:53:3c:14:76:73:
3a:40:15:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:45 2024 by rpki-client on console-ams.rpki-client.org