Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/IrmyDPiGyh9ZqoU9RBqynMX31O4.roa
File: IrmyDPiGyh9ZqoU9RBqynMX31O4.roa (raw, json)
Hash identifier: S8BoR4NBiO+S/Za6j1hd/avWzfPdpzQrF44A4gr08cI=
Subject key identifier: 22:B9:B2:0C:F8:86:CA:1F:59:AA:85:3D:44:1A:B2:9C:C5:F7:D4:EE
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE0FD10627C1F59FE0B91289A2888
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/IrmyDPiGyh9ZqoU9RBqynMX31O4.roa
Signing time: Sun 01 Jan 2023 06:04:55 +0000
ROA not before: Sun 01 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209168
IP address blocks: 178.16.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e0:fd:10:62:7c:1f:59:fe:0b:91:28:9a:28:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22b9b20cf886ca1f59aa853d441ab29cc5f7d4ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5b:18:03:a5:44:6b:1d:02:fb:42:95:07:12:
85:8f:fd:27:91:f5:b2:c1:32:b5:9f:34:21:a9:7b:
b9:20:d4:c0:46:60:42:0a:7e:51:62:54:73:8a:6b:
50:13:b9:76:f0:47:ec:e7:6f:da:2e:d3:7c:5d:45:
1c:7d:f7:9c:27:94:67:d3:c7:a7:f8:6b:e8:74:c3:
1a:54:d5:65:14:00:83:5d:2e:6a:94:9e:c9:ac:3a:
26:fc:74:d7:06:5b:3c:59:31:ee:05:52:59:4f:e1:
45:b1:60:91:68:5a:1c:a7:a3:b2:71:92:a0:b6:37:
01:c5:88:a6:8e:ae:52:df:fa:c0:d9:62:b0:1f:cc:
90:0a:70:f2:9f:5b:f9:cc:ba:a6:68:f8:d8:59:f8:
f0:94:7a:05:87:99:01:91:ec:4c:08:ee:0a:ee:2e:
30:66:f9:3f:f5:a4:7b:ed:d7:ba:e6:53:9d:19:8d:
96:55:60:51:e7:71:51:42:19:c1:1c:32:84:2b:86:
78:8b:07:de:5d:33:17:ac:b7:2e:b4:a6:60:31:0b:
b9:6d:34:fe:2f:c1:33:1e:02:91:73:73:32:f0:6c:
c2:5c:24:92:bd:17:a5:cd:02:af:4d:5c:1f:3d:d4:
1f:47:80:f3:fd:43:12:c5:b4:5c:b0:38:91:48:f4:
e4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B9:B2:0C:F8:86:CA:1F:59:AA:85:3D:44:1A:B2:9C:C5:F7:D4:EE
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/IrmyDPiGyh9ZqoU9RBqynMX31O4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.16.123.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f4:a7:6e:b9:6d:2b:f9:bb:70:25:b4:21:6c:29:9b:7d:b8:
91:f7:46:72:a6:7a:cd:b6:68:e2:63:d3:05:a5:68:f0:93:50:
8e:8a:a4:41:c2:46:4e:41:f1:6e:25:f0:47:cd:9e:e8:0d:ac:
99:c0:91:ab:27:43:62:7a:57:7f:09:2e:05:03:03:ab:06:45:
78:be:4a:e8:f2:48:b5:7b:b3:a9:fb:7c:c5:51:d8:74:c5:ec:
ea:eb:cb:79:6b:8c:a3:6d:7d:d1:9c:58:c5:4f:22:9e:c2:17:
8f:a9:84:9a:0b:84:6e:54:50:9d:25:94:2c:c8:19:08:0b:ef:
e0:c6:97:a5:b1:64:42:c9:1f:84:47:17:32:32:3b:c1:2b:3d:
c3:5b:7c:e2:12:c3:a3:9f:4c:31:8b:20:49:2a:b1:8e:d8:87:
8a:c9:a0:15:7d:fa:6d:05:cf:16:98:46:e1:e5:da:83:01:c9:
a1:4e:3c:bb:fc:f1:5a:1d:a6:57:57:9a:35:05:c6:c6:e0:c9:
fa:36:0f:b1:5d:7c:56:97:cd:be:2f:69:6b:53:10:c8:fe:2e:
f0:f1:9b:7b:11:55:b8:cb:22:c3:9f:fd:8d:46:d5:ee:e7:44:
14:4b:ef:da:d6:63:08:cb:1d:1a:88:8a:81:79:1a:0f:b5:7b:
03:c2:73:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org