Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/Q63Iy2RbhySmv3zxEVSciIhNNGg.roa
File: Q63Iy2RbhySmv3zxEVSciIhNNGg.roa (raw, json)
Hash identifier: OgP4cH23G1EngjTJkj6A86cexKV9VIqCGAFVx+C8X4A=
Subject key identifier: 43:AD:C8:CB:64:5B:87:24:A6:BF:7C:F1:11:54:9C:88:88:4D:34:68
Certificate issuer: /CN=7367c490447f5045c02367db8d21b4e08749fa76
Certificate serial: 018961AFB2731C5AB3A829B4E3FA03454A67
Authority key identifier: 73:67:C4:90:44:7F:50:45:C0:23:67:DB:8D:21:B4:E0:87:49:FA:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2fEkER_UEXAI2fbjSG04IdJ-nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/Q63Iy2RbhySmv3zxEVSciIhNNGg.roa
Signing time: Mon 17 Jul 2023 02:30:51 +0000
ROA not before: Mon 17 Jul 2023 02:30:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57827
IP address blocks: 176.108.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 17 Jul 2023 03:13:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:61:af:b2:73:1c:5a:b3:a8:29:b4:e3:fa:03:45:4a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7367c490447f5045c02367db8d21b4e08749fa76
Validity
Not Before: Jul 17 02:30:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43adc8cb645b8724a6bf7cf111549c88884d3468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2d:f2:9d:11:f9:e4:82:5f:31:a0:de:d3:aa:
ab:bb:9e:2b:81:01:43:db:0f:80:56:2e:53:fe:bf:
75:a5:29:98:6e:23:d7:cb:d2:ec:ee:10:6d:a0:1d:
83:aa:86:0d:0e:cf:b2:26:82:42:13:35:68:82:81:
64:f4:03:39:06:09:51:ea:d4:b8:4d:3e:47:56:42:
f2:8e:6e:9b:59:81:17:b4:31:71:93:3a:64:26:de:
53:29:d2:cf:85:6b:a2:c4:58:0b:4e:c7:de:a7:ca:
d9:7a:1d:dd:00:12:20:a9:39:ec:cd:66:4a:a9:93:
7f:80:7d:d8:db:ef:e5:c8:c4:1e:ac:67:c9:bb:7d:
2a:e7:9a:d3:50:61:07:27:74:9e:72:5a:13:f5:ad:
a0:55:8f:4e:8f:5c:37:5b:e4:a9:c2:8b:f8:56:14:
97:ec:d2:e5:c3:9f:6b:36:92:3e:bb:bd:c7:78:49:
4f:c2:ca:52:26:e2:9b:97:59:d2:15:fc:d8:3e:06:
e4:7e:00:6f:ef:af:76:e5:88:97:bb:26:cd:9d:58:
fe:3d:2b:60:c8:ff:7f:99:e9:d2:82:d9:d3:c2:77:
23:17:3d:0c:0c:92:02:9b:d5:50:48:3b:f6:43:79:
6e:0b:77:90:16:34:23:94:55:10:70:72:d9:4c:fa:
b3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:AD:C8:CB:64:5B:87:24:A6:BF:7C:F1:11:54:9C:88:88:4D:34:68
X509v3 Authority Key Identifier:
keyid:73:67:C4:90:44:7F:50:45:C0:23:67:DB:8D:21:B4:E0:87:49:FA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2fEkER_UEXAI2fbjSG04IdJ-nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/Q63Iy2RbhySmv3zxEVSciIhNNGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/62584a-47ce-4aa8-8992-5ba756e78869/1/c2fEkER_UEXAI2fbjSG04IdJ-nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.108.176.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:b8:57:7e:d3:7a:1c:b9:26:55:15:ef:28:2d:fb:73:95:fd:
22:7d:25:78:fd:b0:78:67:4f:b5:d5:9a:04:b8:2e:df:20:51:
fb:f9:64:17:60:b4:0f:00:df:fd:a7:a6:6f:06:a0:e3:6f:62:
44:46:7d:78:e4:4d:68:2c:67:05:84:d0:d1:9b:f2:8c:ba:01:
76:d4:99:82:88:98:25:9a:61:15:5c:05:61:6f:a8:31:49:2c:
da:6c:a1:a2:7e:0b:97:25:16:2f:81:59:89:a0:59:a1:59:62:
0b:0d:c4:6e:b5:38:df:30:ad:ea:98:b1:37:2b:9d:79:7e:c1:
5d:49:94:62:4d:79:8b:80:16:15:0c:b7:48:70:1d:07:c0:3b:
41:97:d7:04:70:a0:7a:be:8e:24:77:ed:c3:bf:e5:12:a3:d3:
d5:87:e7:8a:96:57:ee:cb:2b:57:69:28:da:8b:9a:e7:0e:a0:
4b:6b:a5:4d:d9:16:22:ae:2a:76:b3:6f:41:14:5e:31:12:4a:
56:12:a5:76:6e:03:39:00:dd:46:c5:fd:42:dd:c2:98:09:15:
a5:94:ed:a7:0b:8d:21:a7:96:61:05:67:f4:f1:94:b4:39:5c:
50:2e:06:4b:af:45:d6:9d:6e:d3:6e:58:2f:f9:ec:e4:90:d5:
1a:42:d3:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlhr7JzHFqzqCm04/oDRUpnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczNjdjNDkwNDQ3ZjUwNDVjMDIzNjdkYjhkMjFiNGUwODc0
OWZhNzYwHhcNMjMwNzE3MDIzMDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0M2FkYzhjYjY0NWI4NzI0YTZiZjdjZjExMTU0OWM4ODg4NGQzNDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhi3ynRH55IJfMaDe06qru54rgQFD
2w+AVi5T/r91pSmYbiPXy9Ls7hBtoB2DqoYNDs+yJoJCEzVogoFk9AM5BglR6tS4
TT5HVkLyjm6bWYEXtDFxkzpkJt5TKdLPhWuixFgLTsfep8rZeh3dABIgqTnszWZK
qZN/gH3Y2+/lyMQerGfJu30q55rTUGEHJ3SecloT9a2gVY9Oj1w3W+Spwov4VhSX
7NLlw59rNpI+u73HeElPwspSJuKbl1nSFfzYPgbkfgBv76925YiXuybNnVj+PStg
yP9/menSgtnTwncjFz0MDJICm9VQSDv2Q3luC3eQFjQjlFUQcHLZTPqzGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEOtyMtkW4ckpr988RFUnIiITTRoMB8GA1UdIwQY
MBaAFHNnxJBEf1BFwCNn240htOCHSfp2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzJmRWtFUl9VRVhBSTJmYmpTRzA0SWRKLW5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS82MjU4NGEtNDdjZS00YWE4LTg5OTIt
NWJhNzU2ZTc4ODY5LzEvUTYzSXkyUmJoeVNtdjN6eEVWU2NpSWhOTkdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS82MjU4NGEtNDdjZS00YWE4LTg5OTItNWJhNzU2ZTc4ODY5
LzEvYzJmRWtFUl9VRVhBSTJmYmpTRzA0SWRKLW5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDsGywMA0G
CSqGSIb3DQEBCwUAA4IBAQAsuFd+03ocuSZVFe8oLftzlf0ifSV4/bB4Z0+11ZoE
uC7fIFH7+WQXYLQPAN/9p6ZvBqDjb2JERn145E1oLGcFhNDRm/KMugF21JmCiJgl
mmEVXAVhb6gxSSzabKGifguXJRYvgVmJoFmhWWILDcRutTjfMK3qmLE3K515fsFd
SZRiTXmLgBYVDLdIcB0HwDtBl9cEcKB6vo4kd+3Dv+USo9PVh+eKllfuyytXaSja
i5rnDqBLa6VN2RYirip2s29BFF4xEkpWEqV2bgM5AN1Gxf1C3cKYCRWllO2nC40h
p5ZhBWf08ZS0OVxQLgZLr0XWnW7Tblgv+ezkkNUaQtNJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org