Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/3oUWr84s8kVs4sd4osN_5UbSDE4.roa
File: 3oUWr84s8kVs4sd4osN_5UbSDE4.roa (raw, json)
Hash identifier: Cs9aWqvfUBFFWiA3d7Q1K8/zzrCVW/Dg7mGvaHcUXX8=
Subject key identifier: DE:85:16:AF:CE:2C:F2:45:6C:E2:C7:78:A2:C3:7F:E5:46:D2:0C:4E
Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c
Certificate serial: 01856DDD633A02D9B32883008D5D7AA7FF44
Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/3oUWr84s8kVs4sd4osN_5UbSDE4.roa
Signing time: Sun 01 Jan 2023 15:05:03 +0000
ROA not before: Sun 01 Jan 2023 15:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207586
IP address blocks: 176.126.116.0/24 maxlen: 24
2a11:d540:530::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:63:3a:02:d9:b3:28:83:00:8d:5d:7a:a7:ff:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c
Validity
Not Before: Jan 1 15:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de8516afce2cf2456ce2c778a2c37fe546d20c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4a:69:24:83:7a:0b:2a:63:c8:cd:48:76:6a:
a1:6c:80:ae:c5:1c:77:fe:5f:78:da:67:3a:5b:c6:
0e:48:97:fc:55:e6:b1:a1:d1:08:75:87:5b:e5:8b:
75:3f:33:66:de:c4:71:23:a5:c0:ba:cf:37:e1:53:
c4:67:5b:8c:bb:33:cb:c6:d1:79:24:02:79:78:f6:
21:ef:4f:a2:04:4a:b5:3d:9e:d9:3d:f2:5e:65:1b:
6c:f6:dc:2d:9c:64:aa:74:f2:90:84:00:23:bb:37:
15:ae:20:8d:f4:f2:fd:7f:ff:cf:84:b3:cb:59:ea:
79:b8:4c:20:6b:f6:20:53:2a:92:b6:5d:a4:98:8b:
5f:2e:0b:ae:b5:6c:6a:93:3d:6d:bd:e3:3d:15:61:
3b:60:f1:94:21:20:2d:0d:3b:e4:2b:56:e0:42:a2:
f3:89:13:c1:fb:fc:76:b6:da:ec:5f:90:ad:dd:56:
26:2e:43:d5:a5:9d:28:0c:6d:e9:74:f3:25:11:93:
dc:c1:ea:e7:9d:6a:38:21:40:d9:17:1d:a5:08:f1:
de:5b:69:6b:a8:4d:a6:6b:3f:7e:63:a4:a0:ec:a1:
c6:09:25:94:f8:43:59:f0:ce:df:a1:70:7b:7e:1a:
28:05:85:5f:88:29:ff:af:81:d4:5f:d4:7f:1a:74:
01:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:85:16:AF:CE:2C:F2:45:6C:E2:C7:78:A2:C3:7F:E5:46:D2:0C:4E
X509v3 Authority Key Identifier:
keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/3oUWr84s8kVs4sd4osN_5UbSDE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.116.0/24
IPv6:
2a11:d540:530::/44
Signature Algorithm: sha256WithRSAEncryption
99:20:3a:0e:77:14:1d:01:d5:3d:5a:94:49:2e:d0:56:0c:66:
5a:42:8b:c6:e3:6b:d2:0f:5c:62:b3:0f:32:b4:12:44:ab:7d:
5a:50:ee:21:bc:e2:7f:35:05:fc:c9:14:93:fe:26:b4:c5:a0:
9d:14:11:af:35:6b:e7:d7:7b:77:7d:ae:46:e3:25:65:98:f0:
a3:6d:9e:f7:3e:65:39:39:0f:b1:31:96:bb:3c:6d:1b:e7:e4:
3b:87:af:69:5b:4b:36:b5:35:5c:7b:fc:b0:d7:64:85:e2:8f:
ac:f9:1a:a1:d9:bc:1a:7a:7a:3c:27:21:f5:8f:19:2a:04:ee:
1b:20:bd:0f:49:f9:69:5a:1b:d1:06:87:d4:e8:44:86:ae:82:
2a:4a:4f:24:54:ae:23:70:6f:86:1b:25:d2:7f:e2:99:f3:43:
82:3f:a7:db:47:76:ec:b4:1b:1e:c9:5f:71:be:48:00:fb:48:
9c:54:a7:56:e3:33:cc:b2:d8:dc:a2:b4:0e:4f:7c:5d:24:92:
c5:c3:8b:3d:4c:79:60:50:18:64:26:6c:ff:8a:c4:53:f8:e4:
81:eb:04:a0:5e:f8:0c:87:30:76:79:4d:86:6e:05:1a:ab:71:
aa:be:c2:bc:1e:43:5d:a3:3e:9d:58:51:f3:96:c1:52:6e:e1:
4c:cb:65:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org