Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/M9wzG9zCDkKxD5M7PY29DA1WCSI.roa
File: M9wzG9zCDkKxD5M7PY29DA1WCSI.roa (raw, json)
Hash identifier: DTgSbpa6JAUAJJzItv4zydYchq730Mg65sCVdPu2UVs=
Subject key identifier: 33:DC:33:1B:DC:C2:0E:42:B1:0F:93:3B:3D:8D:BD:0C:0D:56:09:22
Certificate issuer: /CN=6cbc8402f092343b9c03d386069728f8983e6008
Certificate serial: 01856F4B6EAA71C74890912096245206A16E
Authority key identifier: 6C:BC:84:02:F0:92:34:3B:9C:03:D3:86:06:97:28:F8:98:3E:60:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLyEAvCSNDucA9OGBpco-Jg-YAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/M9wzG9zCDkKxD5M7PY29DA1WCSI.roa
Signing time: Sun 01 Jan 2023 21:44:52 +0000
ROA not before: Sun 01 Jan 2023 21:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 176.116.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:6e:aa:71:c7:48:90:91:20:96:24:52:06:a1:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cbc8402f092343b9c03d386069728f8983e6008
Validity
Not Before: Jan 1 21:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33dc331bdcc20e42b10f933b3d8dbd0c0d560922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:66:7c:75:a9:bd:74:84:b4:ab:44:64:1e:d8:
df:63:7c:38:72:bf:f9:56:fc:5d:54:71:cc:19:56:
43:ee:c5:7f:1a:5d:36:ee:13:9c:e4:4f:04:51:40:
b7:f9:53:cc:ba:d5:ff:77:bf:95:1a:e4:48:66:c9:
9b:93:f7:4d:0c:d4:4d:84:66:f8:ae:cf:14:00:a5:
c8:8c:8a:63:e8:bf:2c:3a:17:b5:83:4b:62:3d:a6:
53:0a:46:4b:2d:a5:99:ad:e8:c1:b8:03:3e:5b:b9:
1d:3a:07:61:5a:fe:f9:6d:a7:16:b9:f0:3a:8b:e9:
6e:15:df:07:f9:6a:80:07:dc:5e:61:0d:57:48:c3:
dc:12:20:48:30:ea:98:b4:b4:1f:05:3f:91:12:b2:
c7:45:86:51:23:fe:7b:ec:d5:09:0d:2c:1b:52:22:
83:6e:59:b1:a4:d6:56:94:8c:1c:fe:89:b9:53:c4:
7d:e1:f7:96:a3:3d:a3:ee:97:1a:da:ac:36:83:9b:
30:80:bc:e7:b1:60:1e:94:9c:7b:34:33:4e:d7:84:
7f:69:3d:dd:6b:0e:cc:2e:42:72:5a:ca:42:61:bf:
f1:77:0c:75:0a:d5:21:f7:ce:6b:26:c7:a8:4f:0b:
26:3a:4f:a2:8c:15:0f:e0:7a:0f:80:0e:c8:b8:98:
3a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DC:33:1B:DC:C2:0E:42:B1:0F:93:3B:3D:8D:BD:0C:0D:56:09:22
X509v3 Authority Key Identifier:
keyid:6C:BC:84:02:F0:92:34:3B:9C:03:D3:86:06:97:28:F8:98:3E:60:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLyEAvCSNDucA9OGBpco-Jg-YAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/M9wzG9zCDkKxD5M7PY29DA1WCSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/bLyEAvCSNDucA9OGBpco-Jg-YAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.14.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:87:80:a0:05:b0:59:a2:70:33:42:62:0e:6e:32:72:ff:43:
50:84:a0:20:f4:03:20:00:8d:4d:60:ff:d4:95:84:49:67:db:
4f:ea:59:13:d4:a8:62:02:8e:7b:2e:57:3e:7f:17:5c:2a:8d:
ca:81:21:77:3a:23:c3:38:13:13:37:fa:93:d5:fe:ad:a0:94:
1e:b4:bd:4b:6d:64:9f:77:78:db:b5:88:db:a7:c5:fe:26:36:
51:67:4a:19:90:9d:e3:8c:3a:97:eb:1d:df:5d:ec:ab:c8:bc:
65:2f:94:d3:af:c7:0d:72:24:2c:c0:fe:d0:a0:d7:cb:8a:2b:
ed:1b:65:19:81:b0:6e:74:6e:39:8a:ab:5e:0e:c5:51:48:56:
10:4c:96:52:d0:d9:97:80:15:c2:cb:50:86:96:cb:b3:83:9d:
92:73:f2:ac:e3:13:19:8e:70:d5:3c:86:39:eb:b8:17:6d:6c:
c9:57:86:42:bb:1e:54:12:d7:3b:58:d9:73:26:c6:1f:0a:a7:
05:2a:d7:2d:49:f0:9f:97:70:89:ef:04:97:a8:d8:de:ac:98:
e5:13:13:e0:14:d7:e9:16:35:dc:96:a2:78:d5:ba:4b:00:d6:
61:88:4f:82:a6:40:f0:c4:45:3e:dd:e8:4e:bd:60:81:82:33:
c6:44:e6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:58 2024 by rpki-client on console-fra.rpki-client.org