Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/yGGEK6NnaKGeOi6qp7QMMMvvLtA.roa
File: yGGEK6NnaKGeOi6qp7QMMMvvLtA.roa (raw, json)
Hash identifier: toKBrpUmyPWIXQZrX7XuAmIWrq+KGkxkauT9PsGe31g=
Subject key identifier: C8:61:84:2B:A3:67:68:A1:9E:3A:2E:AA:A7:B4:0C:30:CB:EF:2E:D0
Certificate issuer: /CN=6cbc8402f092343b9c03d386069728f8983e6008
Certificate serial: 01856F4B702E5677AB6123AA9D678B942FB7
Authority key identifier: 6C:BC:84:02:F0:92:34:3B:9C:03:D3:86:06:97:28:F8:98:3E:60:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLyEAvCSNDucA9OGBpco-Jg-YAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/yGGEK6NnaKGeOi6qp7QMMMvvLtA.roa
Signing time: Sun 01 Jan 2023 21:44:52 +0000
ROA not before: Sun 01 Jan 2023 21:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 176.116.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:70:2e:56:77:ab:61:23:aa:9d:67:8b:94:2f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cbc8402f092343b9c03d386069728f8983e6008
Validity
Not Before: Jan 1 21:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c861842ba36768a19e3a2eaaa7b40c30cbef2ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:18:64:9d:15:f5:cb:c7:86:b7:26:a6:e2:87:
9c:14:96:24:2d:51:d8:d6:69:4b:fa:e6:26:6a:a2:
22:ab:0f:b3:47:7b:05:1c:74:5e:4e:c1:51:1b:3d:
0c:98:e5:eb:48:9e:e3:dc:42:f7:60:df:4a:2a:87:
f7:03:6e:ac:29:be:22:6f:a0:b3:f7:ea:02:07:2f:
da:d3:2e:03:e7:ab:99:66:ce:97:d9:66:0f:c8:b8:
c8:57:48:9e:a1:76:c4:6d:bc:38:47:d8:e3:dd:1a:
f5:00:80:70:ae:f5:7a:76:d4:0f:f6:82:05:8f:85:
f6:3d:af:a7:d2:7b:0c:7c:22:9d:1c:56:d7:fd:7c:
25:9a:dd:47:c1:a6:27:28:65:92:17:94:21:83:aa:
e3:0b:3f:93:40:f4:f1:84:38:64:3e:d1:39:73:01:
72:d5:d2:d8:a4:88:0d:4b:4e:77:6b:c5:eb:38:a3:
c5:56:1c:50:2d:ef:30:00:9a:12:b5:46:75:7e:0e:
2b:8f:93:7b:f1:4c:fe:2f:a6:9c:2e:e7:15:6d:f8:
b9:23:45:88:8f:a6:b4:e2:6a:c3:82:82:cd:6b:16:
77:11:d5:34:45:cf:c6:83:e5:fd:91:01:0b:ab:42:
62:c1:b7:d2:03:62:c9:d1:f9:9f:38:42:05:a1:2b:
d3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:61:84:2B:A3:67:68:A1:9E:3A:2E:AA:A7:B4:0C:30:CB:EF:2E:D0
X509v3 Authority Key Identifier:
keyid:6C:BC:84:02:F0:92:34:3B:9C:03:D3:86:06:97:28:F8:98:3E:60:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLyEAvCSNDucA9OGBpco-Jg-YAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/yGGEK6NnaKGeOi6qp7QMMMvvLtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9db87f-a31a-4b4d-8624-280f5a4b5e03/1/bLyEAvCSNDucA9OGBpco-Jg-YAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.14.0/24
Signature Algorithm: sha256WithRSAEncryption
31:97:d8:e6:eb:a5:a1:0c:88:39:29:c9:a8:ed:2f:11:71:26:
1a:18:1a:53:9f:23:30:5a:75:94:64:4f:b0:b2:dd:45:a6:f8:
7b:b6:a9:77:5f:41:ff:b0:e9:b5:5d:18:f9:83:25:27:29:3c:
4f:10:6a:07:3d:51:d3:e0:a6:2f:a4:78:3d:e3:d1:6e:69:d2:
49:65:a7:7e:64:33:1d:43:cf:c6:ca:55:44:5f:09:ec:62:5b:
de:be:6e:b1:35:8e:e9:62:09:0c:bf:b8:ad:37:e7:90:9c:5b:
d0:0b:42:dd:e4:e7:9a:14:c2:55:1a:9e:de:f0:c2:a1:89:5c:
04:53:fa:cb:e2:6b:9a:7b:38:46:38:84:37:94:22:f8:87:86:
8e:02:b3:48:58:7b:d5:25:02:98:cc:72:83:9d:d6:94:3a:d1:
7c:be:2b:7d:ff:96:e1:79:bd:a9:a3:7b:69:cc:8b:2f:65:fa:
15:11:63:68:ca:ed:4a:ef:1b:0b:97:f5:dd:e5:d6:3f:15:4d:
b2:4d:68:a8:53:7e:35:c2:21:07:23:2b:dd:b7:d7:41:cc:a7:
f5:4f:41:9b:25:c0:6b:c0:dd:26:b8:12:ed:c8:33:a6:2e:c8:
56:44:03:97:29:54:08:ad:93:82:ad:a0:21:cc:1a:94:be:03:
c6:6a:8f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:16 2024 by rpki-client on console-ams.rpki-client.org