Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/AIyjR31Dz9IJN5HEZUA7GRgOiZ0.roa
File: AIyjR31Dz9IJN5HEZUA7GRgOiZ0.roa (raw, json)
Hash identifier: Td9eDASejaRkcUXRwj3Y64jO/AXjI7gsRa2vTGfE2U8=
Subject key identifier: 00:8C:A3:47:7D:43:CF:D2:09:37:91:C4:65:40:3B:19:18:0E:89:9D
Certificate issuer: /CN=d6923df4dae91950cf00d235fe39e00eea3816d2
Certificate serial: 01856C65DB75474877F070BE08F13740B37E
Authority key identifier: D6:92:3D:F4:DA:E9:19:50:CF:00:D2:35:FE:39:E0:0E:EA:38:16:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/AIyjR31Dz9IJN5HEZUA7GRgOiZ0.roa
Signing time: Sun 01 Jan 2023 08:14:52 +0000
ROA not before: Sun 01 Jan 2023 08:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15614
IP address blocks: 178.209.128.0/19 maxlen: 19
213.168.176.0/20 maxlen: 20
2a02:13b8::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:db:75:47:48:77:f0:70:be:08:f1:37:40:b3:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6923df4dae91950cf00d235fe39e00eea3816d2
Validity
Not Before: Jan 1 08:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=008ca3477d43cfd2093791c465403b19180e899d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:6a:87:50:fe:8a:22:7c:8f:c7:cb:d0:70:
c6:cb:50:5a:ed:f2:6c:88:20:2c:80:f3:f9:42:e0:
27:c2:e0:91:b5:fb:ed:d4:89:22:a2:2e:d1:3f:3e:
38:62:63:6f:db:56:ca:95:71:58:b9:57:87:dc:c7:
62:b2:43:8d:7a:f9:06:6f:55:39:26:79:74:d3:84:
32:ce:eb:49:63:55:46:5b:26:b9:46:bc:f1:d1:69:
e4:50:8a:e2:47:c4:b1:f8:0d:41:07:40:31:f4:02:
c6:8d:72:cf:bb:bb:33:0e:a4:ed:88:e8:58:8b:2c:
79:20:de:90:c5:fc:de:ef:ce:e3:88:d9:64:0a:a8:
e1:0b:52:f8:ed:15:12:2a:e0:8e:dd:00:f8:d8:0b:
ed:02:03:1b:c4:87:ae:2a:fd:45:4f:df:9b:94:a7:
30:d8:fa:e2:a5:9d:32:8b:a9:e6:d2:54:1a:85:d9:
6b:74:1d:68:0a:fa:ba:ea:f0:98:d0:08:d3:2f:3e:
70:ba:0b:c7:dd:6d:8a:88:53:79:2f:cf:a5:0c:0d:
90:95:7c:b4:04:76:0a:bd:9a:09:63:9b:53:c8:8e:
ca:06:25:e5:0c:92:9a:5b:f6:8a:dd:08:e1:b1:73:
a6:79:13:c5:76:f6:bb:8c:ec:53:48:e1:e0:9f:09:
e1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8C:A3:47:7D:43:CF:D2:09:37:91:C4:65:40:3B:19:18:0E:89:9D
X509v3 Authority Key Identifier:
keyid:D6:92:3D:F4:DA:E9:19:50:CF:00:D2:35:FE:39:E0:0E:EA:38:16:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1pI99NrpGVDPANI1_jngDuo4FtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/AIyjR31Dz9IJN5HEZUA7GRgOiZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/32680d-03d9-4afa-9416-8d6fc010523d/1/1pI99NrpGVDPANI1_jngDuo4FtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.209.128.0/19
213.168.176.0/20
IPv6:
2a02:13b8::/29
Signature Algorithm: sha256WithRSAEncryption
2e:57:51:a7:fa:a8:bf:c4:45:dd:2a:e5:7c:95:4a:f2:96:04:
e8:b0:db:b6:03:3c:2f:af:2d:86:0c:09:e9:b3:72:9b:8b:6f:
57:e4:d1:af:92:7f:22:fe:38:52:53:c1:c1:5d:c1:d4:c1:e0:
53:28:f9:48:ea:a6:ae:b1:3d:7f:8d:29:59:21:38:7f:d4:86:
16:c3:ea:87:dd:a0:13:01:b3:47:0b:d5:b2:93:61:24:09:86:
e1:c8:03:49:14:52:0b:d4:63:96:ec:16:ba:10:a6:28:de:96:
3a:50:6d:89:eb:10:fe:9c:ff:29:1d:8d:34:ce:6c:cb:af:dc:
f7:1c:ca:bb:6d:17:85:7a:75:ce:01:db:06:e3:8b:0d:10:de:
59:0b:b7:e1:24:de:59:31:b7:ee:ff:9c:d4:90:2e:4d:0f:3d:
a8:6d:8e:5f:ec:32:55:9a:c3:2c:df:a8:66:48:d1:28:50:31:
43:fb:ab:41:a9:21:50:3d:3e:cb:71:76:9a:f5:dd:45:43:83:
77:82:29:58:19:7e:72:7b:ac:10:19:60:c7:92:da:96:ac:6a:
24:f6:6b:e7:85:3a:4c:35:c5:5a:04:03:74:af:bf:8c:26:a3:
30:57:ff:f9:a2:83:c9:fe:65:0c:fe:00:3c:f8:81:9c:8d:9c:
c1:ee:a1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:35 2024 by rpki-client on console-ams.rpki-client.org