Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/2KVAE779og7D-uY-68b_wtycB84.roa
File: 2KVAE779og7D-uY-68b_wtycB84.roa (raw, json)
Hash identifier: ChOukl1RQ4+LUvfplJP64fQ1oQ+KQ5rrOAD9MaWg/WM=
Subject key identifier: D8:A5:40:13:BE:FD:A2:0E:C3:FA:E6:3E:EB:C6:FF:C2:DC:9C:07:CE
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 01856F8B8064BCC5CE9E38492B371E149DEC
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/2KVAE779og7D-uY-68b_wtycB84.roa
Signing time: Sun 01 Jan 2023 22:54:51 +0000
ROA not before: Sun 01 Jan 2023 22:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61227
IP address blocks: 176.110.116.0/23 maxlen: 23
2001:67c:1070::/47 maxlen: 47
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:80:64:bc:c5:ce:9e:38:49:2b:37:1e:14:9d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Jan 1 22:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8a54013befda20ec3fae63eebc6ffc2dc9c07ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:22:c5:b5:3b:f3:c6:65:bc:d8:44:c7:7e:49:
a7:e1:ab:0d:e9:89:33:0a:06:20:a1:a2:66:c2:4f:
b9:99:11:27:de:bb:40:b8:85:ec:ab:77:9f:5b:76:
84:d5:86:f5:90:01:77:48:97:77:97:76:d2:d3:8c:
12:d2:4c:32:98:10:76:0d:b9:9b:60:a1:a1:89:ba:
75:48:1e:d2:32:6f:c6:bd:51:38:f7:ba:26:8d:de:
6c:97:91:d2:60:70:a7:52:6b:e6:63:49:60:27:fb:
fe:d5:4f:07:e8:f5:7d:dd:5a:bb:0d:04:ef:c0:b1:
de:54:34:a3:df:5f:91:bf:dd:30:86:68:7a:db:40:
fb:4a:fc:03:2a:6f:de:37:ba:86:f2:02:ac:33:51:
dc:42:c1:32:d6:2d:4c:61:21:b9:0b:73:e4:3c:2a:
5d:a1:e2:31:48:c5:52:f0:8c:03:93:4e:35:77:32:
b1:d4:c9:c5:03:05:bb:ea:0f:ad:94:e8:2c:bb:64:
0f:30:d3:42:9d:6b:01:1e:ef:fa:b4:19:8b:b3:91:
56:93:be:d4:75:6c:79:e5:17:d2:54:49:b3:ac:25:
82:b0:19:25:b9:2f:68:87:ea:bc:4d:c7:72:95:6c:
80:bc:c0:14:2e:5b:b6:6c:3b:47:8c:88:61:35:f2:
47:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A5:40:13:BE:FD:A2:0E:C3:FA:E6:3E:EB:C6:FF:C2:DC:9C:07:CE
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/2KVAE779og7D-uY-68b_wtycB84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.110.116.0/23
IPv6:
2001:67c:1070::/47
Signature Algorithm: sha256WithRSAEncryption
19:9b:a3:41:f0:60:b8:9f:2f:f7:f9:64:04:51:25:f6:1a:db:
ba:63:5d:81:77:05:5e:20:cf:63:5e:76:bd:e7:5f:f5:9e:0e:
fe:08:e4:ed:19:96:bb:d9:8d:f0:6b:e6:38:91:08:49:a1:01:
32:a6:ac:b9:73:b3:d0:a6:de:12:a2:b7:5b:69:76:78:e2:b9:
aa:04:db:ab:40:96:b0:43:5b:75:01:9b:8d:61:e0:15:01:8c:
4e:9c:d4:bf:fe:e7:18:a5:3e:d5:18:10:3f:41:bf:37:0c:43:
fc:ba:96:8f:03:51:d3:46:ba:26:9e:bd:7d:c2:f7:f3:51:e2:
a3:d7:03:10:f8:f2:5c:dd:41:68:34:ce:41:3c:86:fa:1e:a2:
bc:64:ed:7a:c5:29:40:3d:1d:da:52:4f:72:f0:12:63:98:d1:
ec:d8:68:df:f2:26:13:24:4a:12:ac:78:8d:5d:28:02:4e:f3:
9b:f3:be:86:dd:6a:0c:bc:8e:83:41:48:16:f9:24:be:ec:9e:
1d:42:ba:cf:25:71:c2:6d:fb:d5:83:11:c0:8d:fe:31:1b:e1:
8e:d3:52:72:7e:09:43:eb:60:5a:68:9f:9d:dc:36:4b:ee:c2:
81:8c:66:b8:07:c7:29:35:3a:78:d6:fb:9d:db:fa:24:8c:98:
3f:03:ef:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org