Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/jXRkztg0Gsq-68RNhb8YJhWd85o.roa
File: jXRkztg0Gsq-68RNhb8YJhWd85o.roa (raw, json)
Hash identifier: 3fqWeiX50/dyWcuZejnxkcel1v8tdRuilGjs7TXjNu4=
Subject key identifier: 8D:74:64:CE:D8:34:1A:CA:BE:EB:C4:4D:85:BF:18:26:15:9D:F3:9A
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0185708CD36B7F7F6BFC66BAB8CC9F2E0064
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/jXRkztg0Gsq-68RNhb8YJhWd85o.roa
Signing time: Mon 02 Jan 2023 03:35:55 +0000
ROA not before: Mon 02 Jan 2023 03:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8848
IP address blocks: 176.211.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:d3:6b:7f:7f:6b:fc:66:ba:b8:cc:9f:2e:00:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 03:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d7464ced8341acabeebc44d85bf1826159df39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2d:c2:77:7e:f0:92:2e:d1:25:8f:a0:ec:d1:
ea:07:f2:14:e5:e3:91:f5:05:9a:0e:fb:93:3a:d6:
25:13:ca:66:86:7e:2e:c8:8a:69:86:5d:e5:38:b1:
ab:cc:68:5c:31:6d:31:25:43:d5:d9:42:35:6e:bc:
9e:57:93:ca:2b:6b:d4:3b:d3:1e:11:40:73:04:fd:
1a:8d:c3:b2:0a:83:1b:7e:13:49:9e:93:9b:d9:9b:
63:45:c2:ed:ab:aa:41:a1:c1:83:d4:b2:bc:41:dd:
5b:a3:29:a6:fc:6c:c4:bd:5b:8b:6a:fc:42:d3:3f:
94:03:28:55:59:17:c3:f5:ee:25:a5:af:f1:a2:e4:
e1:6e:44:b3:6c:8b:c0:3a:a9:5f:99:f3:19:39:4d:
f6:95:4c:b5:84:9b:60:6d:83:3a:05:78:b5:99:c5:
9a:2e:06:91:bf:d9:71:51:dd:1a:2c:a1:99:a9:ec:
51:ef:fb:39:d1:7c:2c:d1:b6:88:8b:37:14:81:3d:
8e:97:94:55:82:53:d9:f0:9f:d7:27:7c:73:b1:cf:
59:52:7c:10:dc:d7:00:16:7e:7c:fb:c7:c6:f2:0f:
c1:b6:d7:da:47:40:5f:2a:e0:cb:9d:96:e1:25:72:
1d:d8:49:83:d8:b3:cd:4d:71:31:b3:69:e3:43:1f:
99:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:74:64:CE:D8:34:1A:CA:BE:EB:C4:4D:85:BF:18:26:15:9D:F3:9A
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/jXRkztg0Gsq-68RNhb8YJhWd85o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.211.127.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:60:03:90:ef:ba:63:42:04:78:c6:4a:de:d9:8b:a2:ef:c3:
c9:59:c2:98:83:6e:7c:01:d4:65:3c:a9:4f:19:ed:f7:10:fb:
73:2b:77:44:03:0b:3c:87:ac:aa:a0:d9:0d:1f:3f:ca:6e:0b:
18:41:f4:a7:80:43:6f:51:e8:ab:3b:a0:3f:ba:c9:2d:ce:d3:
c5:3c:d2:64:9c:0a:d3:24:cf:1c:29:a0:d9:b8:b2:f3:80:c6:
82:bc:07:39:f9:cd:ce:1b:11:c8:73:3f:58:06:de:7f:5c:89:
66:f4:86:7a:61:e3:60:d5:ea:80:2d:cb:00:a9:89:6d:b9:24:
49:f0:c3:e9:de:89:fa:06:29:cc:f9:1b:88:d3:65:8b:1d:e2:
0b:5d:5f:f8:7d:87:14:fd:8e:75:d0:37:57:7a:a4:d5:3d:d3:
2a:9f:98:d2:3b:f5:be:2a:f6:e0:b9:90:b2:49:7a:ea:ae:37:
a2:37:01:11:9e:2d:59:c2:4e:fe:14:d4:08:a0:20:12:73:b9:
00:de:bc:00:7d:2a:e9:96:9b:7f:0c:7b:2c:4a:58:a5:fe:ca:
73:d9:8f:b9:4a:78:a0:d5:5b:6e:59:12:15:39:ab:54:ea:61:
bd:a7:38:07:e3:07:57:8e:c9:fe:f7:1f:74:eb:4c:5e:f3:84:
f0:ca:b8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org