Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/1ZB4Egzkp59r6El1wNLxAUcLwIU.roa
File: 1ZB4Egzkp59r6El1wNLxAUcLwIU.roa (raw, json)
Hash identifier: /MZb8oehof56OUnBUUrhJZ/+6yqNPIUtItylGRpK6G0=
Subject key identifier: D5:90:78:12:0C:E4:A7:9F:6B:E8:49:75:C0:D2:F1:01:47:0B:C0:85
Certificate issuer: /CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Certificate serial: 0186941369934759B3FC1EF35A40C174B29B
Authority key identifier: 02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/1ZB4Egzkp59r6El1wNLxAUcLwIU.roa
Signing time: Mon 27 Feb 2023 18:12:25 +0000
ROA not before: Mon 27 Feb 2023 18:12:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399587
IP address blocks: 176.58.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:94:13:69:93:47:59:b3:fc:1e:f3:5a:40:c1:74:b2:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Validity
Not Before: Feb 27 18:12:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d59078120ce4a79f6be84975c0d2f101470bc085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:12:fe:06:fd:48:76:1a:49:1c:3a:f8:25:9a:
b2:60:cb:e9:da:51:09:74:a9:97:b8:64:1d:7c:a0:
e7:2a:17:35:01:5c:59:6b:e1:d5:48:f5:6f:cb:9c:
c6:f9:00:11:68:1d:40:ef:17:3d:c4:87:1c:fb:a7:
4c:a2:4b:a5:b2:95:8a:f4:5e:79:3b:62:56:e6:f2:
80:53:c9:d8:9a:7a:47:e8:34:a4:94:27:03:ce:35:
a8:04:3d:70:a3:17:68:43:55:33:5f:4d:f2:09:5f:
50:c8:ba:48:d3:e0:87:0b:44:d1:7b:2b:03:2c:9c:
ad:67:d9:99:2b:ba:83:21:c3:c5:5e:b9:a1:10:4a:
58:e0:30:de:e6:b7:1b:17:47:f0:4f:2e:63:24:6e:
12:81:3c:e8:0e:4b:6a:df:18:5e:fd:aa:39:65:d5:
1b:64:d2:a1:9c:f3:6c:fa:9b:18:f3:1e:04:57:50:
ed:ba:5e:bb:91:8c:79:d5:7e:31:f3:c5:a1:28:9b:
f5:35:3a:c4:74:6a:ba:10:3a:8d:aa:3a:5a:b5:94:
01:75:a8:0a:15:cf:91:ae:cb:d6:89:79:8c:5f:1b:
b6:b9:f3:61:34:8f:79:0a:6d:8e:99:5d:7e:ee:00:
e2:2c:f7:62:ae:5a:85:b4:4e:76:9a:b8:ac:13:a5:
c4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:90:78:12:0C:E4:A7:9F:6B:E8:49:75:C0:D2:F1:01:47:0B:C0:85
X509v3 Authority Key Identifier:
keyid:02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/1ZB4Egzkp59r6El1wNLxAUcLwIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/Anes0RLxxsgzvsIvi1PMcNI5CHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.72.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:42:00:99:86:2e:c8:fe:ea:b5:7a:7f:b4:9d:19:af:2a:6a:
f2:62:4b:6b:8f:3c:19:ea:cd:25:48:26:83:cf:27:e6:62:c6:
ed:33:12:a7:15:99:c2:60:30:79:06:3d:a7:04:b0:c0:13:0f:
01:ba:26:29:21:a0:11:9d:16:35:2a:28:95:b1:46:1f:f3:e8:
62:c5:64:b9:8c:3d:8f:a8:f0:68:bc:59:66:21:00:b9:ad:81:
c6:73:72:77:23:fa:a1:dc:8d:50:a3:20:d2:5f:47:da:dd:07:
01:fe:a2:a0:0c:07:db:46:e9:3a:a5:f5:6c:49:fe:d7:05:6d:
7b:bf:ea:c6:8f:8b:48:4f:fb:77:73:cd:07:26:25:4f:bc:06:
96:cf:19:25:1a:9f:cc:ad:4e:25:db:da:08:4f:5e:11:90:1c:
ff:ab:d3:4c:66:89:d3:d6:17:f9:f4:d6:8a:33:6d:23:95:04:
19:5a:fe:b8:0f:ed:09:60:e9:b7:da:59:c4:1c:5d:e3:94:03:
42:be:f1:87:16:79:f2:1a:0e:54:09:92:e6:ce:f1:2f:cd:99:
92:5f:dc:15:bd:77:6c:48:b1:02:7f:d6:a9:83:e5:6a:c4:fa:
0b:2f:a3:9b:83:76:9b:9b:e9:ad:bc:a5:e8:43:ad:2f:46:1c:
6f:ab:67:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:34 2024 by rpki-client on console-ams.rpki-client.org