Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/M8EJPVP1JnFY6KxoMvB5WAevX5k.roa
File: M8EJPVP1JnFY6KxoMvB5WAevX5k.roa (raw, json)
Hash identifier: EQ9dBfgMRxdqDHH2/jpn1P99QOTaQcvg0Xe3JQLHwD0=
Subject key identifier: 33:C1:09:3D:53:F5:26:71:58:E8:AC:68:32:F0:79:58:07:AF:5F:99
Certificate issuer: /CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Certificate serial: 018572BA369DCBC2B7600E2FA41F70553AA0
Authority key identifier: 02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/M8EJPVP1JnFY6KxoMvB5WAevX5k.roa
Signing time: Mon 02 Jan 2023 13:44:44 +0000
ROA not before: Mon 02 Jan 2023 13:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59973
IP address blocks: 176.58.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:36:9d:cb:c2:b7:60:0e:2f:a4:1f:70:55:3a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0277acd112f1c6c833bec22f8b53cc70d2390876
Validity
Not Before: Jan 2 13:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33c1093d53f5267158e8ac6832f0795807af5f99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:94:51:28:cc:59:22:fa:61:f0:5d:dc:a5:d0:
5b:41:80:59:03:b3:37:66:18:37:a5:8e:74:7b:05:
b9:5e:7d:7b:87:57:0c:ff:9d:93:ca:99:be:09:1e:
33:83:71:be:08:a8:c7:6d:74:7e:f3:6a:bd:ab:75:
09:78:9d:f6:9e:6b:f5:5e:24:92:41:bf:aa:ff:eb:
ae:87:fa:19:3f:95:40:97:9c:cb:bf:ca:4c:0a:9a:
9f:67:6a:3d:ea:37:cc:4c:1d:39:89:21:e6:56:ea:
cf:e5:f8:ce:37:2b:ac:79:96:08:71:e1:a9:ab:23:
bb:c2:ca:1a:7a:f1:ee:d3:e2:ab:6d:a1:bd:88:bd:
06:8c:dc:89:ef:dc:ae:34:c8:46:e4:39:47:88:dc:
47:7a:fd:cf:b9:e3:d5:a8:7a:fa:94:58:0f:ec:a8:
de:d5:8d:55:7b:36:a3:53:45:91:5d:ed:10:e1:09:
66:39:53:c0:b9:ac:3d:ff:1a:26:79:08:51:12:9f:
35:76:58:cb:ae:8e:d6:86:1f:6d:5c:80:91:f3:a8:
29:40:e2:4c:e1:d6:68:fd:7b:f4:a4:b8:a4:10:4c:
32:7d:47:19:51:f8:78:9b:d6:0d:30:05:66:14:5c:
aa:13:f7:3d:97:19:c1:a2:fb:8b:90:65:cc:0a:c1:
db:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C1:09:3D:53:F5:26:71:58:E8:AC:68:32:F0:79:58:07:AF:5F:99
X509v3 Authority Key Identifier:
keyid:02:77:AC:D1:12:F1:C6:C8:33:BE:C2:2F:8B:53:CC:70:D2:39:08:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Anes0RLxxsgzvsIvi1PMcNI5CHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/M8EJPVP1JnFY6KxoMvB5WAevX5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2c0f0b-7831-41d3-916d-d9655987874a/1/Anes0RLxxsgzvsIvi1PMcNI5CHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.58.66.0/24
Signature Algorithm: sha256WithRSAEncryption
95:0f:54:d7:8e:50:fd:17:f7:be:5b:e1:b9:31:61:06:13:54:
a8:b8:4a:f3:8a:ae:b6:c4:b9:5d:29:bb:61:ee:a7:e2:fc:c3:
e5:f3:9e:cb:eb:77:61:46:d0:ef:bf:54:14:af:57:91:b7:88:
45:b0:6f:e9:de:80:df:1c:4f:92:dd:14:5f:54:50:b1:7b:a6:
b4:ff:e2:60:9b:72:a4:34:d2:79:5d:39:b5:62:62:3c:43:02:
26:d6:53:07:e9:9f:15:cb:f2:56:2a:aa:20:25:ba:0b:cf:3e:
68:80:84:f1:00:f9:37:3b:77:f7:53:8d:cf:94:15:c3:c5:06:
fe:d8:9d:0a:77:5e:1a:f5:95:d4:97:8c:01:1c:f3:c9:b8:b4:
60:52:4c:7c:59:61:b0:1b:e3:e8:e4:b6:ea:c8:ff:d3:85:fd:
c8:57:5e:11:65:22:2c:d3:14:11:b0:77:bc:95:9c:d6:59:44:
93:95:55:fd:21:21:f1:ba:bb:51:df:4a:18:b5:d2:aa:79:ed:
78:bd:14:60:ee:d8:ff:94:c2:fe:ab:02:a8:07:00:06:d7:a1:
92:9b:44:22:61:05:45:3a:41:8a:8f:24:30:83:57:6c:09:7b:
7d:57:4d:43:fa:81:f2:9b:12:c0:99:aa:f5:91:be:49:17:04:
be:43:0e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:02 2024 by rpki-client on console-fra.rpki-client.org