Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/S8E0SSVlJq6EObGEtlBiC734jPY.roa
File: S8E0SSVlJq6EObGEtlBiC734jPY.roa (raw, json)
Hash identifier: r/Mk2Yu9yFukEuWnTzTazM5bG4a9/ukj9Gv9Rl5TrkM=
Subject key identifier: 4B:C1:34:49:25:65:26:AE:84:39:B1:84:B6:50:62:0B:BD:F8:8C:F6
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 018B81DF4A201C10204F6C1C43D9840766A2
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/S8E0SSVlJq6EObGEtlBiC734jPY.roa
Signing time: Mon 30 Oct 2023 18:36:16 +0000
ROA not before: Mon 30 Oct 2023 18:36:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60064
IP address blocks: 176.116.13.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:df:4a:20:1c:10:20:4f:6c:1c:43:d9:84:07:66:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Oct 30 18:36:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bc13449256526ae8439b184b650620bbdf88cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:39:37:ad:76:8f:01:16:2a:55:94:a2:ff:
f0:d9:2a:b3:d5:f2:74:e5:ff:b0:ff:57:e0:6d:b5:
96:a8:fe:d4:87:f8:ff:a8:35:a1:9d:cf:da:b3:b8:
17:de:25:6f:d4:3b:bd:30:63:73:50:5c:07:4d:e8:
17:41:88:df:9a:f6:e9:1e:79:2c:99:a7:2b:24:e4:
f0:a0:bb:0d:0b:8a:2f:96:c5:ea:86:55:41:de:be:
9e:fd:3d:77:01:12:d7:94:39:b8:01:40:d3:a2:45:
3c:38:01:f1:4a:80:d3:d8:af:a5:a8:de:d7:4a:77:
f7:b4:af:01:89:5e:98:78:c1:3b:93:cf:07:e3:86:
37:a5:e8:0f:f7:91:80:23:98:04:51:b5:d0:26:68:
cc:78:37:fb:5b:88:8a:ed:b6:35:b3:d7:85:7f:8e:
32:9f:83:cd:c7:cb:de:c1:58:ff:d0:9b:fe:ff:cc:
c8:5a:92:d2:ec:57:7c:4a:db:d1:a7:1c:25:8b:23:
3a:04:8b:51:0e:ff:32:9b:ae:17:46:eb:4b:35:3f:
4c:55:e9:6b:19:bf:9b:f5:a6:ae:05:33:66:cd:96:
2e:03:7e:7b:9e:47:1f:ce:d2:1f:21:88:f1:56:0d:
7f:ff:7d:d3:30:2e:97:c1:81:d2:5c:f4:ad:36:5e:
e6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C1:34:49:25:65:26:AE:84:39:B1:84:B6:50:62:0B:BD:F8:8C:F6
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/S8E0SSVlJq6EObGEtlBiC734jPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:0a:dd:bd:36:32:a9:8e:96:51:d2:4e:2e:9d:03:9c:23:10:
b3:64:f3:c7:d4:1d:44:5e:e3:96:3e:1c:de:ed:ce:c7:a1:bd:
21:d0:84:c1:e4:78:3b:5a:57:ba:a6:ff:d3:49:61:6c:d1:9d:
cf:08:80:b6:46:5a:96:fa:4f:68:cf:2b:67:40:4f:26:fc:aa:
93:c8:2b:ca:65:61:38:77:47:3c:9b:03:d5:c0:d3:0f:1a:36:
2a:af:97:d7:0a:fc:27:34:22:2c:c8:74:65:de:74:67:c4:f1:
92:e3:99:7c:6b:7c:99:fb:04:0b:c7:c2:d1:1d:20:3f:d7:3c:
99:80:24:6c:96:f5:7b:a9:90:91:0a:41:bf:80:21:43:af:fd:
0e:66:1a:d2:32:03:4f:e0:0e:d2:8b:0d:e2:a1:34:85:4b:4a:
f3:ad:db:82:f5:d6:99:22:2d:6f:42:8f:62:74:2b:12:73:2e:
8e:1e:11:8a:de:b0:99:9b:8a:cc:9b:c9:ec:6a:52:75:26:c9:
2f:13:b3:09:92:f9:e4:e6:71:65:b8:83:c9:60:ca:70:cb:b9:
bb:a3:47:64:f5:f3:49:f3:c7:cd:bb:73:7f:62:9e:73:fc:b6:
06:aa:55:58:95:b6:b2:b3:7d:59:f7:cb:d1:38:dc:26:e1:ed:
ec:6f:fa:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:21 2024 by rpki-client on console-fra.rpki-client.org