Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/V4qnvSdz13KhrE4C0P5vomD3B9E.roa
File: V4qnvSdz13KhrE4C0P5vomD3B9E.roa (raw, json)
Hash identifier: RUX7O90Tdup+E1u9xUTX88cpv6T+VhFX0ekJ4JyBVWY=
Subject key identifier: 57:8A:A7:BD:27:73:D7:72:A1:AC:4E:02:D0:FE:6F:A2:60:F7:07:D1
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 018CC3B743AE0AFB3661ED5F9601EB7B157D
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/V4qnvSdz13KhrE4C0P5vomD3B9E.roa
Signing time: Mon 01 Jan 2024 06:30:16 +0000
ROA not before: Mon 01 Jan 2024 06:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60064
IP address blocks: 176.116.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 10:42:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:43:ae:0a:fb:36:61:ed:5f:96:01:eb:7b:15:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Jan 1 06:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=578aa7bd2773d772a1ac4e02d0fe6fa260f707d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fc:b0:d8:38:3a:da:cc:85:99:64:7b:e4:98:
4c:db:db:d2:01:6a:fa:f4:bb:7c:e8:0f:f3:44:84:
fb:a2:bd:dd:64:99:33:bd:b4:5c:3a:c7:05:d8:02:
78:39:3a:11:70:c7:5e:3e:31:ea:09:a1:7a:4e:aa:
04:29:87:7c:81:83:df:6b:49:0b:fb:93:72:1e:a7:
29:fa:f0:0b:e2:50:98:29:20:ee:c1:0f:0f:f4:30:
67:1c:73:3d:5e:b6:25:ef:04:c5:90:34:4b:2d:fa:
e8:6d:ff:96:82:e3:95:9f:ee:05:9f:fb:45:3a:0e:
2b:ed:00:6f:ea:39:ed:ad:e5:ad:b2:e8:91:db:31:
11:f1:e3:2d:8e:48:bc:75:37:6c:9d:b9:d2:1a:55:
a4:3b:27:be:80:80:10:38:d2:81:16:6b:fa:ed:b7:
83:01:15:6c:c4:11:6d:8b:c9:46:30:f6:2a:c3:e0:
60:5b:50:4f:4e:a4:e4:45:88:14:59:5b:9f:84:b0:
2c:ba:de:4a:f7:7b:10:b5:35:3c:e9:49:48:c0:a7:
cc:5e:cd:97:7e:34:e8:dd:fe:b3:b4:80:8b:2e:d8:
e1:96:18:29:69:3d:8a:e3:fb:15:35:71:44:15:6c:
e2:8a:4b:ec:9b:a8:b3:cb:77:42:ee:81:d0:95:b5:
e2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:A7:BD:27:73:D7:72:A1:AC:4E:02:D0:FE:6F:A2:60:F7:07:D1
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/V4qnvSdz13KhrE4C0P5vomD3B9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.13.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:a6:f9:8f:13:4c:a1:44:d8:20:7c:f8:4e:01:b8:d3:4a:00:
47:11:4b:d0:b2:6c:eb:c7:9a:96:df:b0:13:b0:f3:56:7f:de:
ec:e1:c5:d2:a1:18:40:6b:7c:34:1d:7b:92:21:1d:b9:d9:a5:
5c:47:2a:07:43:68:51:e7:21:51:bf:48:18:72:ba:35:3d:f9:
3a:83:2b:bc:bb:31:79:53:ae:e2:4d:e6:30:8f:f2:05:77:93:
0b:6d:64:82:d1:75:04:37:05:50:ef:67:e2:70:8f:3c:23:b4:
f7:9f:47:a2:11:55:78:9e:82:f9:6d:d1:af:a3:52:e3:94:aa:
b2:be:45:3e:06:87:4c:79:b6:cf:20:33:90:75:2e:a5:c1:3b:
7b:ef:ca:8a:7d:6b:35:16:63:c6:a3:32:f7:7a:f2:d4:99:74:
4d:9c:47:bb:77:b6:0b:a8:e0:37:aa:46:50:91:4b:f2:5f:49:
69:03:6f:ef:81:2f:a3:d1:41:01:84:ca:06:03:4a:56:8d:6f:
22:be:5d:4d:68:9c:2a:1e:92:49:9c:1a:c6:7a:f2:06:ee:d4:
3f:46:7d:df:fe:2c:f9:f1:7f:d9:87:3d:fe:6f:05:d2:1b:77:
30:ba:83:a6:3a:1e:6f:a7:d5:f6:f8:00:27:12:7d:f4:41:a6:
f3:17:52:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 31 14:51:07 2024 by rpki-client on console-fra.rpki-client.org