Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/DuEi93a-Y4AvcCKpVvFN5veQjjw.roa
File: DuEi93a-Y4AvcCKpVvFN5veQjjw.roa (raw, json)
Hash identifier: Q7FNS2rbvKu+rd3TLSbIrxRlyT+G+UGVz6dLIYY2jjA=
Subject key identifier: 0E:E1:22:F7:76:BE:63:80:2F:70:22:A9:56:F1:4D:E6:F7:90:8E:3C
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018760BF4CB5700C235C0C735989A7451047
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/DuEi93a-Y4AvcCKpVvFN5veQjjw.roa
Signing time: Sat 08 Apr 2023 12:02:42 +0000
ROA not before: Sat 08 Apr 2023 12:02:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.84.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 09 Apr 2023 07:19:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:60:bf:4c:b5:70:0c:23:5c:0c:73:59:89:a7:45:10:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Apr 8 12:02:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ee122f776be63802f7022a956f14de6f7908e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:03:0c:27:b6:55:e2:8d:3e:b1:6d:1a:08:
53:31:9a:97:f9:5c:63:11:ab:ba:ae:db:b6:78:05:
43:09:f6:96:97:09:49:b8:d2:38:26:35:e7:7a:97:
96:67:69:c4:ad:de:4c:5a:9c:bc:23:ff:33:15:8c:
f0:9d:55:43:55:ad:3c:ae:46:fe:f7:d3:24:72:71:
e2:c4:db:37:17:40:6a:41:54:28:12:88:aa:0e:d8:
4d:30:42:0c:03:fa:d8:a6:34:cb:76:fc:96:2d:6a:
b9:b0:9a:e7:61:84:ff:37:44:c7:6c:23:b1:50:56:
00:10:07:00:de:59:de:c0:97:b3:e7:83:4e:3b:f4:
2e:9f:b9:2b:ec:d0:18:e2:e6:9b:1d:a1:2f:93:22:
61:b9:c4:51:ec:f0:c8:ba:de:59:40:6e:0a:9a:be:
eb:17:31:41:a0:cf:81:92:da:d6:67:09:99:d4:65:
ee:f8:c0:eb:28:13:b7:0b:46:d9:c4:e2:da:34:31:
a6:39:15:ea:86:6e:9d:34:d9:3b:69:40:28:f7:58:
8e:b4:7c:d4:97:c4:32:5f:7b:1b:2f:9a:15:86:58:
08:ff:ef:b0:9c:c7:03:bc:84:99:19:39:aa:c4:ef:
21:30:83:78:03:ee:99:bc:7d:ed:e6:bc:42:be:5f:
bc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E1:22:F7:76:BE:63:80:2F:70:22:A9:56:F1:4D:E6:F7:90:8E:3C
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/DuEi93a-Y4AvcCKpVvFN5veQjjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.84.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:e9:98:60:d9:ec:3e:b2:64:50:4b:28:cc:ab:66:93:22:81:
cd:89:36:60:8b:e2:c3:93:b1:42:04:50:67:9b:26:ff:0c:8c:
33:24:e1:ee:6b:13:4d:27:bc:69:18:4e:2f:bc:08:1a:88:1d:
dc:81:e6:ec:a4:ad:71:00:af:10:f8:ff:65:fc:20:fa:fa:2f:
a4:1d:a3:db:bf:c2:07:21:1d:43:9d:1e:15:d8:fa:33:d2:fe:
19:d5:d5:9e:f9:af:c1:dd:d0:02:43:e6:ad:8b:3c:9b:5e:25:
bf:d7:48:11:86:97:c5:6a:6e:ec:61:9a:13:5e:46:ed:37:75:
ca:d1:c5:9c:1d:c0:d7:4d:6b:11:c3:8b:44:a2:7c:d6:27:fc:
f2:e5:60:c8:b3:c7:6b:a0:7c:f4:45:a9:61:85:6e:c3:ba:09:
9b:5c:a3:1b:8a:71:8b:ce:a1:ee:c6:df:f2:2d:3d:60:72:ad:
d3:f7:87:ee:4f:92:f4:36:6e:6a:d4:a4:53:44:01:f3:29:3f:
1d:34:17:a7:24:4d:bc:04:66:96:b5:f0:86:79:00:fd:f9:55:
20:81:66:59:39:47:c9:e8:87:ed:23:b6:e2:76:b9:cc:d0:d1:
e9:e3:1d:72:74:86:11:e0:a9:5f:15:90:c6:b6:88:04:e1:36:
0c:f0:e3:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:21 2024 by rpki-client on console-ams.rpki-client.org