Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/_KxW21tvZ83xhloO4AXWArPxi2Y.roa
File: _KxW21tvZ83xhloO4AXWArPxi2Y.roa (raw, json)
Hash identifier: ccM144oZC/gx1yQtLV6HPIsi9XgbnWzGRilFXDWHDgU=
Subject key identifier: FC:AC:56:DB:5B:6F:67:CD:F1:86:5A:0E:E0:05:D6:02:B3:F1:8B:66
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018A94660C862DC1507339028CC535916E9A
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/_KxW21tvZ83xhloO4AXWArPxi2Y.roa
Signing time: Thu 14 Sep 2023 15:53:50 +0000
ROA not before: Thu 14 Sep 2023 15:53:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.88.0/21 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:94:66:0c:86:2d:c1:50:73:39:02:8c:c5:35:91:6e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Sep 14 15:53:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcac56db5b6f67cdf1865a0ee005d602b3f18b66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:de:c5:d9:8f:c4:67:9c:e1:09:58:a6:b8:01:
ae:a3:54:07:82:ef:de:4c:e5:ac:27:7d:e1:63:ce:
38:95:82:cd:34:46:c0:cc:4b:d2:4d:06:a4:68:7c:
9c:59:c8:bd:40:a6:2e:b7:fd:bd:a3:54:ec:a8:ec:
28:1c:06:c7:ad:92:61:c0:cb:32:4f:da:5f:37:eb:
67:a8:68:53:92:3b:a9:34:44:22:a7:3a:56:38:3f:
dd:90:63:b5:4b:ff:53:06:ee:32:c0:b7:e2:88:19:
82:f3:b4:35:9a:a5:ee:3e:5a:cc:d6:35:27:2c:1d:
2e:03:0c:48:9d:cd:3b:07:3d:86:23:af:e3:16:d1:
cb:42:67:47:a8:d4:47:46:d5:2d:5f:8a:a8:e8:e7:
40:ce:13:de:7a:f9:d9:90:9b:17:62:1f:2b:b5:8e:
a2:8b:ec:1a:fa:72:38:5e:2e:10:ad:6b:8a:f6:f0:
0d:02:f2:a9:54:d5:35:f1:ad:01:2a:86:52:6d:82:
15:eb:fe:6e:48:f0:6c:f1:50:f1:4e:96:9f:4f:da:
6e:8a:f9:77:80:29:a8:87:0b:e2:e9:44:58:f7:23:
5f:f5:05:3f:88:18:64:4c:55:fb:e2:54:db:60:62:
27:21:23:9f:41:45:20:bd:ee:8b:71:a9:f4:55:63:
00:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AC:56:DB:5B:6F:67:CD:F1:86:5A:0E:E0:05:D6:02:B3:F1:8B:66
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/_KxW21tvZ83xhloO4AXWArPxi2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.88.0/21
Signature Algorithm: sha256WithRSAEncryption
57:1d:4a:52:b8:32:4c:55:f8:c6:a8:eb:19:1b:7a:ea:9f:e2:
f5:29:ba:9c:aa:97:2b:4d:1d:bf:ed:10:19:5d:97:1f:c7:89:
5d:e6:3b:e9:42:c1:34:a0:e5:21:58:c5:12:fb:f7:09:51:92:
95:da:0a:22:3f:f5:33:47:3a:8b:ed:26:18:ea:f5:67:76:19:
bf:9f:fc:56:6e:b3:fd:4c:84:e5:12:49:2e:76:c4:d3:90:31:
8b:58:60:1d:ff:5e:22:53:6c:d3:60:ce:95:48:c8:ad:56:d7:
0d:cc:cf:e8:e4:bb:64:b6:be:23:60:57:d8:0e:7e:e5:28:4f:
38:74:1e:f7:bd:ee:90:2a:b1:9a:1b:76:d9:b8:78:78:a8:6b:
ce:cb:9c:b3:f0:4e:47:30:12:b8:01:32:57:74:8d:37:b6:e8:
46:4c:e2:7d:2e:6a:4e:e8:e0:93:11:5f:03:ca:ae:00:15:de:
20:08:a4:8c:63:1d:dd:58:45:95:d3:e9:22:19:cf:86:7c:23:
56:a1:aa:a9:9d:10:6f:94:50:5a:58:6c:f3:4c:56:f5:67:5e:
89:3e:f8:2e:8b:d0:ba:de:fe:d2:a4:32:17:62:df:3d:e4:84:
37:e8:f3:0a:56:2f:46:d7:d7:0f:f1:c3:69:4b:7b:4b:2c:e1:
82:4c:3f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:46 2024 by rpki-client on console-ams.rpki-client.org