Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/d7X348Vhj8ZBxCL0_bRiy4ax7OM.roa
File: d7X348Vhj8ZBxCL0_bRiy4ax7OM.roa (raw, json)
Hash identifier: 6e32wIQeYpJLn+Msnfh8XbVQGl9URfNCDyVC9AYt8lU=
Subject key identifier: 77:B5:F7:E3:C5:61:8F:C6:41:C4:22:F4:FD:B4:62:CB:86:B1:EC:E3
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 01904A240C3740DD47AFB374237394A33FFC
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/d7X348Vhj8ZBxCL0_bRiy4ax7OM.roa
Signing time: Mon 24 Jun 2024 12:06:34 +0000
ROA not before: Mon 24 Jun 2024 12:06:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.84.0/22 maxlen: 22
176.117.92.0/24 maxlen: 24
176.117.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 21:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:24:0c:37:40:dd:47:af:b3:74:23:73:94:a3:3f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jun 24 12:06:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77b5f7e3c5618fc641c422f4fdb462cb86b1ece3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5c:93:ad:30:f6:76:25:29:a8:b7:eb:af:f9:
ef:13:9a:ee:0b:3d:ce:43:14:63:03:f3:b2:80:3a:
a6:a9:73:ea:82:bf:54:d5:34:88:b4:10:fa:8c:53:
00:07:5e:3d:ce:14:a6:b1:15:48:32:8f:81:4a:54:
21:50:3f:50:3e:46:40:9f:2e:ce:d5:a7:c8:8f:4e:
75:d0:7c:1a:b5:21:03:41:f9:59:38:cd:0f:f6:17:
61:58:c5:59:b9:dd:c8:4e:98:05:0e:61:c5:75:4d:
84:42:69:f2:19:db:51:09:f4:84:8c:b2:1b:91:bd:
da:c2:a7:15:da:f9:f7:cf:1d:42:26:07:b1:b4:fc:
05:4b:0c:fb:28:1f:63:4e:65:d8:fc:7c:eb:b2:2a:
fd:63:96:36:36:50:34:c9:09:72:8c:fb:4c:6f:33:
32:eb:de:a6:89:d6:23:3f:bf:98:40:56:fa:a1:0c:
b1:0f:25:9f:0e:9a:64:df:6c:0b:fd:e3:ef:4a:32:
1c:d6:e9:8e:4d:da:02:e1:eb:72:37:4a:82:09:23:
83:ef:19:01:06:2f:83:28:24:3f:14:22:ee:3c:fa:
4c:b3:b9:2f:91:eb:48:78:a4:68:70:0b:8c:eb:63:
a1:65:44:52:f2:3e:94:61:2c:63:71:6f:a1:4b:3b:
8b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B5:F7:E3:C5:61:8F:C6:41:C4:22:F4:FD:B4:62:CB:86:B1:EC:E3
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/d7X348Vhj8ZBxCL0_bRiy4ax7OM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.84.0/22
176.117.92.0/24
176.117.94.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:79:68:d6:27:21:aa:01:d9:de:18:43:07:81:b3:62:95:bb:
f6:59:d2:5e:e6:dc:8a:8e:df:4f:0c:6b:50:2e:21:38:bb:10:
08:b0:07:90:d1:f8:d0:15:30:ab:f4:3f:64:6d:39:75:a6:2c:
18:0a:b4:ec:9a:5e:2f:53:fb:73:12:80:cf:a8:a9:fb:e2:a0:
64:7c:c9:d5:aa:0e:89:ce:3d:98:42:61:22:b3:41:ce:a0:48:
29:79:21:16:98:d6:b3:51:94:7b:0d:0d:7d:c4:b9:e4:95:a3:
81:1c:a1:d9:7d:32:75:53:7d:b2:9f:9e:c3:62:e4:b5:31:fb:
28:1a:8b:6a:67:67:1e:da:4a:d5:b7:29:06:53:ff:53:39:81:
c6:d2:3f:26:be:77:62:da:ac:2b:89:a9:54:28:75:53:ab:58:
96:81:46:02:b5:28:d2:00:8d:e5:5d:d2:67:63:d0:67:99:46:
1d:66:c6:3d:82:69:9b:88:80:19:0a:82:86:ad:bb:64:77:05:
f2:ac:05:6e:0e:8c:52:6e:15:f0:e4:62:b6:f7:fc:66:68:6b:
58:14:49:c4:ee:1c:17:04:cc:1d:01:e0:a3:78:9a:68:8f:20:
20:11:d2:f8:d8:8c:1e:4f:39:8b:78:67:7d:ec:36:be:d3:87:
70:1e:8c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 01:38:27 2024 by rpki-client on console-fra.rpki-client.org