Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/hX2F6FUc4-OXk932Zo0CnB-Fg0I.roa
File: hX2F6FUc4-OXk932Zo0CnB-Fg0I.roa (raw, json)
Hash identifier: JgCzM7IjRuh/g9sZghfmNCqEI7VrHQi5GfrOle1Wozc=
Subject key identifier: 85:7D:85:E8:55:1C:E3:E3:97:93:DD:F6:66:8D:02:9C:1F:85:83:42
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 019068E815B0C41D67A99EE4893034CD21A6
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/hX2F6FUc4-OXk932Zo0CnB-Fg0I.roa
Signing time: Sun 30 Jun 2024 11:29:18 +0000
ROA not before: Sun 30 Jun 2024 11:29:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6762
IP address blocks: 176.117.84.0/22 maxlen: 22
176.117.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jul 2024 15:56:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:68:e8:15:b0:c4:1d:67:a9:9e:e4:89:30:34:cd:21:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jun 30 11:29:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=857d85e8551ce3e39793ddf6668d029c1f858342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fd:ae:b8:34:d3:b3:5c:23:e9:eb:05:cd:24:
a3:07:03:6e:0e:59:94:ba:cc:ee:31:4d:96:0e:b5:
06:fd:af:09:25:80:ab:5a:6b:bd:87:75:9e:fb:18:
bb:a2:a5:ab:ef:34:a1:8f:2c:df:db:2a:af:fe:40:
43:1e:07:cf:81:a8:8b:c5:9e:7a:26:2d:c6:ef:d5:
bd:40:ae:2c:70:8c:ad:f5:db:a9:f0:dc:a9:43:c8:
75:ed:89:df:d1:76:71:5a:66:7d:4e:77:08:7e:3f:
08:23:b1:20:df:56:f4:49:f0:3b:30:ae:b4:65:ab:
71:20:a1:41:80:e1:d5:95:19:40:f7:34:90:22:e6:
ef:11:22:6f:30:22:31:2a:64:bd:95:d9:f5:15:5a:
ee:ca:8b:51:7a:30:58:c1:cb:80:e7:24:d7:a7:d6:
d8:bf:5d:11:8e:a9:30:60:ba:3a:fd:85:bd:80:a5:
6b:be:50:58:03:30:b1:2f:9a:5b:a2:11:ad:d2:5a:
a0:9e:fe:68:44:c8:64:33:c8:7b:ad:ca:41:3b:e1:
c0:34:62:40:ce:af:ac:72:bc:78:e2:6e:39:29:cb:
58:ad:16:a2:ed:26:e9:66:4e:f7:9a:03:c4:ed:c5:
62:aa:79:dc:59:00:8a:1b:ec:4b:19:3f:0c:26:d1:
a2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7D:85:E8:55:1C:E3:E3:97:93:DD:F6:66:8D:02:9C:1F:85:83:42
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/hX2F6FUc4-OXk932Zo0CnB-Fg0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.84.0-176.117.91.255
Signature Algorithm: sha256WithRSAEncryption
1f:64:3c:f3:20:7c:d9:46:02:95:fd:5c:b3:07:3c:c7:e1:d4:
6b:89:b7:8e:21:f1:39:e0:b6:88:ab:b9:24:6e:2e:59:b8:1d:
63:51:6f:63:bc:6b:68:2f:00:ef:60:8a:17:a3:0a:c2:05:bb:
b4:04:27:e3:1a:22:35:cb:6c:d7:8c:fb:70:36:94:e3:c9:21:
35:49:f7:72:4b:be:b7:aa:98:93:08:2d:f5:7a:a5:a9:28:c8:
27:73:fb:cb:cd:13:69:1d:67:02:b1:f8:3e:12:f4:9f:76:b9:
c3:a6:f8:68:63:9e:da:6b:d3:a0:6d:7c:1d:2c:53:b1:2b:a9:
f4:0b:bc:1e:37:81:08:0e:57:7b:0b:a2:09:df:7f:76:25:97:
19:57:60:56:37:19:f9:a5:b9:14:d5:56:7d:2f:b6:40:f2:9f:
2c:59:59:ae:d6:f5:b1:bd:73:15:f1:33:de:0c:17:d9:96:5b:
f8:c2:ad:02:8a:69:d3:f4:dc:65:ba:95:ea:36:fb:9c:14:b2:
06:37:02:b5:10:1b:02:4f:d5:13:e8:7f:1e:cb:44:7e:70:c2:
d1:d2:11:5f:43:cd:4d:8d:4f:d7:87:63:93:80:f5:33:45:1c:
5e:07:cb:d4:da:e1:a6:b2:b0:63:34:03:ad:7f:ca:15:57:48:
09:c3:98:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 17:35:14 2024 by rpki-client on console-fra.rpki-client.org