Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/jiho1WIQqBMfC7ZvLztb-9F7o-k.roa
File: jiho1WIQqBMfC7ZvLztb-9F7o-k.roa (raw, json)
Hash identifier: Le6WaKcCawlT00Shjb09U8tdDXDjHHx8bVALINP+0bY=
Subject key identifier: 8E:28:68:D5:62:10:A8:13:1F:0B:B6:6F:2F:3B:5B:FB:D1:7B:A3:E9
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018CC64A8EF9CB72FC1ECBF1F2695A8E2DE9
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/jiho1WIQqBMfC7ZvLztb-9F7o-k.roa
Signing time: Mon 01 Jan 2024 18:30:24 +0000
ROA not before: Mon 01 Jan 2024 18:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.88.0/21 maxlen: 22
Validation: Failed, certificate revoked on Wed 24 Jan 2024 19:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:8e:f9:cb:72:fc:1e:cb:f1:f2:69:5a:8e:2d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jan 1 18:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e2868d56210a8131f0bb66f2f3b5bfbd17ba3e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:90:4c:61:09:47:c3:d6:9e:6e:cf:60:76:
d5:67:a3:eb:81:a2:6e:4a:fe:72:c2:aa:eb:a7:ed:
35:cd:99:a6:35:88:f3:b7:14:94:34:6f:67:da:d3:
af:ce:59:b9:0a:90:75:a5:69:be:d7:ea:46:72:a1:
6b:01:d9:5a:4e:b6:c8:96:5e:5c:84:cd:f1:91:07:
88:95:45:4d:21:7c:b6:86:c0:df:69:fb:82:82:8f:
c8:7a:70:a7:44:dc:d6:38:a5:a1:65:ac:11:ca:97:
ca:7f:73:67:5e:40:c0:b6:39:16:5b:59:30:5a:34:
91:be:47:1c:a6:79:58:06:01:93:58:9b:89:9c:59:
fa:3f:d9:9e:a7:9c:e2:82:39:f7:c7:27:14:bb:d6:
a4:ad:b8:d1:88:71:76:f8:ba:b0:ac:d5:d1:0b:eb:
50:89:a9:2d:5f:f9:10:c8:95:d1:24:c6:2d:03:23:
83:5a:43:85:3b:ee:a5:e5:c1:dc:74:8e:69:0a:81:
bc:fd:28:d4:2e:b1:01:33:a2:79:36:b5:5a:96:0b:
37:a1:f9:71:8a:72:e7:63:c2:68:9a:4a:49:e8:7d:
a4:1f:9c:5c:8b:9b:f4:93:8c:5a:9c:1d:dd:bc:29:
d3:e8:32:b0:f8:7e:9a:99:00:de:a4:43:2f:f0:43:
d9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:28:68:D5:62:10:A8:13:1F:0B:B6:6F:2F:3B:5B:FB:D1:7B:A3:E9
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/jiho1WIQqBMfC7ZvLztb-9F7o-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.88.0/21
Signature Algorithm: sha256WithRSAEncryption
59:c0:cf:e6:b0:e4:8a:4a:a1:fb:3b:eb:29:e3:b8:25:87:74:
39:dc:e8:d0:5e:0b:b0:e3:47:1b:fd:55:22:c9:46:84:95:7b:
ef:18:fa:08:e7:f1:82:86:58:de:51:43:f9:33:fd:f1:9d:5d:
9d:f0:cc:ba:9f:bc:52:cb:3b:cc:0e:9b:10:ec:a8:0d:e2:6b:
bc:64:d2:c6:69:ae:aa:eb:b8:9c:4b:a9:b5:06:f2:7d:db:78:
e6:68:fb:e9:2b:89:21:70:26:10:ca:2f:27:83:5e:97:66:17:
fb:3d:63:15:f4:5c:a2:d8:f9:61:f2:38:8c:21:ad:48:c7:bc:
22:6a:05:c8:ed:f8:5c:34:cc:59:8c:24:43:fe:6b:9e:5c:b5:
bc:80:75:60:7d:37:33:50:4b:39:d9:c2:bb:ca:d0:56:ca:b2:
29:35:97:0d:32:74:3b:bb:c4:c6:3d:39:3e:7d:bb:6b:da:83:
f6:9c:12:4e:4e:60:9c:76:61:f2:c3:06:19:be:bf:dc:61:55:
1b:7d:f7:f6:46:94:08:5c:70:7e:d6:2a:f2:9b:9b:94:61:94:
22:e2:73:37:cd:61:34:15:ae:b1:77:7b:d5:2d:19:99:2f:5f:
10:c1:47:30:e8:87:e8:90:4c:08:fe:dd:0f:f0:c6:f5:aa:01:
a9:8d:09:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 24 21:50:55 2024 by rpki-client on console-fra.rpki-client.org