Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/fYialumrcdVXaEUf26Wdx6QVDDY.roa
File: fYialumrcdVXaEUf26Wdx6QVDDY.roa (raw, json)
Hash identifier: duM2F/7f/2Zq5qO4PDffz+78AYadNU/2ttjlJd7FO1I=
Subject key identifier: 7D:88:9A:96:E9:AB:71:D5:57:68:45:1F:DB:A5:9D:C7:A4:15:0C:36
Certificate issuer: /CN=9ededf47822aee27da28d34dab1fe7a3c60a6aaa
Certificate serial: 01856F42CD8F1446ADAB4A3C6352C4EDE0AA
Authority key identifier: 9E:DE:DF:47:82:2A:EE:27:DA:28:D3:4D:AB:1F:E7:A3:C6:0A:6A:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nt7fR4Iq7ifaKNNNqx_no8YKaqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/fYialumrcdVXaEUf26Wdx6QVDDY.roa
Signing time: Sun 01 Jan 2023 21:35:26 +0000
ROA not before: Sun 01 Jan 2023 21:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39384
IP address blocks: 176.221.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:cd:8f:14:46:ad:ab:4a:3c:63:52:c4:ed:e0:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ededf47822aee27da28d34dab1fe7a3c60a6aaa
Validity
Not Before: Jan 1 21:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d889a96e9ab71d55768451fdba59dc7a4150c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bd:41:85:09:80:83:76:6d:3c:c8:4d:07:b8:
ae:5e:95:b5:80:fc:38:b2:b2:4a:6e:8b:81:ca:ed:
b1:db:8b:c9:46:0f:cf:ea:94:82:c8:d1:8a:51:da:
1e:ff:61:b9:d3:69:c2:aa:27:f4:d7:07:a9:e2:58:
67:62:e4:bd:38:b6:6a:51:71:c9:54:58:cd:d6:60:
b3:b4:82:b4:61:a7:76:18:e1:17:f5:6e:f9:25:8c:
ec:b7:cc:2b:88:05:02:d6:70:97:32:7c:83:21:4d:
ac:b6:22:9f:6a:e7:35:89:e9:32:96:fe:a7:49:f0:
7e:91:67:0c:25:84:1a:a1:7d:d3:3a:66:dc:84:d9:
86:6c:09:6a:ab:36:50:55:7e:b7:58:cd:9e:e7:40:
b7:74:a4:37:41:91:72:cc:ec:3d:8d:1e:81:0f:8c:
cd:4a:76:3e:dd:b8:9e:a2:da:37:79:83:1e:98:04:
81:e4:85:f6:b2:43:5a:7d:ac:0e:8d:a1:76:fc:c4:
7b:8b:52:ab:6c:34:84:e9:c2:b8:ff:c4:f8:12:28:
45:b7:5a:ea:6b:9c:e4:4b:a5:a4:01:b5:05:b2:fe:
b4:d0:15:84:3b:92:79:be:53:60:71:89:2c:19:cb:
54:8b:3d:59:99:bf:02:d1:13:7e:d7:58:9c:58:04:
44:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:88:9A:96:E9:AB:71:D5:57:68:45:1F:DB:A5:9D:C7:A4:15:0C:36
X509v3 Authority Key Identifier:
keyid:9E:DE:DF:47:82:2A:EE:27:DA:28:D3:4D:AB:1F:E7:A3:C6:0A:6A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nt7fR4Iq7ifaKNNNqx_no8YKaqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/fYialumrcdVXaEUf26Wdx6QVDDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/nt7fR4Iq7ifaKNNNqx_no8YKaqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.39.0/24
Signature Algorithm: sha256WithRSAEncryption
06:17:6b:11:94:77:3c:39:75:fc:e5:b3:46:2f:a8:08:1e:15:
7f:3d:26:56:d7:50:ea:6b:59:e9:1b:b7:5c:bc:36:5b:5c:bc:
89:59:a6:4b:82:f0:db:fe:cd:cb:24:ab:d1:15:a7:8f:c0:23:
af:bc:17:a1:be:8d:05:76:ab:4a:3a:de:d3:49:51:b2:ed:a1:
fd:74:5a:08:88:2a:10:6c:ed:cb:88:ca:21:16:a2:39:c4:55:
ec:02:6d:93:c7:a7:11:3b:07:c0:02:81:02:35:94:1f:df:cc:
33:4c:89:01:5b:42:f1:1d:2e:36:f7:96:84:d6:66:44:4a:8b:
a1:cf:b7:77:06:cb:33:bf:8f:99:bf:3d:4a:c3:f1:79:a7:7c:
26:0f:f8:c0:0f:09:78:90:8a:1c:83:1f:8b:b7:ab:1f:44:72:
f0:7e:b4:74:4f:cf:42:88:d6:5d:26:21:21:14:6f:d9:f7:fb:
2a:bd:b2:f1:71:d3:24:70:da:a0:10:43:b7:5b:c2:33:60:5b:
95:35:99:a2:08:91:52:82:15:fc:9e:a7:48:1b:79:65:b0:e6:
7e:a0:56:21:f0:2c:a3:51:34:7d:30:9d:39:c8:c2:27:15:00:
4b:c3:29:ff:33:41:30:d2:c9:ad:49:b4:fc:74:42:35:8f:c5:
08:c1:6a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:11 2024 by rpki-client on console-ams.rpki-client.org