Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/xPzwICLBtPRITQpSUwSbwMS0pAM.roa
File: xPzwICLBtPRITQpSUwSbwMS0pAM.roa (raw, json)
Hash identifier: tI762RMZmIFZNIFxJ0JW5i5WKgIQkYYkV4pMkoFTeug=
Subject key identifier: C4:FC:F0:20:22:C1:B4:F4:48:4D:0A:52:53:04:9B:C0:C4:B4:A4:03
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018A5F47F0604D85A67B317781FC14833791
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/xPzwICLBtPRITQpSUwSbwMS0pAM.roa
Signing time: Mon 04 Sep 2023 08:21:04 +0000
ROA not before: Mon 04 Sep 2023 08:21:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 213.176.2.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:47:f0:60:4d:85:a6:7b:31:77:81:fc:14:83:37:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Sep 4 08:21:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4fcf02022c1b4f4484d0a5253049bc0c4b4a403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:bb:c4:9f:2e:29:36:77:d0:52:2a:69:1b:2e:
fa:a7:65:43:bb:b0:7a:7f:b0:8f:bf:bb:17:a9:f7:
48:fa:44:45:e9:39:61:ef:0c:4d:55:00:59:7d:84:
95:13:1b:bd:41:dc:e6:c3:6b:6d:96:9d:dd:5b:69:
01:ab:a4:22:20:3b:f1:bb:8a:33:b6:85:f1:44:e7:
32:0a:10:b1:c6:1c:1e:2a:46:89:1b:84:e6:ab:96:
79:23:3b:9c:bf:26:9d:8f:7c:5c:1f:a9:67:a8:94:
0f:a6:1b:5c:cd:a5:64:d7:ad:73:8b:d0:bf:f2:5b:
94:9c:72:c1:e7:fc:9e:42:a5:35:2d:e1:76:c3:a7:
7b:7c:17:bd:72:40:28:d8:1b:b7:46:52:74:fd:ac:
9c:6f:d0:2b:ab:9a:c7:71:5f:72:db:c8:53:f2:7b:
ec:5e:f9:23:d8:59:79:48:0b:a7:90:04:4f:22:70:
1f:91:10:8d:c8:f2:59:11:be:8c:95:7c:35:cd:d4:
8a:2f:28:14:f4:69:b2:6d:cc:44:51:e5:af:02:ff:
38:c7:f7:bc:d5:2a:40:9d:6b:f5:d1:69:13:12:80:
eb:cd:8a:10:01:84:7f:76:3f:ac:dd:c5:21:bb:91:
8a:02:d3:3f:d4:98:cf:59:6a:01:9e:e1:a1:30:2d:
4d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:FC:F0:20:22:C1:B4:F4:48:4D:0A:52:53:04:9B:C0:C4:B4:A4:03
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/xPzwICLBtPRITQpSUwSbwMS0pAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.2.0/23
Signature Algorithm: sha256WithRSAEncryption
43:c4:ee:0e:4f:c7:4f:b5:d8:7b:9b:1c:99:76:0b:b2:a0:c7:
97:49:1b:c4:c4:ab:15:f1:fc:dc:27:ed:df:2d:65:76:a8:12:
ba:bc:d3:6f:a8:ea:3e:66:4a:82:38:1d:86:2a:57:ae:a8:8f:
89:05:d5:3d:1a:1e:d9:89:55:d1:a1:93:62:93:8b:48:89:b3:
ab:ce:62:ef:1a:d0:52:53:b8:7d:38:4c:85:5a:38:11:ec:a2:
23:22:4c:a3:0c:d1:fa:cd:c1:35:28:59:0f:e4:8b:ee:5f:8c:
5e:2c:dd:af:d4:a0:bf:85:63:62:b5:7d:3a:b9:71:80:86:56:
0b:05:09:f3:ac:44:5c:fb:ae:73:0d:92:53:55:6c:62:16:9c:
9c:69:88:42:f7:84:fa:31:d0:77:9f:58:a0:8b:94:93:e9:38:
7f:15:5f:02:ce:db:9a:8f:3f:13:a9:c8:11:cb:30:90:35:d7:
37:e5:47:c1:5a:aa:da:e8:f2:c3:88:02:31:ce:da:68:4c:f1:
84:e9:9c:86:6f:e7:24:ea:e7:d4:31:7a:2f:ce:c5:56:50:53:
3e:9f:3c:8a:a5:e9:2d:1d:82:a5:0d:18:4f:ce:a8:cf:7e:9d:
93:72:56:6a:ff:f7:fa:19:f9:32:ce:e9:4e:91:1b:41:0d:cf:
3c:63:21:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:30 2024 by rpki-client on console-ams.rpki-client.org