Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/acd746-71eb-4cde-ae20-67685b4dc8b9/1/wiQkucamh7T_Dn5UVCZgIPUasuo.roa
File: wiQkucamh7T_Dn5UVCZgIPUasuo.roa (raw, json)
Hash identifier: Rt6psNP/mBJYFSCdLqt3TkwD6I4goUk9r4OGLLSGBZM=
Subject key identifier: C2:24:24:B9:C6:A6:87:B4:FF:0E:7E:54:54:26:60:20:F5:1A:B2:EA
Certificate issuer: /CN=8a7bdf2f5b961232e58db289b48a9fe245fa9d6c
Certificate serial: 01916B6FC645C4FA6265F13C9069B1DC02AD
Authority key identifier: 8A:7B:DF:2F:5B:96:12:32:E5:8D:B2:89:B4:8A:9F:E2:45:FA:9D:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/invfL1uWEjLljbKJtIqf4kX6nWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/acd746-71eb-4cde-ae20-67685b4dc8b9/1/wiQkucamh7T_Dn5UVCZgIPUasuo.roa
Signing time: Mon 19 Aug 2024 16:19:33 +0000
ROA not before: Mon 19 Aug 2024 16:19:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 176.120.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 10:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6b:6f:c6:45:c4:fa:62:65:f1:3c:90:69:b1:dc:02:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a7bdf2f5b961232e58db289b48a9fe245fa9d6c
Validity
Not Before: Aug 19 16:19:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c22424b9c6a687b4ff0e7e5454266020f51ab2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a6:ad:ae:bf:a0:f8:35:15:77:49:fa:36:c0:
5a:23:11:a3:01:fb:b2:f6:62:a7:4a:65:0e:71:e1:
21:85:5c:af:65:69:73:fd:22:e9:80:ad:73:f7:8a:
9d:88:83:7b:48:15:3c:ce:c0:75:4b:b8:c9:c2:0e:
72:f5:0c:9a:cd:1a:96:61:b0:bf:76:24:fa:2e:44:
20:9a:af:0b:45:6d:b7:7b:29:e4:a5:14:01:76:80:
f9:e6:f1:86:95:46:97:31:8a:07:3a:46:06:46:1e:
66:c6:84:8d:b1:a2:5e:97:8c:81:27:d0:ed:77:87:
6d:5f:21:ac:20:df:52:67:7b:70:fb:82:92:a6:fa:
ea:02:dd:19:c5:1a:73:cc:99:4b:d0:3c:c1:29:31:
01:28:b1:d8:60:cf:eb:32:c2:fc:85:54:7d:83:56:
bc:aa:ca:34:ef:b8:bc:a3:2a:6b:43:b5:e5:ee:66:
c9:00:ab:41:50:c7:d0:4d:77:d7:7e:78:5e:21:4c:
f3:64:f9:8e:24:5c:44:71:01:56:62:f7:7d:19:df:
98:4a:b1:ad:00:89:58:cc:80:99:26:04:31:19:de:
0a:ab:54:b4:1b:a5:83:6e:a9:22:24:57:15:a0:d9:
23:bc:aa:c6:40:ed:3d:93:5a:15:cf:cb:20:64:b6:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:24:24:B9:C6:A6:87:B4:FF:0E:7E:54:54:26:60:20:F5:1A:B2:EA
X509v3 Authority Key Identifier:
keyid:8A:7B:DF:2F:5B:96:12:32:E5:8D:B2:89:B4:8A:9F:E2:45:FA:9D:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/invfL1uWEjLljbKJtIqf4kX6nWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/acd746-71eb-4cde-ae20-67685b4dc8b9/1/wiQkucamh7T_Dn5UVCZgIPUasuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/acd746-71eb-4cde-ae20-67685b4dc8b9/1/invfL1uWEjLljbKJtIqf4kX6nWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.16.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ed:42:2e:06:99:38:3e:2f:97:4d:af:cd:e8:04:27:ec:57:
01:da:e8:fb:c0:40:ea:66:f7:9f:56:91:ce:4b:f2:7b:55:01:
5d:ac:ad:03:9e:7d:8c:39:88:70:5d:7d:de:c1:61:7c:8b:f8:
3b:94:1b:1c:6c:8c:03:4f:97:fa:cc:dc:c3:c3:95:e4:19:5c:
34:11:28:fe:25:93:14:4c:12:eb:d0:1b:26:25:ec:07:19:a2:
7e:8b:a3:d4:b9:61:6e:bd:b4:e8:de:b3:c3:69:c6:8d:3d:9f:
8a:cd:00:13:8c:ef:99:9d:67:3d:74:a9:d6:c6:4b:86:a1:34:
85:15:d4:40:3f:64:f8:f9:7a:3d:c2:c7:cb:8a:30:f4:14:6b:
64:09:0b:ef:05:c1:a5:1f:a6:bc:c1:3a:40:be:10:19:e5:b6:
93:10:39:8c:6e:a1:a6:60:86:da:91:93:c9:95:9a:48:b3:97:
05:e5:ab:b1:29:a7:f7:17:fe:b8:e2:11:46:ce:13:1d:10:29:
42:09:a0:ad:8a:1b:03:1b:62:70:e5:bf:60:fb:f8:30:7f:dc:
cd:8d:80:7d:91:86:74:1d:83:81:88:b8:39:ce:0d:d5:d9:7c:
89:9c:d0:3d:da:9b:1d:58:9b:19:a3:f4:92:03:1f:06:26:25:
4e:46:f7:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 12:31:35 2024 by rpki-client on console-ams.rpki-client.org