Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/qjqJzOyIeh3gmQjFMe2Cy_ddupo.roa
File: qjqJzOyIeh3gmQjFMe2Cy_ddupo.roa (raw, json)
Hash identifier: Ber9+IRIP4QAlOjUIWaP1jb4Y8EtkjgbGX+QpWbRx+o=
Subject key identifier: AA:3A:89:CC:EC:88:7A:1D:E0:99:08:C5:31:ED:82:CB:F7:5D:BA:9A
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018CC794D9B34DC895EEFB6A380315C879A4
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/qjqJzOyIeh3gmQjFMe2Cy_ddupo.roa
Signing time: Tue 02 Jan 2024 00:31:10 +0000
ROA not before: Tue 02 Jan 2024 00:31:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 176.97.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 17:44:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:d9:b3:4d:c8:95:ee:fb:6a:38:03:15:c8:79:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 2 00:31:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aa3a89ccec887a1de09908c531ed82cbf75dba9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ca:9d:e8:38:ff:c6:0a:6b:37:b3:bf:2f:48:
8b:90:5c:24:0e:bf:3f:ed:05:71:94:df:d0:6d:a8:
1e:3c:ab:6b:8b:bc:1b:f6:30:f2:df:cc:78:86:f1:
5c:ed:61:54:54:1c:99:fd:d8:66:ab:fc:30:7b:ff:
46:4e:82:13:f7:a3:f2:e4:97:38:f5:12:79:c1:b4:
ff:80:cf:6e:02:a1:b7:15:64:fe:af:2c:cf:ec:bc:
b9:2b:27:17:27:8d:dc:02:62:15:e9:47:08:f6:6f:
8b:eb:92:8f:31:28:f5:a7:a1:b6:b3:49:41:55:57:
8c:cf:9e:55:80:c6:4a:a7:c3:59:13:7b:d3:d0:d8:
4e:a2:37:44:ff:11:ef:80:8b:93:87:3c:e7:51:bc:
4d:e3:52:e4:3d:ac:ae:7d:54:a4:f1:98:59:a0:24:
3d:29:e4:dc:ce:92:31:b1:1f:d1:4e:bb:74:21:b3:
64:fd:a9:63:a0:72:04:5a:12:3d:de:58:0b:19:a8:
da:73:6b:25:44:f2:ba:1c:0e:29:52:69:3b:fb:88:
b1:54:61:e6:e6:a8:a7:70:ea:a0:b6:0c:81:4e:f4:
96:92:e2:41:28:95:92:94:58:00:6d:24:4d:9d:66:
a6:b6:fa:0b:79:97:da:a1:53:f0:d7:a4:1b:62:2f:
32:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3A:89:CC:EC:88:7A:1D:E0:99:08:C5:31:ED:82:CB:F7:5D:BA:9A
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/qjqJzOyIeh3gmQjFMe2Cy_ddupo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.205.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:aa:6b:93:00:67:89:0d:6f:ad:2a:e3:28:ca:38:6a:08:e9:
5f:c8:d5:13:18:96:ba:05:e2:3c:60:f7:29:b5:a2:e8:bd:62:
1a:2a:8a:c7:2b:ec:8b:c3:20:97:e0:54:c8:80:13:fc:78:90:
49:ef:72:b5:d2:7c:0d:42:ac:6a:e5:0d:1e:7f:00:0c:a5:1a:
0e:8e:98:2b:f5:2b:13:32:cc:64:bc:7e:e8:64:95:a7:95:91:
90:51:40:ba:55:a2:3a:3c:49:b1:54:bb:2e:f9:5e:13:e2:e1:
7b:1e:b7:f9:cd:84:5f:6e:ce:aa:2e:5e:6c:a2:98:c8:81:e1:
f7:af:2d:96:21:20:62:1c:48:e2:d6:70:a9:d4:2e:7c:ea:04:
55:13:f5:fa:5d:15:f5:64:e8:14:e8:d4:c8:c5:b1:6a:1f:a6:
9d:34:1e:67:87:cb:7b:11:d6:8d:3a:be:ab:b2:a1:eb:44:e0:
53:6b:a9:6e:1a:d2:24:67:53:e4:e0:04:ad:dd:27:e4:48:10:
05:bf:91:2f:b0:35:2c:97:a3:3a:84:42:50:6a:92:4a:21:a4:
bf:86:05:58:35:59:87:18:df:43:3b:18:34:b0:11:e4:c0:cd:
2a:67:b6:8a:42:b3:55:e8:fe:67:22:58:84:52:45:8f:36:ce:
9a:79:ae:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 20:22:48 2024 by rpki-client on console-ams.rpki-client.org