Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/de9c4e-bb97-47ca-a449-513d846cf7ac/1/0HiJTOSLBOTdMPsDtMPKsjdpCCE.roa
File: 0HiJTOSLBOTdMPsDtMPKsjdpCCE.roa (raw, json)
Hash identifier: YxfWXyFSkY/Ll6lv0qtMHfZ4kAF39er59ikOeoDmgxY=
Subject key identifier: D0:78:89:4C:E4:8B:04:E4:DD:30:FB:03:B4:C3:CA:B2:37:69:08:21
Certificate issuer: /CN=c97c6b183917f26880dc7923802a1d0e44d7b822
Certificate serial: 01856D4ABC96208C444F36C6C1CA32B0CA0E
Authority key identifier: C9:7C:6B:18:39:17:F2:68:80:DC:79:23:80:2A:1D:0E:44:D7:B8:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yXxrGDkX8miA3HkjgCodDkTXuCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/de9c4e-bb97-47ca-a449-513d846cf7ac/1/0HiJTOSLBOTdMPsDtMPKsjdpCCE.roa
Signing time: Sun 01 Jan 2023 12:24:52 +0000
ROA not before: Sun 01 Jan 2023 12:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 176.118.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:bc:96:20:8c:44:4f:36:c6:c1:ca:32:b0:ca:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c97c6b183917f26880dc7923802a1d0e44d7b822
Validity
Not Before: Jan 1 12:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d078894ce48b04e4dd30fb03b4c3cab237690821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:02:08:10:e4:a2:49:19:4e:87:9f:2f:61:ee:
5d:aa:3f:5d:85:38:65:88:41:6c:64:3e:2d:24:6e:
f7:7f:af:49:77:4b:8f:66:5e:1d:65:47:05:f9:94:
35:54:fe:61:de:67:fa:03:08:04:d4:bd:cf:a4:18:
8d:61:f8:2e:a7:da:2a:ee:3e:de:cf:ac:ab:b1:7c:
d4:6f:be:88:ca:57:9d:0f:7d:b6:9b:d6:f6:53:56:
3b:8c:63:79:3a:f5:b0:bb:7c:56:32:76:95:51:91:
60:f1:d9:08:56:c2:00:1f:98:f0:55:5a:99:1c:cd:
0f:d8:a0:80:28:73:dc:53:00:fb:34:cc:26:cf:98:
96:ef:9e:7b:82:35:e0:84:64:64:e3:82:0b:d3:76:
f0:d6:16:00:7b:49:46:8f:75:9d:23:c7:42:29:57:
06:70:e6:93:79:e1:7b:2b:b0:ea:7f:0a:e5:4c:7e:
2c:de:28:98:30:6c:4d:67:3c:f0:25:3e:b6:48:0b:
fb:c3:06:b7:49:89:57:e4:60:25:87:48:78:e6:a7:
ca:e2:09:00:22:7e:73:01:ad:9d:58:12:15:d6:96:
87:cb:a2:14:5d:45:49:5c:f5:2f:95:70:54:af:4a:
1a:f2:84:5f:51:15:80:b9:fc:00:49:b5:62:5d:12:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:78:89:4C:E4:8B:04:E4:DD:30:FB:03:B4:C3:CA:B2:37:69:08:21
X509v3 Authority Key Identifier:
keyid:C9:7C:6B:18:39:17:F2:68:80:DC:79:23:80:2A:1D:0E:44:D7:B8:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yXxrGDkX8miA3HkjgCodDkTXuCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/de9c4e-bb97-47ca-a449-513d846cf7ac/1/0HiJTOSLBOTdMPsDtMPKsjdpCCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/de9c4e-bb97-47ca-a449-513d846cf7ac/1/yXxrGDkX8miA3HkjgCodDkTXuCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.35.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:b0:3e:32:5e:a4:78:4f:8f:ef:4c:3c:a1:0f:72:22:61:ec:
20:85:f5:da:29:e1:a7:34:29:7e:c9:d4:1e:dc:5e:b9:7a:d9:
0d:26:fe:2a:9d:31:03:22:9b:39:c0:04:7a:6c:4a:c1:1f:75:
ef:68:34:b8:a2:8c:46:70:b4:be:66:94:c7:56:3e:f0:31:85:
dd:15:ce:34:8e:80:c0:f7:dc:b8:95:67:8d:98:0c:2e:ac:49:
9b:16:40:7c:7c:74:d2:d0:2f:0c:34:d9:95:05:9e:c4:a9:f0:
df:8d:03:55:e2:d1:2c:6b:81:b5:15:7a:b1:60:65:ab:51:b4:
4d:ab:07:ed:80:6f:c5:e0:74:22:11:59:45:dd:92:17:d9:16:
94:24:30:75:04:71:1b:6f:c4:cd:c3:e8:28:93:9e:9b:fe:33:
d3:a2:41:e1:b7:a0:58:eb:b5:ec:c7:78:b4:85:0f:da:a8:43:
e8:c0:70:c0:f0:20:83:98:63:98:ed:30:9c:73:53:d4:89:4c:
e9:74:53:41:7f:ce:cd:a4:c6:e8:18:ae:11:ee:2d:90:c6:91:
9b:56:b5:f4:97:3d:d5:c3:54:14:cc:9b:3c:4e:05:a0:bf:b6:
ba:68:04:3a:84:72:d8:6f:16:de:38:0b:23:26:b9:d8:56:a8:
ad:7c:bc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:05 2023 by rpki-client on console-ams.rpki-client.org