Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/ce981a-a05b-4527-80af-693454237ee9/1/32I_0y1ddXEIM9h62g46R0pjfac.roa
File: 32I_0y1ddXEIM9h62g46R0pjfac.roa (raw, json)
Hash identifier: HAzUf8B3d/i86ZoIG31x64SXJpwgjG3EY3Q3zpWaYvU=
Subject key identifier: DF:62:3F:D3:2D:5D:75:71:08:33:D8:7A:DA:0E:3A:47:4A:63:7D:A7
Certificate issuer: /CN=2031ebba943fad1c5487540e0105e19c232cf79c
Certificate serial: 01896F4BE8F5599BFCE05772576EFBF3F77C
Authority key identifier: 20:31:EB:BA:94:3F:AD:1C:54:87:54:0E:01:05:E1:9C:23:2C:F7:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IDHrupQ_rRxUh1QOAQXhnCMs95w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/ce981a-a05b-4527-80af-693454237ee9/1/32I_0y1ddXEIM9h62g46R0pjfac.roa
Signing time: Wed 19 Jul 2023 17:56:32 +0000
ROA not before: Wed 19 Jul 2023 17:56:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205300
IP address blocks: 176.98.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:4b:e8:f5:59:9b:fc:e0:57:72:57:6e:fb:f3:f7:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2031ebba943fad1c5487540e0105e19c232cf79c
Validity
Not Before: Jul 19 17:56:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df623fd32d5d75710833d87ada0e3a474a637da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:64:71:33:2b:09:86:5d:5a:3b:1f:1b:3e:3c:
32:2c:3a:ed:05:a5:24:1b:5f:b1:56:8f:3e:9a:09:
f2:6b:2d:17:af:90:34:8e:72:58:cc:b5:2d:00:34:
ab:3e:c4:04:9e:95:c8:c3:cf:36:89:dc:4f:73:a8:
d6:53:5c:98:08:71:71:97:4d:3d:c4:50:5f:c2:bb:
d7:1a:a4:ee:4b:e0:b8:3c:23:a2:ac:76:ca:97:6f:
2d:3a:60:aa:55:46:d1:3d:06:43:fb:a6:d3:00:81:
68:80:d9:35:70:fd:24:0d:06:d8:be:b1:49:f1:7e:
c6:6e:df:17:ce:59:d3:dd:cd:35:d4:a9:71:c5:59:
ee:b2:86:82:a0:06:6b:b0:22:dd:39:da:77:53:93:
cb:28:e0:e3:3f:c1:5e:bf:18:76:d6:cf:5a:36:c9:
aa:30:e5:26:51:57:1c:ab:71:49:3d:86:2e:ce:8b:
04:68:b1:9c:fc:2f:14:e7:15:ef:79:c3:39:c6:80:
3a:e2:b9:14:e5:47:ec:58:2d:59:98:a0:2d:1e:ee:
e1:55:a0:6a:20:4e:a9:5f:c4:a6:ca:cb:93:55:46:
85:0d:b9:a2:61:e0:9d:86:12:8f:e6:d0:36:48:91:
b5:e2:62:fe:b2:3b:c8:d7:50:e2:41:b5:57:f3:90:
9c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:62:3F:D3:2D:5D:75:71:08:33:D8:7A:DA:0E:3A:47:4A:63:7D:A7
X509v3 Authority Key Identifier:
keyid:20:31:EB:BA:94:3F:AD:1C:54:87:54:0E:01:05:E1:9C:23:2C:F7:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IDHrupQ_rRxUh1QOAQXhnCMs95w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/ce981a-a05b-4527-80af-693454237ee9/1/32I_0y1ddXEIM9h62g46R0pjfac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/ce981a-a05b-4527-80af-693454237ee9/1/IDHrupQ_rRxUh1QOAQXhnCMs95w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.244.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:f1:ca:32:a0:0f:ee:e2:c5:4d:bf:c3:60:4c:c3:fe:82:67:
04:3f:8c:4f:0f:55:ee:e1:c0:37:ce:c7:47:f3:e5:0d:61:f3:
73:5e:55:1f:da:e3:34:1a:5f:72:97:59:84:a3:88:7b:da:6a:
c6:ad:69:aa:9f:04:c4:ef:85:f3:c1:6d:c6:d3:7d:7e:7f:f2:
56:d7:e5:19:b8:6b:52:9a:9c:db:b6:c2:f1:19:93:bc:6b:eb:
7f:5c:a8:38:d6:71:1e:47:2b:51:a8:bc:98:0e:b4:31:52:d9:
e5:64:81:5b:c8:18:35:4d:fe:b4:12:ab:13:38:6f:e9:88:65:
b2:dc:d6:fd:c1:82:3d:02:e6:8c:e2:13:4f:24:98:00:0a:81:
38:ab:f7:55:b6:f2:b8:8c:d5:58:ea:2f:8a:1f:38:f8:ac:4b:
a7:c2:24:d0:56:e7:75:65:f9:f9:5f:59:c0:e1:95:5f:7b:b3:
0b:28:fa:30:be:8b:7f:3a:63:94:74:d5:1b:aa:d6:72:f0:45:
13:fe:95:29:1f:9b:d4:07:f4:24:85:d4:d2:66:3e:18:cf:18:
79:c4:cb:74:f6:0b:10:b3:bd:68:57:a1:3c:34:ce:86:4e:e4:
2b:2a:8c:b9:93:06:65:82:f4:29:0f:ec:13:3b:38:b2:33:11:
09:b2:a3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:02 2024 by rpki-client on console-fra.rpki-client.org