Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/Sr6K9UJm5amdlp8Q45lNyPKZHi4.roa
File: Sr6K9UJm5amdlp8Q45lNyPKZHi4.roa (raw, json)
Hash identifier: CyvaMFbpmWFaYiXdSLBallTwWgnQf66Tj9ux1Xvy9+s=
Subject key identifier: 4A:BE:8A:F5:42:66:E5:A9:9D:96:9F:10:E3:99:4D:C8:F2:99:1E:2E
Certificate issuer: /CN=47741e7c758d480413b5f1b0060611297e44036f
Certificate serial: 01856D0ABAFC695E995AC47C757717BD5B71
Authority key identifier: 47:74:1E:7C:75:8D:48:04:13:B5:F1:B0:06:06:11:29:7E:44:03:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3QefHWNSAQTtfGwBgYRKX5EA28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/Sr6K9UJm5amdlp8Q45lNyPKZHi4.roa
Signing time: Sun 01 Jan 2023 11:14:57 +0000
ROA not before: Sun 01 Jan 2023 11:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9017
IP address blocks: 176.117.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:ba:fc:69:5e:99:5a:c4:7c:75:77:17:bd:5b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47741e7c758d480413b5f1b0060611297e44036f
Validity
Not Before: Jan 1 11:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4abe8af54266e5a99d969f10e3994dc8f2991e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ec:5b:19:4a:6d:f8:c0:8f:30:8c:6e:28:77:
7f:6f:ce:72:a6:f6:14:06:d7:a2:b3:18:59:01:03:
ac:3a:66:38:6c:41:7f:03:c9:5f:7f:22:8d:a4:a8:
af:69:b0:7f:91:61:c8:de:18:94:7b:cf:d8:5a:3b:
a1:0f:8d:df:ac:db:98:3e:1d:78:67:5c:67:ac:cb:
f4:d1:39:8b:7e:6c:fe:cd:0b:92:90:0b:e5:15:36:
33:5d:c4:77:99:d5:32:de:85:84:01:9a:0a:00:70:
b0:17:5e:a2:ae:96:49:fb:d8:81:ca:71:38:72:af:
ac:c6:df:41:02:30:e6:4d:e5:67:94:38:87:c4:75:
03:e1:47:7e:56:a7:a2:55:a9:c2:e7:44:28:4a:43:
2a:42:a9:4c:de:58:71:6f:1e:7e:18:b9:42:c1:6c:
ca:fe:0e:96:42:fb:c8:ba:7d:d3:d4:b4:ba:18:cf:
c5:0c:79:45:0c:74:51:c1:3c:fb:79:03:aa:64:4e:
c7:8a:1a:d6:7e:b4:21:db:a8:9b:d0:9d:ae:66:4a:
e2:3c:b1:fc:f3:df:06:6f:b1:df:a4:52:ac:ea:07:
0d:07:15:bb:5f:f4:72:f2:c5:5f:3b:4b:82:b8:3a:
8a:14:30:f7:4a:96:7b:d7:f2:e3:6a:58:00:41:a7:
59:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BE:8A:F5:42:66:E5:A9:9D:96:9F:10:E3:99:4D:C8:F2:99:1E:2E
X509v3 Authority Key Identifier:
keyid:47:74:1E:7C:75:8D:48:04:13:B5:F1:B0:06:06:11:29:7E:44:03:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3QefHWNSAQTtfGwBgYRKX5EA28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/Sr6K9UJm5amdlp8Q45lNyPKZHi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/50294d-8cc5-49d3-9312-727b1b583eb6/1/R3QefHWNSAQTtfGwBgYRKX5EA28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.63.0/24
Signature Algorithm: sha256WithRSAEncryption
57:6d:e2:b0:c1:04:30:20:41:cc:de:34:3c:ee:b5:bc:ed:18:
3e:a0:c7:2a:6f:fb:51:8e:3f:79:33:9c:a4:99:d9:3c:cd:72:
bb:57:68:67:15:90:dc:fb:26:c6:b3:9b:15:33:0b:10:b5:0e:
06:6f:92:d5:8d:29:74:9a:63:f0:8f:32:f9:80:c4:ca:72:ed:
4f:f1:49:10:c4:ef:88:f9:24:c4:be:bb:6f:43:2e:59:1a:5b:
e7:55:21:f2:03:53:3b:7e:c9:9f:84:ef:36:55:4d:8f:e5:cf:
6c:64:b6:83:3f:ad:1b:46:ea:a5:d9:d1:d7:24:f7:46:60:25:
b6:7c:47:2a:31:2a:9a:e1:87:8e:f6:f0:e6:63:22:90:1d:2a:
22:31:d6:e8:98:a2:5f:b9:0d:ce:71:41:5c:38:b3:df:b3:ca:
f9:63:f3:2a:04:58:9c:07:42:f8:50:1c:e6:7a:f2:a7:65:31:
fd:6f:21:c9:1a:15:c7:45:64:f7:32:78:96:d4:30:53:88:ee:
84:4c:03:49:5c:e3:c3:f8:54:54:a0:fb:d5:36:c7:9b:c1:d4:
18:5b:21:a5:98:8e:0d:5f:71:8c:54:02:ef:c5:5a:45:80:79:
b6:20:ec:f6:07:41:b5:6e:fc:18:37:b6:e1:97:0f:79:0b:bd:
22:6c:e8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:06 2024 by rpki-client on console-ams.rpki-client.org