Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/t94IZZUsl_6EA7ZNb3IUdlqHocE.roa
File: t94IZZUsl_6EA7ZNb3IUdlqHocE.roa (raw, json)
Hash identifier: YmoEPEv9YxrIRsU3Xb+KKfIrq3GKKGZUft5BEgsYqoI=
Subject key identifier: B7:DE:08:65:95:2C:97:FE:84:03:B6:4D:6F:72:14:76:5A:87:A1:C1
Certificate issuer: /CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Certificate serial: 01856CB85A00B801F1AB8149D4FB17A5C1A5
Authority key identifier: 55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/t94IZZUsl_6EA7ZNb3IUdlqHocE.roa
Signing time: Sun 01 Jan 2023 09:44:59 +0000
ROA not before: Sun 01 Jan 2023 09:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 176.97.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:5a:00:b8:01:f1:ab:81:49:d4:fb:17:a5:c1:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588153f3ec6b36a3fc6850d05337236f3ced112
Validity
Not Before: Jan 1 09:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7de0865952c97fe8403b64d6f7214765a87a1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:27:58:6d:3b:1b:22:1e:5a:77:d7:c9:aa:65:
7e:0d:16:f3:f1:b4:1b:32:10:fe:b3:7f:a4:07:97:
63:6a:d5:25:6a:02:a6:e0:6f:a6:f9:e2:1c:13:7b:
89:df:17:7b:d4:eb:0f:b6:8f:2b:e4:fd:a0:37:ed:
fc:ea:5a:34:95:e7:a0:97:50:3e:f6:6c:cb:3d:f9:
4e:38:d9:df:db:60:e1:21:ac:a7:da:8d:d5:da:97:
dc:e5:f9:4c:76:fb:8d:23:d5:e5:15:e7:1c:5d:23:
91:fb:de:ac:56:88:2e:9f:2d:32:99:59:e3:e9:e8:
5a:dc:d8:03:cc:1c:a1:a2:d8:5a:15:eb:bd:44:58:
a6:89:ed:14:06:b1:0c:d5:e6:c0:80:42:9f:ae:95:
8d:52:14:0c:0a:5e:13:0d:64:d2:e4:d8:92:81:fa:
98:3e:72:21:02:a0:d9:3b:79:53:62:ab:a6:61:b1:
a1:b6:4b:8f:a2:49:a2:d2:d2:ac:f8:d3:fc:9b:5a:
e6:22:42:5a:ab:bb:d4:45:30:67:b1:b9:6b:14:79:
ec:e5:78:77:70:70:83:a2:da:99:b5:24:bf:bb:fe:
2c:0e:b1:44:36:35:ea:2e:2a:45:d7:9c:c4:85:df:
95:34:37:ed:c0:55:d3:c1:e9:0a:31:6b:c9:29:c0:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DE:08:65:95:2C:97:FE:84:03:B6:4D:6F:72:14:76:5A:87:A1:C1
X509v3 Authority Key Identifier:
keyid:55:88:15:3F:3E:C6:B3:6A:3F:C6:85:0D:05:33:72:36:F3:CE:D1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/t94IZZUsl_6EA7ZNb3IUdlqHocE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6ba63c-83d2-4157-b4ff-00104e74eccd/1/VYgVPz7Gs2o_xoUNBTNyNvPO0RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.213.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:58:69:5f:a8:d6:9f:b9:01:4f:e3:01:14:54:60:8c:f3:61:
d4:28:5e:32:e1:b3:9c:aa:9c:9d:c4:e2:14:82:da:d6:2d:27:
17:6a:fd:11:e4:86:d0:df:34:d3:04:04:84:eb:03:be:3f:0c:
74:55:fd:6c:c9:9c:9c:6f:45:16:ce:4b:be:f9:cd:80:1b:bb:
63:08:b1:ad:6b:9b:05:56:fe:7a:38:a7:84:53:07:d5:8c:b3:
08:2e:29:da:f7:14:0b:7c:55:7f:b5:cd:85:73:9c:ba:63:08:
c3:c2:48:54:c2:85:b5:23:85:bf:ee:07:5d:22:91:15:aa:23:
30:95:1c:a7:bd:e1:ff:2c:6c:71:56:ef:a5:d5:75:2a:c9:4a:
1c:dd:e3:6a:df:89:3b:31:a6:62:20:62:e4:27:4b:19:cf:e3:
f8:bd:3a:b5:b8:46:54:bc:04:90:f7:6e:ce:4e:b9:22:cc:89:
b8:f6:35:0a:f2:46:8f:81:b9:ad:81:79:7d:20:27:b6:c9:36:
44:f5:c0:99:6f:b5:2b:ff:d4:ae:4e:17:d9:90:db:89:38:e3:
cd:d3:7c:e6:64:ee:1c:2c:0b:ee:06:1b:03:bc:93:96:30:81:
b2:06:98:b1:1e:e8:f2:8c:d3:3b:4f:e9:c1:11:8f:c3:e8:8a:
65:d7:49:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-fra.rpki-client.org