Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/aNEguXkF_1ybsQRjbRgGFaqmEEQ.roa
File: aNEguXkF_1ybsQRjbRgGFaqmEEQ.roa (raw, json)
Hash identifier: B09cF2BwJQ+eXDivxB3djnAi2WdQ0TOUjuJ4c3/1LPs=
Subject key identifier: 68:D1:20:B9:79:05:FF:5C:9B:B1:04:63:6D:18:06:15:AA:A6:10:44
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 018570CBE4571EB58ADF443D448682CD56EC
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/aNEguXkF_1ybsQRjbRgGFaqmEEQ.roa
Signing time: Mon 02 Jan 2023 04:44:48 +0000
ROA not before: Mon 02 Jan 2023 04:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28886
IP address blocks: 176.103.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:e4:57:1e:b5:8a:df:44:3d:44:86:82:cd:56:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 2 04:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68d120b97905ff5c9bb104636d180615aaa61044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7e:00:0a:cc:c2:9d:4f:48:95:ba:0d:fc:35:
29:19:59:25:6c:7e:8b:22:a4:94:5f:6c:53:d6:89:
7a:80:a8:15:ac:e2:85:a0:90:e7:f0:4a:0b:fc:cc:
5d:a8:f6:3a:c2:dc:1f:35:b2:90:49:27:b5:14:7d:
88:f6:16:91:31:e8:d4:df:19:a0:61:e7:fe:fa:27:
7c:57:97:af:7c:33:0e:8a:17:dd:2a:ac:4a:2e:be:
b2:ee:61:07:b1:61:85:c9:e8:0f:26:7d:41:15:ab:
3c:ba:c7:68:4d:c6:2b:a3:6c:36:f9:af:4b:ec:62:
9b:52:a1:43:9f:8e:43:ee:f4:3f:95:5e:c6:de:2c:
c7:28:14:76:0b:2d:30:56:ca:a4:b9:82:c9:d8:a7:
b3:8f:f7:f5:a1:09:35:ef:8f:79:ac:a8:4d:70:ed:
48:d4:07:70:f6:5b:02:b8:b6:f1:37:82:e9:aa:0f:
49:52:cb:da:00:19:cd:73:4d:31:33:9f:39:92:75:
1d:12:e6:67:21:d3:ac:a8:c9:2f:2c:6a:c2:6e:c7:
78:63:95:14:70:87:9e:60:57:dc:dd:08:e5:2a:2c:
02:cb:81:8d:38:0b:1e:56:49:51:33:59:b9:8e:6b:
a7:f8:30:8b:27:5f:ac:31:16:8c:15:a6:28:6b:d7:
a2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D1:20:B9:79:05:FF:5C:9B:B1:04:63:6D:18:06:15:AA:A6:10:44
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/aNEguXkF_1ybsQRjbRgGFaqmEEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.184.0/24
Signature Algorithm: sha256WithRSAEncryption
44:30:bd:b5:46:64:ed:b2:13:8e:97:ce:1c:04:86:6a:6a:de:
3f:df:ef:3d:6b:3a:5f:ac:26:67:09:94:c8:96:30:91:56:62:
71:0e:d7:3f:a1:ab:d3:a7:88:66:ea:e1:de:8f:9a:5b:12:2d:
9a:3c:d7:39:15:fc:68:b8:11:4e:35:14:36:5c:c4:e5:5f:19:
45:0d:3a:2e:95:56:08:21:bc:45:83:06:59:f1:4c:ea:10:58:
4d:a6:7f:28:b4:83:af:5c:92:7d:70:6f:6a:f2:11:1e:05:98:
62:74:fd:4c:21:aa:0a:41:8a:74:84:a5:ba:8f:26:d9:a3:0c:
29:01:0c:8f:ef:5f:07:8f:23:0d:a6:16:a3:e7:a8:47:a7:85:
d0:28:f7:84:9f:cb:93:b4:15:61:a4:92:0f:b2:48:ae:d8:6f:
c5:4b:c9:43:91:4a:7f:12:48:b5:05:e1:f9:f5:5e:83:0b:46:
ea:29:cf:c7:3c:c6:57:69:1e:8d:b9:85:4d:c6:fa:a8:e9:5e:
c9:18:ed:88:c4:84:cd:fb:a7:db:b7:20:8b:9e:42:a9:8e:73:
f6:70:a8:9b:6c:83:cf:1b:45:6d:3b:1e:48:d5:d1:eb:6a:8b:
8b:4c:2b:61:35:ec:4b:85:e4:de:9c:02:4a:2d:d5:c2:f0:bf:
87:18:1a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:49 2024 by rpki-client on console-fra.rpki-client.org