Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/jTldgdlZAUrhEcptLb4L-ER_DwY.roa
File: jTldgdlZAUrhEcptLb4L-ER_DwY.roa (raw, json)
Hash identifier: bVpbizc2JQh4d74BjNrx/Rv4eYi1bQ8pYT9AIm3bJqw=
Subject key identifier: 8D:39:5D:81:D9:59:01:4A:E1:11:CA:6D:2D:BE:0B:F8:44:7F:0F:06
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 018570CBE72ABC824E3D19305132D471DF71
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/jTldgdlZAUrhEcptLb4L-ER_DwY.roa
Signing time: Mon 02 Jan 2023 04:44:49 +0000
ROA not before: Mon 02 Jan 2023 04:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48680
IP address blocks: 176.103.179.0/24 maxlen: 24
176.103.176.0/24 maxlen: 24
176.103.178.0/24 maxlen: 24
176.103.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:e7:2a:bc:82:4e:3d:19:30:51:32:d4:71:df:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 2 04:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d395d81d959014ae111ca6d2dbe0bf8447f0f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7f:20:66:c9:0c:5a:18:8f:f1:cb:6f:ac:bd:
15:96:44:cc:5e:bf:b2:c9:1d:c0:24:72:e8:4e:93:
21:eb:c4:57:70:93:3d:85:5a:04:fe:66:c3:a2:a3:
86:7c:9f:a2:f1:86:0e:5e:f6:b5:c5:e7:a0:53:a2:
47:22:bf:6f:8a:c2:96:d4:98:d7:22:e6:c0:7f:a2:
21:f2:18:2b:c8:9b:e5:7b:df:4d:e7:4e:66:15:fa:
e4:03:3a:2c:93:7c:35:2e:8c:cd:b9:3a:9d:8e:55:
fe:ad:5b:9d:69:7e:f5:8a:bc:7c:fe:a2:5b:f3:cf:
71:da:ea:6e:2c:f6:a7:ac:0f:8e:3f:b5:5b:60:48:
c6:9b:14:b0:f0:b5:1c:fd:b5:ce:54:c5:0a:3f:25:
82:bf:39:b4:4c:d8:e0:45:08:6c:9b:2c:9a:d1:24:
79:d0:1f:bf:a5:08:da:bd:81:a5:51:98:b0:dc:88:
8a:38:f3:26:67:a4:98:9a:ef:10:87:6e:77:67:a7:
9e:02:2a:7f:b2:96:63:22:36:e0:52:84:22:b8:a2:
cd:2e:f1:c1:f1:97:69:05:70:df:44:bb:55:32:51:
19:54:ee:8d:c1:b6:fe:f9:1a:d6:cf:a4:1d:73:8f:
33:36:0f:49:f5:a9:78:b2:cb:2b:d3:86:23:72:32:
a4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:39:5D:81:D9:59:01:4A:E1:11:CA:6D:2D:BE:0B:F8:44:7F:0F:06
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/jTldgdlZAUrhEcptLb4L-ER_DwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.176.0/22
Signature Algorithm: sha256WithRSAEncryption
77:32:73:53:34:15:a8:b3:1a:4b:f7:be:1e:bb:8b:0b:fd:b9:
fe:68:86:8b:e5:7d:e9:d5:7a:cd:fa:b6:88:23:03:9e:41:bc:
c3:27:b6:e6:0f:ad:d5:2f:92:1b:ff:97:ad:4f:0f:51:5d:bd:
b9:75:3c:d5:4e:aa:b4:ed:e6:4d:9d:38:84:c5:ef:42:42:99:
23:57:1f:22:4a:6e:c0:f6:f5:c7:c4:be:d7:15:ad:19:98:67:
c6:42:db:81:53:07:2a:06:9b:57:a3:7b:2c:b7:ed:41:76:8d:
e7:b2:be:ba:44:1c:51:d6:8a:9d:8d:ee:40:f3:97:40:20:50:
a3:fb:2b:3d:89:0f:4c:35:0c:63:f4:7f:ba:18:f7:70:55:59:
1b:10:e6:74:cc:af:1a:ff:f5:a9:74:55:7d:7b:e4:7c:64:b7:
cb:ed:1a:19:f7:0e:46:8b:bf:7f:14:e6:db:fc:21:cc:00:0b:
52:f1:bc:1b:5c:76:cd:4f:20:6a:42:4d:a5:9e:eb:1e:12:06:
57:45:3f:c1:d6:ad:82:63:c7:cf:4f:62:4c:b1:1b:56:e7:3a:
0c:05:c4:11:3c:fd:c3:4a:28:ea:03:1f:2f:bb:45:d9:38:9f:
79:84:53:b9:30:67:d4:8b:99:dc:1d:70:4a:ae:b1:25:62:f3:
06:8e:40:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:49 2024 by rpki-client on console-fra.rpki-client.org