Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/QrYYk0oEw2Cw5R9RrwSKR-maOgc.roa
File: QrYYk0oEw2Cw5R9RrwSKR-maOgc.roa (raw, json)
Hash identifier: NiU8ivycsNs/epmqum5OMrqJmR5/aVJqnAqo/1qYyo8=
Subject key identifier: 42:B6:18:93:4A:04:C3:60:B0:E5:1F:51:AF:04:8A:47:E9:9A:3A:07
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 018573562857B71C1061A65F2A910873CECC
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/QrYYk0oEw2Cw5R9RrwSKR-maOgc.roa
Signing time: Mon 02 Jan 2023 16:35:04 +0000
ROA not before: Mon 02 Jan 2023 16:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61420
IP address blocks: 176.41.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:28:57:b7:1c:10:61:a6:5f:2a:91:08:73:ce:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42b618934a04c360b0e51f51af048a47e99a3a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:0e:3d:54:83:30:f5:a7:d0:33:f5:09:0b:
37:59:50:8b:f2:31:75:88:b3:83:bb:87:cd:61:84:
e8:94:2d:8d:f2:74:f0:67:0c:ce:82:20:12:92:2a:
7e:c9:34:99:ee:bc:10:2f:9c:dd:e2:db:69:2b:a9:
a1:da:a0:a4:79:0e:a2:a9:c8:9e:0d:89:da:ac:f9:
85:1b:e6:f1:c6:e0:40:20:dd:98:3c:39:82:05:9c:
eb:5d:7d:e1:e4:0d:13:8d:60:14:94:68:16:02:6e:
0e:30:4e:97:1a:b9:11:38:cd:fc:40:4a:89:7f:93:
4c:9f:bf:c3:11:d4:7d:92:f0:04:16:b7:73:e9:b1:
ab:65:45:70:d2:e1:05:de:d8:f8:b4:27:dd:cd:cd:
f4:2e:37:96:6a:6c:19:fa:a4:38:34:ee:59:6e:ec:
d0:65:3b:73:04:14:67:66:39:49:85:77:c5:59:27:
2d:af:fb:f2:4a:2d:ad:13:b1:b4:59:af:b7:64:41:
47:0f:ac:f4:24:4e:df:87:49:3d:5b:5d:87:b5:22:
00:5e:46:20:07:33:55:38:a5:d4:19:0b:4d:60:d8:
1e:1c:ba:4e:7e:9d:78:25:57:42:cf:33:22:73:a3:
46:39:7d:c3:25:a7:92:41:f3:8a:f7:20:de:be:f2:
64:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B6:18:93:4A:04:C3:60:B0:E5:1F:51:AF:04:8A:47:E9:9A:3A:07
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/QrYYk0oEw2Cw5R9RrwSKR-maOgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.41.133.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ce:a4:e6:06:65:0e:c7:5e:3f:8d:99:6b:1c:f6:c7:ac:eb:
57:e7:0c:4d:de:16:8c:03:b8:f9:e0:b6:78:aa:fe:e9:02:95:
f8:86:e3:97:95:f2:03:a6:56:ff:52:3b:7d:9c:c7:c6:33:27:
aa:1c:fa:9d:b1:15:b6:b7:79:04:a0:83:eb:0c:40:37:67:66:
6a:48:25:8b:76:53:3b:ea:93:55:37:46:d9:84:6a:f9:ff:01:
e0:6a:01:af:f6:3d:c9:7b:6a:54:12:59:6a:54:74:17:26:e4:
86:5c:bc:07:e8:52:4f:e3:aa:c8:87:5b:22:c4:db:43:f7:1c:
e9:ec:12:38:1b:88:d5:e5:fa:57:7f:34:8e:57:79:d2:10:b8:
01:ab:62:84:57:4d:60:f6:ca:a4:5b:6a:fd:a0:9e:c4:a7:30:
0e:0b:3c:79:11:1f:e4:e8:a2:d1:96:bf:10:7f:b9:e4:a9:04:
13:c1:7d:e1:d8:91:f2:21:5d:32:7d:dd:6f:eb:67:c2:30:43:
70:3a:3c:08:73:2f:bd:01:7c:dd:66:a7:3f:72:05:19:37:52:
5c:40:1d:eb:e1:b6:a4:09:c3:69:ad:9f:94:64:b6:dd:cb:91:
7c:8d:ac:11:08:f8:1e:e9:5a:f5:33:d7:84:ae:70:0b:22:2c:
dc:0c:09:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org