Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/7WM5Lza2E3L2eUjGJixYX-ISdos.roa
File: 7WM5Lza2E3L2eUjGJixYX-ISdos.roa (raw, json)
Hash identifier: 7O55BOZz+JzyJ5GUiwRp2X6IS/coGwIry0fgFD7NFbY=
Subject key identifier: ED:63:39:2F:36:B6:13:72:F6:79:48:C6:26:2C:58:5F:E2:12:76:8B
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 01857169E78C3B4A448C77AFA3526A18AA77
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/7WM5Lza2E3L2eUjGJixYX-ISdos.roa
Signing time: Mon 02 Jan 2023 07:37:24 +0000
ROA not before: Mon 02 Jan 2023 07:37:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211327
IP address blocks: 176.98.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:e7:8c:3b:4a:44:8c:77:af:a3:52:6a:18:aa:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Jan 2 07:37:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed63392f36b61372f67948c6262c585fe212768b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b3:61:d1:c9:c9:bb:ac:21:ab:60:fa:e9:1d:
d6:52:0c:f5:84:27:11:70:81:ab:f8:cc:88:00:6e:
2a:c6:50:7a:98:2e:8f:df:84:2d:50:86:59:45:cd:
38:b4:ab:42:95:8b:9c:1f:35:3d:01:3e:0d:c5:52:
07:90:b9:4b:c7:c6:86:d4:58:d3:1e:99:46:d4:31:
9d:b6:da:7b:b0:46:ec:04:da:e6:03:2c:0c:3b:c2:
45:77:0f:46:ba:d4:e2:11:3d:c7:d7:f4:44:86:1a:
c0:4b:a6:4b:0f:bb:75:ac:c4:11:72:a4:6f:67:0d:
51:b5:32:8d:5e:1d:1b:32:71:56:42:8a:ef:9d:70:
34:0d:ff:65:57:15:7a:c0:2b:ec:03:7e:70:a4:a5:
58:ad:84:5f:41:a1:cb:bc:89:fa:60:01:91:f9:a5:
61:cd:97:11:8d:d1:eb:fb:13:a6:40:ef:ad:ca:a2:
45:a5:e7:f1:9e:8f:2b:38:a1:43:f6:b2:ea:11:66:
82:40:d5:ee:6c:71:9d:eb:04:28:d8:35:48:b8:16:
11:37:f4:43:aa:ba:b7:54:a5:01:a3:e2:d2:99:29:
66:26:56:1a:e7:fb:f4:50:13:b8:60:57:d9:24:a3:
df:85:6c:dd:62:23:2b:98:2a:1e:27:4b:96:0b:03:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:63:39:2F:36:B6:13:72:F6:79:48:C6:26:2C:58:5F:E2:12:76:8B
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/7WM5Lza2E3L2eUjGJixYX-ISdos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.98.40.0/24
Signature Algorithm: sha256WithRSAEncryption
87:9c:fd:3d:40:a7:4a:d8:75:a7:62:a5:a8:61:ac:d8:dc:59:
0d:63:af:22:0e:2e:c9:e8:32:c5:d5:cf:7d:8d:65:b1:88:1b:
75:87:4b:e9:76:ad:fb:3c:93:64:31:d7:66:db:89:04:cd:1d:
04:3d:54:d5:ae:8e:d8:7a:0c:66:84:b2:f5:c1:6b:a9:ef:da:
65:61:47:83:06:8f:e2:c3:18:d5:c2:e3:8c:f3:99:06:e9:f7:
27:2b:36:69:f4:e5:b1:50:27:31:31:a4:cb:e5:74:9a:e3:5e:
01:eb:dd:67:ff:f4:08:4d:5d:bb:6b:21:c7:f7:13:f4:7c:be:
73:4c:56:c0:4a:fb:f7:1c:d2:b8:8e:77:02:f7:90:af:94:54:
02:b0:06:9c:b2:07:76:f6:f0:2b:f7:4f:80:99:9d:99:99:58:
ac:ea:6c:aa:ae:eb:a3:fe:3b:f4:c9:7b:64:3d:de:39:fb:0f:
15:50:67:cc:6c:08:2d:57:97:8e:bd:73:0b:e1:f8:43:63:b2:
34:8b:41:ac:84:4d:36:00:5d:fb:4b:18:1f:82:eb:9e:7f:88:
b5:cb:51:c2:c5:d7:e0:55:07:14:b6:9c:2d:11:ef:70:e8:11:
93:15:be:17:54:35:0d:65:c5:c1:17:68:70:fa:e2:db:b9:b9:
f1:9e:bf:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:12 2024 by rpki-client on console-fra.rpki-client.org