Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/iQU173xwScpqHRbXPf-PRYs4gGo.roa
File: iQU173xwScpqHRbXPf-PRYs4gGo.roa (raw, json)
Hash identifier: 4IQ5SuKGm8bdFaGWOC6i7nNBhP6jUc0Y0DO1+/am5Lo=
Subject key identifier: 89:05:35:EF:7C:70:49:CA:6A:1D:16:D7:3D:FF:8F:45:8B:38:80:6A
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018B05B49AF3D5FD29D46E2A087FAC1BE4B6
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/iQU173xwScpqHRbXPf-PRYs4gGo.roa
Signing time: Fri 06 Oct 2023 15:56:44 +0000
ROA not before: Fri 06 Oct 2023 15:56:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39600
IP address blocks: 176.221.24.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 08:51:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:05:b4:9a:f3:d5:fd:29:d4:6e:2a:08:7f:ac:1b:e4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Oct 6 15:56:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=890535ef7c7049ca6a1d16d73dff8f458b38806a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bb:7c:20:09:96:16:d7:f7:97:93:c7:34:26:
84:2d:43:7f:8b:bf:64:0a:b8:88:28:5c:2c:86:8e:
c3:aa:1a:c8:cf:d8:e1:46:d7:37:bf:f0:a2:2e:23:
e8:92:93:4f:a6:a5:dc:99:77:14:bb:97:63:c6:f1:
64:03:b8:ac:05:26:30:bf:ac:db:d8:9a:70:ac:f7:
29:32:b7:a4:3a:b6:06:8b:e5:0f:ba:a2:81:91:07:
23:af:e1:9e:f6:32:4f:ce:56:c1:52:d4:17:33:af:
e8:d0:ab:9b:6e:f8:6f:7e:e3:df:40:82:6e:59:35:
eb:58:2e:39:7c:a9:90:d0:2e:45:4a:fc:a4:c8:08:
5e:5a:5c:a1:9c:8b:78:58:97:b7:93:9e:54:16:96:
ba:1b:4e:18:0a:cb:22:81:f0:35:93:2a:71:e4:a5:
78:24:9b:69:c0:7f:a9:b7:82:37:18:61:30:95:74:
e1:e5:60:2b:cc:05:3d:af:f7:90:17:63:e8:d1:55:
a1:cf:5d:ce:b2:6c:2e:c2:27:8d:77:12:c1:ae:19:
49:33:53:98:5f:19:2a:40:25:7c:8e:87:af:30:b5:
37:c1:b0:bc:d9:ec:0b:02:c8:e4:e2:58:81:01:d0:
d9:c9:15:4d:aa:2c:1b:06:33:a5:9b:02:e7:52:cf:
a3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:05:35:EF:7C:70:49:CA:6A:1D:16:D7:3D:FF:8F:45:8B:38:80:6A
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/iQU173xwScpqHRbXPf-PRYs4gGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:b8:61:16:64:23:f2:49:33:1a:6e:b3:cf:a5:4d:6e:e7:cc:
80:da:c1:4f:2b:77:b3:81:dd:fc:75:46:5f:e7:11:d3:b1:b6:
16:c5:3a:86:5d:69:ed:8b:2b:38:16:b3:3b:81:e7:53:9d:fd:
8d:73:9f:31:62:bc:b7:eb:29:bb:a5:14:93:61:ba:2a:36:35:
02:bd:ab:90:e0:73:9f:d1:a4:5f:46:2e:87:1c:7c:7f:ee:ee:
41:1b:33:d2:da:52:54:5c:65:04:00:b8:9c:7e:9b:27:bf:6b:
6d:a0:e1:41:b9:1a:63:3a:9c:23:1e:45:a2:c3:1b:3b:7d:cf:
dd:35:8e:01:d9:88:ec:9d:9f:5e:3a:48:a7:26:ff:47:a1:f2:
c0:a0:fd:63:99:c7:46:cc:b8:d8:dc:8c:a1:d0:89:14:3d:84:
65:2e:f4:74:c1:4c:0b:12:ce:2a:d7:1f:7e:ad:13:89:8c:bf:
46:af:f2:c3:58:71:ab:bc:6d:f7:49:8c:d0:10:27:c5:90:7a:
27:2c:18:b9:ce:ad:67:56:08:f7:d5:91:30:d4:2c:5e:7f:31:
b8:db:9e:c2:76:3d:a1:2e:60:4c:bb:0d:7d:6d:50:5a:9e:26:
37:d2:ee:a6:10:c6:6c:7a:ff:91:18:b6:2c:d6:7f:ff:42:db:
8a:f3:39:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:05 2024 by rpki-client on console-fra.rpki-client.org