Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/pS4YqLv7f0GNNzBh73_kjf2n_JU.roa
File: pS4YqLv7f0GNNzBh73_kjf2n_JU.roa (raw, json)
Hash identifier: vlWWLatqiOpTDAOxFIhGEGCAn+k0qq0AaQrq6DlAWSg=
Subject key identifier: A5:2E:18:A8:BB:FB:7F:41:8D:37:30:61:EF:7F:E4:8D:FD:A7:FC:95
Certificate issuer: /CN=10953e607670ff738eee6a6b577d8c8b2804e1e1
Certificate serial: 01856B4A0A3BAD67D44AA2C92E65B83EC947
Authority key identifier: 10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/pS4YqLv7f0GNNzBh73_kjf2n_JU.roa
Signing time: Sun 01 Jan 2023 03:04:52 +0000
ROA not before: Sun 01 Jan 2023 03:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199639
IP address blocks: 176.124.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:0a:3b:ad:67:d4:4a:a2:c9:2e:65:b8:3e:c9:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10953e607670ff738eee6a6b577d8c8b2804e1e1
Validity
Not Before: Jan 1 03:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a52e18a8bbfb7f418d373061ef7fe48dfda7fc95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3b:57:e1:07:8b:a3:73:84:c0:93:c3:2c:2a:
96:c5:7e:d4:a5:59:bd:4a:ad:cb:57:9c:32:82:50:
a1:e6:4b:50:88:01:bc:1a:b1:d1:b4:0b:b5:e6:9b:
28:60:c8:34:5b:71:8f:7e:84:f8:39:c9:91:b2:c7:
6f:65:95:b5:c4:09:48:aa:fb:76:03:d3:a5:bb:55:
2b:5b:ef:6b:51:63:31:8a:23:38:17:ce:fd:5a:25:
80:ec:6a:24:46:c0:49:a5:2a:92:44:71:64:eb:0e:
78:f9:b1:dc:f3:ea:99:38:e9:62:b6:0f:ec:bc:fe:
b2:36:21:a3:a0:35:2a:e6:16:cb:49:3a:c5:68:2a:
34:d6:39:33:6a:b1:ca:97:12:87:44:64:cb:72:bf:
46:60:7e:5e:a3:50:e0:60:42:3d:1d:a7:3f:16:9a:
8b:c0:1c:ed:e3:a6:a2:c3:8b:70:64:9e:38:88:e0:
de:06:d4:a7:d0:57:3d:07:08:f5:02:02:f8:d0:05:
07:7d:7c:f9:99:51:61:ad:14:46:7f:e4:fa:b2:cc:
01:a8:56:37:05:6a:d3:74:0d:02:a8:71:46:59:4c:
db:9f:e5:db:cc:26:34:8e:9d:1f:cc:07:ee:e1:1a:
f8:6c:40:38:c7:33:06:f9:e9:56:d2:af:ae:c1:d1:
e6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2E:18:A8:BB:FB:7F:41:8D:37:30:61:EF:7F:E4:8D:FD:A7:FC:95
X509v3 Authority Key Identifier:
keyid:10:95:3E:60:76:70:FF:73:8E:EE:6A:6B:57:7D:8C:8B:28:04:E1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJU-YHZw_3OO7mprV32MiygE4eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/pS4YqLv7f0GNNzBh73_kjf2n_JU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a99355-2d01-4da5-8e73-1bc552c00dd7/1/EJU-YHZw_3OO7mprV32MiygE4eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.224.0/24
Signature Algorithm: sha256WithRSAEncryption
51:0f:b4:1f:bb:0b:11:52:3f:7b:0e:68:a0:d7:32:eb:3e:3f:
e0:e1:5e:6f:a2:80:17:69:8d:73:d1:c1:b1:cb:24:1f:8b:66:
57:dd:80:76:1a:03:cd:1b:1b:3e:51:3b:03:df:99:b2:b3:15:
83:a4:db:32:8c:5c:67:31:a1:bd:64:b7:fc:e2:28:40:f4:05:
2a:7e:ce:39:9a:4b:33:38:1a:58:10:a0:8f:7c:72:37:3a:41:
69:ee:dd:78:46:dc:35:f1:ba:65:7a:d9:7c:79:ce:3c:ba:cb:
0a:09:64:3b:df:f2:0d:15:19:bc:20:8c:f9:e5:83:12:d4:a1:
8a:a7:1a:48:b8:7a:91:ba:d8:e1:d3:02:35:52:5e:d7:b2:96:
df:2b:92:c6:95:a3:27:42:6c:04:b1:0e:69:2d:83:10:a0:b3:
fe:bc:18:a6:2a:5c:6b:44:11:db:41:e6:6f:9f:58:a4:67:64:
20:ef:b2:20:ab:47:d3:c4:9f:87:46:3b:36:83:71:ea:a5:d5:
8a:da:f5:77:c9:83:dd:79:13:e2:d3:12:06:6d:93:b7:d1:94:
e2:a2:64:ff:d2:a2:f9:d3:1a:30:8a:fd:ae:17:8b:52:c7:4b:
b7:2d:95:cd:9b:9e:8a:c7:79:7a:4e:80:db:57:2e:cf:c3:9f:
ae:73:cb:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:27 2024 by rpki-client on console-ams.rpki-client.org