Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/fKsviW6ILMYgITP_Rvam0a6wfZ8.roa
File: fKsviW6ILMYgITP_Rvam0a6wfZ8.roa (raw, json)
Hash identifier: 2knw69jMgiVJnAYAf7cprqgKW42QOCEtf33SIIFwkq4=
Subject key identifier: 7C:AB:2F:89:6E:88:2C:C6:20:21:33:FF:46:F6:A6:D1:AE:B0:7D:9F
Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Certificate serial: 018C67BF672EDBB22F731DE5B31E8E3A7064
Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/fKsviW6ILMYgITP_Rvam0a6wfZ8.roa
Signing time: Thu 14 Dec 2023 09:54:06 +0000
ROA not before: Thu 14 Dec 2023 09:54:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 786
IP address blocks: 161.76.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:bf:67:2e:db:b2:2f:73:1d:e5:b3:1e:8e:3a:70:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35
Validity
Not Before: Dec 14 09:54:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cab2f896e882cc6202133ff46f6a6d1aeb07d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:32:6c:eb:83:a7:72:b0:94:25:9c:1a:33:8c:
98:b7:78:14:f4:45:de:8c:a7:8f:4f:1c:2a:f1:24:
43:31:46:48:39:05:df:34:0b:29:1d:03:49:e8:bc:
2e:7e:ea:fc:7f:d2:5e:92:05:70:b2:0a:23:43:02:
97:0a:2c:fe:43:87:6b:09:54:7d:d9:0e:4b:7e:7f:
bb:b2:b1:25:75:46:ec:f6:bc:5d:07:a4:2b:e4:38:
b7:be:65:94:35:32:5c:43:bd:70:44:17:3b:70:bb:
6f:7c:78:26:7d:df:7a:b3:27:07:1d:34:3c:0f:5e:
92:17:2f:8b:29:d7:7b:92:08:1f:e5:7c:c3:14:73:
34:bf:3f:ca:97:92:74:18:7d:f2:55:81:0e:84:ee:
18:c3:d6:6c:a9:a3:bc:48:18:c5:03:ff:d5:14:9e:
d9:bf:55:4b:fe:82:22:e2:10:8a:54:b9:44:1d:54:
21:e3:6c:4f:e0:8b:a3:28:34:53:93:f9:79:4a:fe:
96:2d:7c:33:d3:a6:70:86:c6:87:a4:08:b4:bc:26:
59:2f:1b:52:58:13:79:78:02:b1:f8:61:37:79:9f:
0c:b0:68:07:8d:c5:a9:ab:cf:f4:17:8d:35:6a:08:
cf:b7:5f:ea:07:c0:e3:93:c7:63:e9:9b:31:69:55:
68:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AB:2F:89:6E:88:2C:C6:20:21:33:FF:46:F6:A6:D1:AE:B0:7D:9F
X509v3 Authority Key Identifier:
keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/fKsviW6ILMYgITP_Rvam0a6wfZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.76.0.0/16
Signature Algorithm: sha256WithRSAEncryption
91:11:28:99:13:72:f4:e7:a2:11:18:4c:20:4d:c6:db:01:4a:
8b:21:27:0b:f0:2f:ff:c6:6f:c2:8f:f8:fa:da:c0:f3:48:c1:
ae:b5:4a:56:07:45:e6:66:a5:e6:46:40:d2:e4:6e:41:0b:01:
9d:5f:e1:ff:44:de:0a:d1:f4:3d:a6:d1:09:57:88:87:18:0d:
1a:ec:85:16:54:68:7f:0e:cb:c9:d3:66:71:a4:e9:bb:b2:4a:
f8:c5:8d:f7:2e:5d:b1:69:fb:a5:b7:cf:03:b2:47:ae:ee:4b:
d4:8d:8d:7b:f0:0d:43:65:d6:35:e0:b1:24:06:86:d0:b9:1d:
68:97:8b:a5:eb:bf:95:fb:e1:b1:bb:4f:de:8e:3c:98:e4:80:
b4:7d:3e:3c:72:aa:ec:47:42:00:47:28:ec:fe:ae:3b:81:eb:
c3:89:a3:d8:12:27:fb:53:e2:b5:bb:a0:8e:6e:ee:a3:b6:88:
34:d8:7a:55:2c:c4:02:cb:a9:40:24:27:0e:4a:b1:eb:f7:c0:
54:c0:55:ff:e9:ff:5b:29:39:34:1c:de:38:af:df:ba:91:83:
82:a8:4b:04:2c:32:95:db:12:a3:41:ea:0e:22:df:9f:b1:b3:
ac:f8:b4:8a:29:b1:79:15:09:65:df:16:5e:34:38:71:30:ce:
e5:60:a6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:12 2024 by rpki-client on console-fra.rpki-client.org