Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/msEr2OzN4WSQrafcjLkZYy46boM.roa
File: msEr2OzN4WSQrafcjLkZYy46boM.roa (raw, json)
Hash identifier: ifurvvqnN4oyUGky9NWtacH+FToEwQpimOs69TCIQxQ=
Subject key identifier: 9A:C1:2B:D8:EC:CD:E1:64:90:AD:A7:DC:8C:B9:19:63:2E:3A:6E:83
Certificate issuer: /CN=e939540fd16b633501fbf7441a746fc56f9f59bf
Certificate serial: 0191F4E1912ACAC6D8CE7A3DFAE8620A5057
Authority key identifier: E9:39:54:0F:D1:6B:63:35:01:FB:F7:44:1A:74:6F:C5:6F:9F:59:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TlUD9FrYzUB-_dEGnRvxW-fWb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/msEr2OzN4WSQrafcjLkZYy46boM.roa
Signing time: Sun 15 Sep 2024 08:51:49 +0000
ROA not before: Sun 15 Sep 2024 08:51:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 176.120.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 11:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f4:e1:91:2a:ca:c6:d8:ce:7a:3d:fa:e8:62:0a:50:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e939540fd16b633501fbf7441a746fc56f9f59bf
Validity
Not Before: Sep 15 08:51:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ac12bd8eccde16490ada7dc8cb919632e3a6e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0f:74:d1:76:1a:bd:a4:db:fa:1b:b1:14:19:
ab:64:10:04:d0:28:ae:72:0c:24:6d:0d:d4:e8:2e:
11:82:5d:83:d1:e8:77:27:b3:0e:73:7c:c6:68:ba:
96:07:29:c9:24:d4:be:2a:f8:6b:dd:c3:98:78:6e:
43:68:2c:a4:e9:08:ae:31:38:df:d5:59:6d:b5:e1:
b4:7c:60:46:36:a9:f9:b1:d2:4d:ee:56:a7:56:be:
95:68:f5:66:28:e5:89:39:9d:3f:5b:9a:07:87:5a:
a6:a5:32:91:33:04:94:e2:2e:47:93:f4:4a:e4:79:
89:9c:16:c7:e6:a7:ab:50:c1:6c:5b:6b:9e:07:b8:
1c:0f:b4:c7:3b:3e:b3:a2:8d:a0:ea:64:23:91:ef:
ae:1c:e1:dd:18:80:89:12:74:35:c9:7c:84:a5:61:
ce:1e:36:4c:b3:67:cb:af:f5:f5:6c:ea:63:61:8b:
67:f6:dd:b0:09:8e:5d:3a:b1:b2:a6:d0:b0:4e:02:
60:31:9b:1a:33:47:4d:2b:3f:cc:1b:51:9d:a1:60:
01:6a:a1:01:98:59:1d:51:71:77:9d:3d:d1:2e:f2:
73:b7:72:72:5f:a5:39:17:db:22:90:89:87:11:2d:
f3:52:00:b0:6b:d6:78:91:fe:48:dc:9e:91:be:94:
e2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C1:2B:D8:EC:CD:E1:64:90:AD:A7:DC:8C:B9:19:63:2E:3A:6E:83
X509v3 Authority Key Identifier:
keyid:E9:39:54:0F:D1:6B:63:35:01:FB:F7:44:1A:74:6F:C5:6F:9F:59:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TlUD9FrYzUB-_dEGnRvxW-fWb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/msEr2OzN4WSQrafcjLkZYy46boM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5af4ce-0eee-4182-9094-9f52c730acdf/1/6TlUD9FrYzUB-_dEGnRvxW-fWb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.17.0/24
Signature Algorithm: sha256WithRSAEncryption
13:81:e9:89:37:77:f0:33:a3:f9:a4:e1:b5:e0:6b:99:7f:ef:
9a:65:ab:e0:90:97:83:e0:1f:a5:b1:0d:d9:58:c6:1c:14:b2:
be:d8:ee:d5:6a:fb:dc:fe:b8:84:15:94:67:58:c9:d4:7f:f3:
c6:5b:50:83:4d:2f:0f:0b:af:da:5c:fc:a6:b0:7b:df:e7:93:
87:e3:3c:9f:82:14:f6:81:58:54:bd:fa:b3:4a:7e:04:30:50:
77:d6:2b:6e:53:2b:e5:12:86:37:f2:82:b0:8d:6c:e9:52:69:
a1:17:32:4d:97:f0:68:f9:2c:4c:24:45:4b:e4:f1:b0:bf:fe:
3c:9d:65:16:be:3d:6b:9b:f7:89:71:e0:82:28:38:9a:ef:13:
7e:dd:03:34:34:a6:e6:67:bb:a0:3b:f6:5b:40:05:26:ed:d3:
7e:4c:0f:2c:3b:8d:f0:64:44:5c:6a:19:77:62:35:1d:b6:1b:
2d:fa:8d:c5:0d:30:10:c2:40:6c:53:f3:69:67:0b:78:98:7c:
d1:18:98:46:e4:13:55:65:55:03:70:27:bc:a7:5f:c1:66:ea:
23:f7:8e:fa:ef:5b:88:57:04:47:93:4d:38:98:07:2f:50:e0:
d5:be:80:83:d4:b2:57:22:98:d5:37:39:96:a2:12:75:4e:35:
02:9f:87:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 15:59:07 2024 by rpki-client on console-fra.rpki-client.org