Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/b3f825-da38-4989-9629-382920155ffb/1/37otzvuGjcTGE1hjHbZQGMj4jes.roa
File: 37otzvuGjcTGE1hjHbZQGMj4jes.roa (raw, json)
Hash identifier: aWHA+xnqJlNWPYT+3LIQOdpYbt1hrg96NcO+b1TUWXM=
Subject key identifier: DF:BA:2D:CE:FB:86:8D:C4:C6:13:58:63:1D:B6:50:18:C8:F8:8D:EB
Certificate issuer: /CN=cfd3a3f1069fcd512da514f66d6ee34ba3debb0f
Certificate serial: 01857082B0BF2664AC3767794100C004C0BC
Authority key identifier: CF:D3:A3:F1:06:9F:CD:51:2D:A5:14:F6:6D:6E:E3:4B:A3:DE:BB:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9Oj8QafzVEtpRT2bW7jS6Peuw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/b3f825-da38-4989-9629-382920155ffb/1/37otzvuGjcTGE1hjHbZQGMj4jes.roa
Signing time: Mon 02 Jan 2023 03:24:51 +0000
ROA not before: Mon 02 Jan 2023 03:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59975
IP address blocks: 176.107.230.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:b0:bf:26:64:ac:37:67:79:41:00:c0:04:c0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfd3a3f1069fcd512da514f66d6ee34ba3debb0f
Validity
Not Before: Jan 2 03:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfba2dcefb868dc4c61358631db65018c8f88deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5c:16:39:ff:12:50:0a:af:46:2c:4c:0e:32:
db:2a:e5:78:b7:ad:75:85:0b:75:eb:51:b2:6f:58:
7e:39:cb:6f:42:b5:77:5b:7d:e4:ec:4c:8d:be:27:
c2:eb:52:b0:6f:46:6a:46:28:93:60:d7:2d:d1:e5:
09:64:90:15:9b:0b:6a:0f:59:2a:03:4d:5c:ee:cf:
f0:88:34:dc:4f:fc:88:0b:61:3c:68:8d:b4:89:78:
65:f9:12:a6:ed:d5:70:01:7a:79:17:82:ca:bb:9c:
08:90:97:24:4b:d3:16:bc:25:56:a4:78:7c:b8:90:
5c:49:91:10:0f:84:35:17:38:8d:fe:a8:ef:a6:d6:
63:19:19:88:a9:d4:21:91:cb:51:56:7c:d4:55:f7:
a1:c7:dc:52:8c:0d:1b:ec:24:3b:3c:78:23:2e:cf:
80:0e:f0:96:81:ba:35:5b:bd:53:6e:96:7c:6d:9f:
be:5d:c1:1c:a8:76:b6:b0:51:4f:a8:d3:14:a4:16:
d6:43:8d:98:00:c5:ea:c3:2d:2a:dd:67:37:ba:f0:
1b:1e:3d:a0:ca:3c:17:a5:81:99:b4:22:6a:ae:13:
fd:9a:af:36:1c:e3:6e:a8:1b:ca:20:a6:95:ee:fe:
2a:33:11:5b:b4:72:c0:23:b5:e9:1d:5d:cb:69:34:
06:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BA:2D:CE:FB:86:8D:C4:C6:13:58:63:1D:B6:50:18:C8:F8:8D:EB
X509v3 Authority Key Identifier:
keyid:CF:D3:A3:F1:06:9F:CD:51:2D:A5:14:F6:6D:6E:E3:4B:A3:DE:BB:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9Oj8QafzVEtpRT2bW7jS6Peuw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/b3f825-da38-4989-9629-382920155ffb/1/37otzvuGjcTGE1hjHbZQGMj4jes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/b3f825-da38-4989-9629-382920155ffb/1/z9Oj8QafzVEtpRT2bW7jS6Peuw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.107.230.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:fe:32:06:fc:f5:af:d7:9c:ab:71:ac:fb:7d:12:26:37:31:
01:b6:c5:46:aa:3c:83:05:ae:1c:52:a6:00:b5:cf:8b:ae:14:
e4:d9:e2:2f:9d:c0:a1:09:46:b9:e8:9e:36:80:cc:60:a3:d9:
aa:d0:f0:8b:e5:f8:77:37:09:33:ca:e0:e2:41:8c:11:1e:3a:
72:ec:9a:df:e3:83:1f:10:e2:ac:8d:bb:93:3f:60:57:7a:26:
c7:aa:2c:7f:66:2b:ed:98:14:8d:3c:56:e1:dc:4f:36:53:b2:
bd:76:8b:f9:9f:f0:78:48:a1:51:3b:5c:9d:a5:a4:bb:44:dc:
6b:41:b7:f8:e7:c4:cc:5a:55:c5:09:1d:31:a5:6e:1d:df:f8:
c9:da:17:23:af:60:43:cc:7a:12:5a:37:8a:b2:a0:3c:70:4b:
0c:e9:37:ab:e3:fd:f5:b5:9d:2b:94:a4:12:68:b6:e0:63:41:
7c:05:3b:19:16:b8:f7:79:af:09:3e:f6:30:d0:35:6b:53:7d:
c9:05:5f:3f:ab:03:72:39:6f:30:5f:af:8d:6b:2f:b3:0f:39:
72:79:f3:ca:a2:68:51:f8:8f:25:33:b1:07:17:a7:b5:e0:20:
3e:01:52:8a:ee:00:25:b9:a9:10:d4:c7:6f:d6:f4:04:e5:92:
bc:ae:a0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org