Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/iBcuN7t8c2fxgaPOsVKcyzXTPFA.roa
File: iBcuN7t8c2fxgaPOsVKcyzXTPFA.roa (raw, json)
Hash identifier: nhVjLISQkgEP2opkMI1Ij41mSGatmENLlhiYeOt8V4Q=
Subject key identifier: 88:17:2E:37:BB:7C:73:67:F1:81:A3:CE:B1:52:9C:CB:35:D3:3C:50
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 01856CC1787D8F78521A6E6B1944C24576FF
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/iBcuN7t8c2fxgaPOsVKcyzXTPFA.roa
Signing time: Sun 01 Jan 2023 09:54:56 +0000
ROA not before: Sun 01 Jan 2023 09:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57564
IP address blocks: 176.102.128.0/19 maxlen: 19
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:78:7d:8f:78:52:1a:6e:6b:19:44:c2:45:76:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Jan 1 09:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88172e37bb7c7367f181a3ceb1529ccb35d33c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:38:19:44:c2:48:32:c1:73:89:62:2a:2f:87:
37:4b:81:bf:ff:89:b3:fb:79:30:39:42:32:95:24:
4b:8f:b8:58:f4:ec:92:7c:81:c2:24:fd:35:5f:c2:
b0:ec:5d:82:79:1b:1f:1a:49:9a:87:29:6f:08:85:
f7:a5:82:2c:e3:23:20:bc:d6:f0:0b:81:38:3f:d1:
d0:d4:f4:cb:e0:6f:8e:bf:fc:dd:96:88:6f:d5:64:
3e:c5:22:3c:c3:9e:0f:df:b8:d3:86:e0:77:7d:ad:
e4:eb:b7:c7:e8:a6:d9:c3:53:28:7d:49:18:db:1b:
67:ca:21:18:11:9a:52:d6:24:5d:9a:ff:78:ad:8b:
93:8b:55:52:c5:03:20:53:c9:0c:49:9a:71:6e:8e:
e7:5b:20:6a:c0:2f:9b:fe:7d:b1:be:bf:63:b4:a9:
80:72:6b:81:f6:40:d6:3b:e5:34:9d:85:4e:a7:9a:
27:e2:2a:28:fc:6b:01:da:3c:18:d5:db:60:b5:99:
e4:9b:f7:e7:f8:cb:02:75:9c:8a:42:fa:b8:87:af:
06:15:22:f1:21:ce:b4:b2:e5:36:20:91:81:76:7a:
79:5d:fc:aa:1d:06:e7:a5:ec:0d:a2:b6:17:6c:b3:
5b:63:b2:73:eb:a4:9c:f8:f9:06:09:31:cd:2d:70:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:17:2E:37:BB:7C:73:67:F1:81:A3:CE:B1:52:9C:CB:35:D3:3C:50
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/iBcuN7t8c2fxgaPOsVKcyzXTPFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.102.128.0/19
Signature Algorithm: sha256WithRSAEncryption
45:26:a7:cf:be:f2:79:00:d6:64:2b:3d:f9:7d:88:78:b0:37:
e4:98:4f:87:37:53:1e:82:a0:5c:e8:83:ad:42:28:01:9a:e6:
f6:df:f5:29:dd:52:19:0a:2b:fd:97:43:86:88:19:9e:2b:81:
cd:be:e2:4e:81:d4:d4:05:e1:5a:cf:0b:c2:6f:b6:16:24:99:
c5:d5:8b:0d:06:66:9d:6e:c3:79:23:1a:88:90:e8:13:be:37:
52:3d:24:5c:14:6b:6f:4f:32:b6:f0:c9:42:fa:6e:49:37:30:
41:e9:87:16:65:5b:a8:f4:c6:92:95:43:00:20:3e:5e:bd:a0:
79:23:a6:46:83:c8:07:bb:01:76:71:21:4e:7c:16:60:c4:0e:
c5:cf:56:14:66:68:ad:50:04:04:7d:fe:c5:89:f6:02:4a:50:
09:80:71:e5:7a:d5:df:de:92:7f:93:f9:26:ae:27:02:55:6c:
35:f6:3d:c3:78:26:2f:be:23:0e:cd:44:21:db:38:e8:71:82:
bc:2a:ea:13:a0:37:e7:e9:f7:09:5e:a4:ad:1d:53:3e:29:20:
1b:d8:11:07:7f:a8:1b:9c:47:4c:8c:51:76:93:05:3a:b4:2b:
94:e3:ab:b2:c9:ff:71:aa:27:e5:f4:fc:d3:25:45:96:d9:c0:
ee:43:27:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:06 2024 by rpki-client on console-ams.rpki-client.org