Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/9SEjBY8Dtu7vRXaewr4AS5MrrEE.roa
File: 9SEjBY8Dtu7vRXaewr4AS5MrrEE.roa (raw, json)
Hash identifier: AzpZZhWDg9If544TnDxPvg1h9oWZjHkppm5LHV1cckI=
Subject key identifier: F5:21:23:05:8F:03:B6:EE:EF:45:76:9E:C2:BE:00:4B:93:2B:AC:41
Certificate issuer: /CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Certificate serial: 018AFF0DF0F0A5356814D27B359D68D11EF9
Authority key identifier: 39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/9SEjBY8Dtu7vRXaewr4AS5MrrEE.roa
Signing time: Thu 05 Oct 2023 08:56:58 +0000
ROA not before: Thu 05 Oct 2023 08:56:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59575
IP address blocks: 176.116.146.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:0d:f0:f0:a5:35:68:14:d2:7b:35:9d:68:d1:1e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Validity
Not Before: Oct 5 08:56:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f52123058f03b6eeef45769ec2be004b932bac41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ea:f1:20:71:d7:0a:0d:da:af:5c:e2:3d:63:
b6:2f:db:7b:9b:97:e6:7f:8f:50:62:38:6f:6f:f2:
b3:8c:76:f1:49:d2:23:9a:10:ea:ca:b5:09:5f:91:
f2:c1:27:e6:a5:fc:a1:55:73:49:02:34:c4:96:e8:
fb:bd:11:e0:f6:46:b7:60:7f:42:c3:32:2e:8d:a0:
32:23:05:ab:41:7a:9a:e3:d7:8b:a1:8c:b0:af:07:
e8:18:2b:a9:73:d4:12:76:07:ed:8c:99:11:b0:56:
6f:f9:cd:cb:13:16:04:60:00:a1:03:9f:b6:1a:42:
5a:89:21:41:28:87:4e:15:a6:77:ed:e0:46:f1:98:
ce:e0:8c:bc:32:61:1b:e2:ad:68:4b:16:13:18:38:
7a:22:45:0a:db:71:1f:00:ea:08:7f:ef:4f:43:3b:
ea:c7:c8:98:b5:04:69:f4:c2:53:dd:5d:2e:83:5d:
8c:e4:5b:a0:7d:7c:a6:02:f9:e5:13:e5:a0:9f:fa:
f5:0b:85:4a:d1:70:d9:97:bc:7d:7d:5f:05:7b:92:
24:27:2f:05:a1:30:fe:8d:c2:5b:39:97:8e:7e:81:
de:f6:04:2d:08:8b:7d:36:6e:b2:50:2b:a1:65:ad:
1a:c3:29:cc:a7:71:ad:cf:d1:05:c1:1b:ae:a9:0b:
53:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:21:23:05:8F:03:B6:EE:EF:45:76:9E:C2:BE:00:4B:93:2B:AC:41
X509v3 Authority Key Identifier:
keyid:39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/9SEjBY8Dtu7vRXaewr4AS5MrrEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.146.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:29:de:eb:07:28:8d:55:56:5a:cc:08:ff:cb:f3:46:b6:4d:
e0:46:08:c2:ab:e4:ea:4b:61:51:0f:25:de:4f:4e:36:e9:ae:
42:4c:5f:cd:7c:b4:57:59:21:79:80:7a:36:11:72:08:7e:b7:
2e:5d:19:0d:78:27:cd:9a:d6:71:3b:af:f7:87:55:06:0e:5b:
8c:12:ae:e9:34:87:f1:41:0a:bd:c4:62:a6:82:b3:aa:07:ab:
97:50:b4:e2:da:14:07:14:53:62:96:d3:4d:25:82:c6:36:3e:
2f:82:f1:02:d5:23:9b:53:89:a9:81:66:54:74:78:95:2f:12:
37:65:d6:3c:10:3c:a0:bb:9d:41:8b:56:96:4c:6e:7c:56:4b:
13:c5:bb:41:ad:66:c9:e2:dc:c0:a0:7d:a6:ee:f9:c6:72:d8:
0a:c6:73:ae:0e:c0:e4:c2:bc:a2:48:bd:2a:16:1f:bf:a8:ff:
c0:79:81:43:02:89:11:7b:62:6a:b6:20:81:9d:80:45:5a:71:
c3:da:eb:8f:36:8f:c1:b3:43:d7:09:96:00:64:28:77:fc:4d:
ab:bd:0c:53:de:85:5c:c2:29:55:0c:2f:6f:a0:3a:70:e7:96:
3f:a4:bf:63:2f:fa:06:61:11:b9:ce:9d:6a:13:b7:a7:0c:39:
f0:9a:cf:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:12 2024 by rpki-client on console-ams.rpki-client.org