Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/Y0nrfSCjXPx8478Babuu3ItVD3Y.roa
File: Y0nrfSCjXPx8478Babuu3ItVD3Y.roa (raw, json)
Hash identifier: uO2do0K24/BfMTZtsfWDLWmCOEiy/6q6RLMSCE1RMrE=
Subject key identifier: 63:49:EB:7D:20:A3:5C:FC:7C:E3:BF:01:69:BB:AE:DC:8B:55:0F:76
Certificate issuer: /CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Certificate serial: 01856C4A4EA43FDAD7DD32C0A5A2F672F986
Authority key identifier: A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/Y0nrfSCjXPx8478Babuu3ItVD3Y.roa
Signing time: Sun 01 Jan 2023 07:44:47 +0000
ROA not before: Sun 01 Jan 2023 07:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25236
IP address blocks: 176.111.50.0/24 maxlen: 24
147.78.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:4e:a4:3f:da:d7:dd:32:c0:a5:a2:f6:72:f9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b789b32e16e9dd2f70513119dc77ea61ff1e09
Validity
Not Before: Jan 1 07:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6349eb7d20a35cfc7ce3bf0169bbaedc8b550f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3b:f3:23:e8:0d:d1:4d:d5:57:06:7a:e0:35:
67:3c:13:ad:32:a9:87:28:5f:fe:cf:3b:20:11:e9:
9b:f7:76:b0:21:50:03:29:f4:5b:ea:38:37:e8:70:
ea:fe:0c:57:3f:71:4a:96:0e:a3:26:e5:d9:76:37:
9a:1a:cb:20:6f:ba:42:46:c3:71:1f:ee:01:75:fa:
97:c8:77:f0:28:09:57:cc:91:66:44:de:9e:1f:e6:
a3:68:6d:f6:a8:bc:24:d5:92:4c:68:da:f2:ef:d8:
0d:63:6d:78:55:6f:1a:4a:54:09:57:8f:c2:f0:07:
a6:ae:10:79:a3:95:b3:e5:7e:7e:01:13:7a:c2:9a:
9c:62:c4:40:a7:cb:86:71:c5:75:1b:77:ef:24:40:
8f:e5:41:43:02:71:dd:ae:90:98:fc:06:d3:86:05:
b8:ec:61:90:06:03:4c:6a:34:16:24:b3:9a:22:46:
aa:10:ae:a9:af:ac:e3:ef:27:65:2e:0b:04:a4:bc:
ec:c0:00:8f:d1:2d:c7:f3:d0:d6:b4:a0:28:a8:fc:
68:aa:45:c5:6d:b9:ec:37:d9:3c:cd:87:19:52:b9:
9b:c3:33:5c:7f:24:ff:aa:09:6d:af:11:9b:6b:be:
f3:47:c3:0c:cb:a0:ec:cb:11:03:45:e7:df:45:88:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:49:EB:7D:20:A3:5C:FC:7C:E3:BF:01:69:BB:AE:DC:8B:55:0F:76
X509v3 Authority Key Identifier:
keyid:A6:B7:89:B3:2E:16:E9:DD:2F:70:51:31:19:DC:77:EA:61:FF:1E:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/preJsy4W6d0vcFExGdx36mH_Hgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/Y0nrfSCjXPx8478Babuu3ItVD3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e768bd-f512-4b8a-936a-06c9296f08a2/1/preJsy4W6d0vcFExGdx36mH_Hgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.117.0/24
176.111.50.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:8d:23:3d:3e:29:eb:07:06:35:c5:02:51:68:59:31:ec:15:
95:41:61:42:98:18:f0:ca:5c:4f:d3:64:90:5e:64:a4:20:7a:
fe:04:a2:bb:16:2b:2a:85:bd:8b:f2:14:58:a6:52:f5:d3:7c:
37:ef:e3:44:df:12:42:cc:9e:e9:d6:b1:df:3b:77:75:73:c0:
a7:3c:55:c3:15:80:ad:e7:d5:cb:ab:a0:81:73:98:d5:51:cc:
87:9c:f6:3d:81:21:c8:60:6c:8c:85:00:a4:29:a3:7d:5b:e2:
bc:cf:53:ad:ef:3d:93:7b:65:aa:82:bc:a3:ae:bd:42:35:15:
3f:f4:0c:bd:7e:f2:d8:55:47:3d:50:a9:62:1a:c3:95:31:7a:
ce:52:ea:b9:f0:e4:ab:0b:1e:b5:7f:b1:c7:0e:6e:86:00:28:
6d:48:0e:53:34:9d:82:60:f2:d8:97:4c:39:1e:21:28:51:67:
6c:a4:52:03:35:02:d6:2f:90:6d:89:aa:8f:72:f0:53:2e:d8:
2c:3a:ff:e2:45:07:e7:48:1f:ef:2e:ba:3d:0d:44:57:b5:f4:
5d:5e:be:40:73:d8:08:77:07:00:e1:bd:81:4f:54:a0:fe:64:
ef:fc:53:2b:d8:15:db:66:7a:2b:47:77:ef:ed:f0:5a:fe:40:
0d:95:a1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:06 2024 by rpki-client on console-fra.rpki-client.org