Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/H2AR8eB5EAtCUssOX1H1_MEcjEI.roa
File: H2AR8eB5EAtCUssOX1H1_MEcjEI.roa (raw, json)
Hash identifier: haXfup+nsWkqbDk2LBIbKsTmgCxSJBIA+CQ0CVWfBs0=
Subject key identifier: 1F:60:11:F1:E0:79:10:0B:42:52:CB:0E:5F:51:F5:FC:C1:1C:8C:42
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 01856FA6D2E1B9873C549928319DC83C295F
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/H2AR8eB5EAtCUssOX1H1_MEcjEI.roa
Signing time: Sun 01 Jan 2023 23:24:41 +0000
ROA not before: Sun 01 Jan 2023 23:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210583
IP address blocks: 176.116.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:d2:e1:b9:87:3c:54:99:28:31:9d:c8:3c:29:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: Jan 1 23:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f6011f1e079100b4252cb0e5f51f5fcc11c8c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:9a:13:41:75:bc:ab:56:46:19:29:e1:f3:
5a:ed:34:e3:ed:68:36:b0:10:7a:50:40:fb:34:45:
7f:6f:ab:7b:5c:0c:a5:01:82:b4:35:1a:7e:6a:39:
49:68:5c:8f:da:8e:98:db:eb:63:93:4b:b4:4d:1c:
17:5d:c3:02:6c:40:4b:07:14:8b:c8:da:31:83:dd:
f1:c6:f5:38:05:15:3f:30:d6:4c:c4:d7:2e:37:07:
bb:92:f4:9e:cb:6c:04:00:e1:4b:f4:f8:66:c9:12:
ab:2e:52:21:ba:b4:54:51:ef:32:f5:d9:ac:da:f7:
06:f8:96:cc:d4:c8:23:5c:0a:62:93:59:89:0a:31:
c0:24:62:0a:5d:11:52:1d:22:2c:ee:c2:16:63:71:
e1:51:0e:8c:9a:82:52:d4:9d:25:e9:8a:0a:38:47:
96:4e:20:a7:ae:cb:34:6f:f9:1c:60:ec:14:41:17:
73:3e:61:d7:b2:50:22:7d:83:af:bd:0b:2c:b2:c1:
27:cb:00:13:b0:1c:09:a7:95:aa:d6:57:56:72:04:
96:72:8f:53:05:3d:f3:53:5e:a5:ae:24:76:2b:36:
03:cb:cc:62:c3:8a:80:09:e9:c7:ed:ca:89:0d:c3:
d4:16:43:45:ef:1e:88:77:c7:c0:04:59:5d:77:58:
81:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:60:11:F1:E0:79:10:0B:42:52:CB:0E:5F:51:F5:FC:C1:1C:8C:42
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/H2AR8eB5EAtCUssOX1H1_MEcjEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.7.0/24
Signature Algorithm: sha256WithRSAEncryption
11:96:08:17:7e:82:be:c2:1d:94:5c:b1:78:f5:05:1d:15:a4:
4b:11:77:e2:94:a9:89:fb:90:52:4d:f2:64:54:1f:f6:6b:8d:
5b:43:61:c8:10:48:e5:ef:4e:51:0e:4a:79:a4:b6:d3:71:2c:
2c:2a:cf:96:5a:46:c9:23:2a:0e:e2:d8:a6:bf:c8:5a:41:45:
38:e9:0d:10:60:a8:91:7d:7f:b4:06:30:08:10:dc:57:e3:9c:
9b:06:74:83:73:de:87:ee:f9:d5:bc:dd:63:55:93:34:73:ab:
d8:69:07:2b:bb:04:05:11:cb:52:fc:42:3e:b6:6c:8b:32:fd:
86:fd:c2:ef:0e:cb:68:5f:4a:67:0e:a2:31:6a:a1:d8:c5:58:
6d:d1:b2:b7:49:df:4f:c0:3a:9e:00:7f:a1:65:df:17:0f:ff:
7d:e1:16:59:b0:19:53:e0:b8:0b:eb:67:c6:d8:21:61:90:d0:
05:1e:4b:3e:b6:48:8f:7f:b6:7f:e1:e4:0a:d9:ea:25:94:d3:
87:43:fd:c9:a2:88:41:1e:50:0d:5c:a7:32:b8:dd:ad:97:9b:
cf:46:15:73:74:43:ba:e3:f6:5b:e4:a0:c9:d9:b5:2e:1f:33:
9c:18:2e:b8:34:cb:5c:16:28:06:0d:e7:6c:44:23:96:2e:98:
62:53:77:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:55 2024 by rpki-client on console-fra.rpki-client.org