Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/ryEaLACRO9djQuzYZtM6mx7u28s.roa
File: ryEaLACRO9djQuzYZtM6mx7u28s.roa (raw, json)
Hash identifier: 6aCuFDNtSztRKZnOZ7/xg85tM+Tpsx2ga9LWaDerAjU=
Subject key identifier: AF:21:1A:2C:00:91:3B:D7:63:42:EC:D8:66:D3:3A:9B:1E:EE:DB:CB
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 01856C0A53310980A8243BC6A1FF1EC419D0
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/ryEaLACRO9djQuzYZtM6mx7u28s.roa
Signing time: Sun 01 Jan 2023 06:34:54 +0000
ROA not before: Sun 01 Jan 2023 06:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60663
IP address blocks: 176.222.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:53:31:09:80:a8:24:3b:c6:a1:ff:1e:c4:19:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Jan 1 06:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af211a2c00913bd76342ecd866d33a9b1eeedbcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e3:9a:5a:a3:bc:62:86:d8:20:e2:27:0f:97:
ed:48:e9:8d:41:77:d0:12:ca:6d:1c:e9:cb:4b:24:
95:2c:bc:0a:ea:43:2d:0f:fc:d0:6b:32:65:78:dc:
02:01:d3:ee:2b:88:0c:19:36:8d:3d:1e:60:78:8b:
59:e7:81:d6:6f:1b:f1:ca:c6:83:26:04:2a:b0:ad:
99:28:d6:84:ac:74:98:ae:f0:8d:7e:bd:ef:bc:b3:
c8:c0:a5:92:63:9b:46:39:bb:fa:85:bf:10:c5:81:
0d:70:e7:2a:75:af:2f:9e:4c:34:ee:42:e3:3e:37:
20:21:f5:44:f6:fd:78:41:28:7d:5d:b3:fa:b3:96:
2d:0c:bb:0a:fd:ed:fe:a2:c9:55:44:ca:db:4a:7e:
41:e4:b7:67:93:36:3b:44:57:47:dc:cd:49:bb:30:
37:2d:2e:be:6a:25:bc:dc:03:f9:6d:d0:bf:e8:da:
c8:60:ac:30:7b:3e:43:47:1a:eb:ed:38:85:39:57:
ae:48:a3:2d:3c:68:6a:a3:18:62:e5:07:d5:7a:c8:
d3:49:d1:80:e2:ef:d6:a2:ff:04:e3:66:88:b8:02:
4a:03:67:ed:1d:f1:9c:30:3b:64:02:e8:f8:11:b8:
6c:70:4b:3e:90:ed:8b:cb:32:3b:6b:85:02:45:79:
51:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:21:1A:2C:00:91:3B:D7:63:42:EC:D8:66:D3:3A:9B:1E:EE:DB:CB
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/ryEaLACRO9djQuzYZtM6mx7u28s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.222.62.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b7:23:74:e9:06:c3:8f:da:2e:7f:9e:63:0d:c3:c3:a3:04:
f4:fb:27:3b:f2:11:4f:98:ff:80:ce:d8:4b:c0:ae:75:e2:65:
43:44:5c:c1:bd:82:30:6f:91:70:6c:f2:5e:1c:ae:e6:7a:85:
d2:d1:cd:b0:4f:8f:ca:ba:d7:aa:0a:a3:33:b1:a5:8a:61:2e:
52:ef:2d:96:00:95:8c:61:b6:b4:de:04:7e:ed:e7:b6:17:ff:
16:62:89:78:d4:07:15:52:24:17:d5:62:bf:1c:3a:34:48:39:
8d:e1:84:68:37:bf:74:a9:de:12:ad:84:80:7a:f6:6b:03:24:
46:6d:b2:a1:6c:68:54:35:a4:12:6b:72:76:84:2c:9e:df:95:
49:87:7d:e5:b1:b7:19:e6:08:b7:8e:57:d3:ae:55:4f:0f:17:
05:40:e4:77:27:7f:21:c1:a3:9a:de:c6:21:b4:f0:9c:85:b3:
d8:64:dc:d7:ea:67:bb:ab:33:b1:9c:73:77:8f:4a:9d:15:fa:
32:d5:bb:f7:ce:b9:e0:df:59:35:f6:cf:07:b6:12:dc:1f:ba:
06:db:ba:d0:62:c9:41:65:f4:3d:89:b5:12:dd:7c:42:4b:8c:
c7:73:35:f4:c4:bf:5a:25:9d:a1:a5:38:9b:b5:b4:0b:80:cb:
7f:51:a1:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:00 2024 by rpki-client on console-fra.rpki-client.org