Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/K1ymYZfaAZ87PzZ2dLCP6Ud_8CA.roa
File: K1ymYZfaAZ87PzZ2dLCP6Ud_8CA.roa (raw, json)
Hash identifier: Nqshvh4BM/OCbqfwj6uQD0qjzGYMyIYwU+GqRq1T1v8=
Subject key identifier: 2B:5C:A6:61:97:DA:01:9F:3B:3F:36:76:74:B0:8F:E9:47:7F:F0:20
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C5EDFFB000F13E6C31178D59723632566
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/K1ymYZfaAZ87PzZ2dLCP6Ud_8CA.roa
Signing time: Tue 12 Dec 2023 16:33:06 +0000
ROA not before: Tue 12 Dec 2023 16:33:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 18779
IP address blocks: 176.223.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:df:fb:00:0f:13:e6:c3:11:78:d5:97:23:63:25:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 12 16:33:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b5ca66197da019f3b3f367674b08fe9477ff020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:36:a0:82:46:b1:05:41:f7:60:ff:0d:c3:e6:
16:a5:be:4b:37:66:0c:65:82:dd:a6:7d:2c:9a:17:
88:4c:40:9b:d8:f8:62:71:9d:88:41:1a:70:32:ed:
ef:ba:cb:7c:42:37:88:5a:f4:73:b5:a2:32:bc:cc:
d8:43:4d:3e:73:d0:2b:03:34:55:2c:17:66:81:da:
0a:08:42:0a:a2:a6:55:98:e7:6b:ec:31:11:3b:6a:
54:88:3e:0b:4c:99:85:27:7e:91:ff:f3:f0:03:4e:
0b:f6:99:3c:f6:99:26:97:ce:43:4f:a4:37:e8:1b:
11:60:6c:58:a8:53:f6:04:42:fa:2e:ba:19:6f:d8:
d4:54:ff:f0:91:67:45:5e:6b:05:cd:f9:32:77:dd:
8b:86:8d:bf:5d:42:a9:5e:80:cc:55:f3:db:c8:16:
02:d6:a8:4d:92:2d:25:c7:82:02:50:e9:f0:83:27:
c3:61:5a:1d:cb:4d:65:d0:11:4b:b9:49:c3:73:c7:
2a:8f:0f:44:05:99:ba:9b:aa:37:ac:6d:a2:77:f3:
40:77:14:f2:14:22:e5:95:ac:c5:2c:ba:54:97:03:
e5:a6:84:a5:89:5c:1e:7d:69:2f:76:35:d6:45:8f:
0d:af:e0:65:25:49:ca:e5:95:3a:ac:97:56:9f:fa:
85:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5C:A6:61:97:DA:01:9F:3B:3F:36:76:74:B0:8F:E9:47:7F:F0:20
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/K1ymYZfaAZ87PzZ2dLCP6Ud_8CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.223.66.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:7e:65:7d:2c:ff:ce:b8:c5:a9:20:72:bb:e0:ed:2b:dd:94:
42:76:65:53:1c:96:87:58:d0:4e:02:8c:d6:bf:dc:a3:15:da:
1e:be:b7:37:8c:7f:e6:4e:05:8b:07:50:49:cc:c7:3d:95:e1:
2e:8d:0c:66:21:1f:80:3f:fd:49:1b:9b:4c:1a:0c:2e:fe:81:
65:84:c3:a0:7f:12:74:58:3a:e7:f1:81:d2:ae:5a:cf:ba:4b:
f7:6d:62:a7:bc:b4:6a:fd:14:e2:40:5f:ea:9f:cc:e9:30:3c:
91:e5:fa:3d:c1:89:61:f2:cd:e3:ce:18:e9:8b:50:b4:95:cf:
f7:fc:34:a5:00:bd:0c:c7:3f:fb:04:6d:1e:11:5b:0b:98:16:
ce:02:17:6a:1c:0a:f9:40:d5:cc:08:b3:47:2e:04:11:95:0f:
d4:a7:96:27:4c:4f:6a:f1:91:98:f2:09:a3:f0:90:2e:55:6b:
5e:7d:29:f9:27:6d:4f:a3:ad:84:34:f9:0c:b1:a0:4e:92:19:
25:12:8b:37:c2:89:e3:3e:be:47:c9:e8:e6:b4:6f:b3:4a:91:
b7:f6:6d:50:40:12:e2:a2:2c:32:4b:f0:16:55:b0:47:4a:db:
68:ec:82:44:71:9c:f9:93:62:d4:8d:f0:5f:ad:d1:53:da:fe:
66:35:4f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org