Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BspLk6abkvUaamhxHel4lHzuQUg.roa
File: BspLk6abkvUaamhxHel4lHzuQUg.roa (raw, json)
Hash identifier: jXVCmFWeVoT8uYTpnxxYUD3LQSOrHMMwq8/BLeTRo2I=
Subject key identifier: 06:CA:4B:93:A6:9B:92:F5:1A:6A:68:71:1D:E9:78:94:7C:EE:41:48
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DB99DB7499C0A5F275B69C08C58D7
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BspLk6abkvUaamhxHel4lHzuQUg.roa
Signing time: Sun 01 Jan 2023 23:14:45 +0000
ROA not before: Sun 01 Jan 2023 23:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24667
IP address blocks: 176.235.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b9:9d:b7:49:9c:0a:5f:27:5b:69:c0:8c:58:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06ca4b93a69b92f51a6a68711de978947cee4148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fd:01:10:5c:0e:46:52:a9:1e:3d:21:36:98:
ec:e9:c7:5a:67:53:83:23:17:3b:93:36:5e:68:b5:
ad:d4:80:dc:8e:2b:a4:3e:36:4e:4c:3f:c8:c4:ef:
65:fc:18:fa:c8:8c:42:43:7f:4c:80:cf:42:f4:03:
0a:ac:d4:9b:3e:be:3a:1c:1b:32:2a:9c:13:f1:14:
c9:1b:26:6c:81:c4:14:6f:ab:26:1a:c1:c8:45:94:
c6:dd:4f:c1:ec:ef:4a:71:37:f0:80:91:a6:dc:7e:
49:26:7c:9c:2c:90:17:5e:81:26:2a:24:65:0f:cb:
c3:af:8d:df:98:0c:6c:99:79:9f:9d:44:13:13:a2:
45:6a:43:e6:73:8c:e0:ce:c9:cf:0f:43:47:82:23:
9b:ef:c5:f0:de:02:f5:6b:0c:4f:1f:58:c0:04:38:
e3:d9:2b:72:f9:3f:30:db:f6:ee:81:3e:3c:30:b9:
db:8e:61:69:97:84:2a:bc:eb:ba:6a:5b:2c:fc:4b:
1e:81:6a:e6:86:83:e2:83:ab:8c:27:cd:a4:7e:46:
f7:7e:69:86:29:b6:be:45:9f:c2:45:6d:a6:69:65:
37:6c:db:a2:f4:5e:b8:31:0c:95:5d:39:29:dd:e8:
3e:4b:e4:f2:0a:47:84:96:4d:83:af:6a:66:87:64:
cb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CA:4B:93:A6:9B:92:F5:1A:6A:68:71:1D:E9:78:94:7C:EE:41:48
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/BspLk6abkvUaamhxHel4lHzuQUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.235.122.0/24
Signature Algorithm: sha256WithRSAEncryption
57:65:67:d7:2e:af:72:e0:b7:db:28:a3:5d:a5:20:fa:3a:16:
31:f7:b9:e5:70:58:80:4d:fb:c6:8e:77:d6:8c:ad:e8:c2:d2:
5b:02:9e:52:03:18:31:7e:16:79:ba:83:34:99:ed:52:09:f6:
67:f8:cd:3f:9f:2d:d8:4e:ee:ab:f3:88:fa:64:69:e9:89:d8:
af:7e:b1:a6:54:4f:82:92:7e:d4:49:5d:a0:5b:49:0c:40:0d:
2e:3d:9e:c6:2f:69:8b:9e:06:91:35:97:a0:ba:52:c2:d3:e9:
3f:e4:8a:dc:08:3e:cb:3e:56:3d:51:a8:70:2e:21:5e:3c:93:
f6:c1:70:2d:a6:64:96:5a:4b:0b:d5:88:a6:dc:06:24:6b:5c:
8a:9b:f8:89:ee:65:57:d4:32:c3:d2:be:72:e4:b8:bd:11:03:
45:95:f4:9a:f5:3a:b3:0d:f5:4a:6b:9d:ec:a6:b8:e1:bd:d0:
b8:26:5f:ad:f0:5c:02:46:64:45:89:66:99:75:4f:93:f1:cd:
07:e7:f1:a5:ab:17:40:c8:25:60:3b:d9:7a:1a:a7:13:dc:62:
86:47:f1:00:27:fa:06:3d:53:99:7f:c1:7b:a8:1f:4c:8a:c1:
cc:64:87:e3:37:82:7d:a8:53:b2:a2:c0:98:8b:3e:40:74:f5:
3a:ec:8f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org