Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/dx7IzQ2U-8zX3TJSF5pPVSDAGwg.roa
File: dx7IzQ2U-8zX3TJSF5pPVSDAGwg.roa (raw, json)
Hash identifier: Kd22KDZaNlqatbmJKgLHsb6FKoyK44kuCvu9VBY8x6M=
Subject key identifier: 77:1E:C8:CD:0D:94:FB:CC:D7:DD:32:52:17:9A:4F:55:20:C0:1B:08
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DD38EF3FCCF1C19881FE88A446BCD
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/dx7IzQ2U-8zX3TJSF5pPVSDAGwg.roa
Signing time: Sun 01 Jan 2023 23:14:52 +0000
ROA not before: Sun 01 Jan 2023 23:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208916
IP address blocks: 176.236.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d3:8e:f3:fc:cf:1c:19:88:1f:e8:8a:44:6b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=771ec8cd0d94fbccd7dd3252179a4f5520c01b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d1:44:0a:6a:8a:5d:12:de:e8:37:49:33:15:
ef:19:af:6f:e4:63:d0:90:b4:6a:d9:9d:d9:42:bd:
fa:1a:a3:8c:38:d3:29:3a:87:1b:f2:4d:aa:1b:97:
91:4d:82:56:c1:7a:2b:ad:ee:06:bc:b3:89:56:83:
5e:f4:90:78:51:44:d9:18:3f:f9:eb:ec:bb:4d:c1:
53:96:c8:d5:a2:c6:67:35:b0:72:d7:60:4d:de:4a:
1f:b2:a4:9d:cc:da:1a:34:ad:e2:24:c1:a2:81:4e:
27:ea:60:0f:c9:c8:bf:d9:02:2e:a2:42:4e:63:e7:
54:e2:06:89:50:53:b8:a7:64:ca:1d:be:9d:ed:ad:
5f:de:70:7e:05:f2:99:99:be:12:97:c9:69:70:e3:
5e:56:a4:ec:e3:62:5f:3f:de:30:3a:2c:6e:73:9e:
b0:6c:a1:c1:e4:bb:2f:f0:a0:46:60:7a:9e:70:0e:
70:27:2c:07:bf:cd:c0:6e:03:fa:d1:f9:a4:de:fc:
00:90:1b:6b:39:09:4d:5c:5f:f3:8d:a7:26:89:d5:
b2:97:09:49:a9:d3:9f:98:c5:be:77:da:d3:f3:1f:
00:4d:b3:86:13:fa:ac:fb:e1:a0:9f:db:53:36:cb:
a3:b7:53:b7:d6:76:7b:c5:ba:1f:3d:17:4e:d4:55:
9a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1E:C8:CD:0D:94:FB:CC:D7:DD:32:52:17:9A:4F:55:20:C0:1B:08
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/dx7IzQ2U-8zX3TJSF5pPVSDAGwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.236.246.0/24
Signature Algorithm: sha256WithRSAEncryption
08:04:6f:a1:9c:b7:15:b6:f0:cc:bf:5a:9b:b7:88:70:af:a6:
7e:c1:34:80:ef:bc:25:2c:11:73:aa:af:3a:91:45:f9:79:97:
e3:19:d9:1b:9e:7c:78:c2:af:b3:50:28:6c:1a:d0:9f:cf:fb:
f0:bf:b5:4e:af:53:54:1b:62:1d:8e:49:df:1e:fa:7a:4d:19:
60:22:4b:cc:6d:13:43:37:a7:21:28:29:7d:22:b4:99:c1:f0:
6b:22:60:d0:d9:db:87:3d:5a:99:e3:16:1e:c9:c8:6a:59:c4:
2d:6c:fc:21:64:de:75:ca:0a:fe:f6:1c:8c:b3:55:e5:dd:d2:
86:7d:fd:41:96:79:72:af:c9:5d:13:7d:c7:78:c1:7d:47:db:
93:f1:4a:cc:57:94:a8:28:d5:07:72:fd:2d:ee:c2:3e:e9:68:
45:00:71:e6:2f:8b:a1:b8:68:5b:1c:be:0e:36:7f:88:b4:16:
c6:51:05:35:7e:71:dd:07:50:b3:20:93:a0:02:c9:56:21:72:
44:77:c7:b1:5f:c8:03:f6:52:03:62:2a:c9:62:8e:4f:9a:dc:
5e:50:21:c7:d6:1b:68:eb:0b:85:38:62:eb:96:4f:b5:76:e1:
1f:86:41:75:c4:22:bf:41:7a:b2:ed:76:2c:6c:8b:11:b2:b8:
9b:52:e5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org