Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/tjXmEOGIIpiHCg8rPh9OvgzPISs.roa
File: tjXmEOGIIpiHCg8rPh9OvgzPISs.roa (raw, json)
Hash identifier: Oe9q4QIaV+D7y1RXH1NRhgv9wliMk6gvZHptDv/e2dI=
Subject key identifier: B6:35:E6:10:E1:88:22:98:87:0A:0F:2B:3E:1F:4E:BE:0C:CF:21:2B
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DD25E69673E56FA943BF31CC12279
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/tjXmEOGIIpiHCg8rPh9OvgzPISs.roa
Signing time: Sun 01 Jan 2023 23:14:51 +0000
ROA not before: Sun 01 Jan 2023 23:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208880
IP address blocks: 176.236.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d2:5e:69:67:3e:56:fa:94:3b:f3:1c:c1:22:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b635e610e1882298870a0f2b3e1f4ebe0ccf212b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a2:34:53:34:a2:9b:b7:52:9f:0f:95:f9:e2:
cb:5b:5d:c4:01:b3:0a:ca:f9:9b:d5:ee:25:5b:ac:
18:d5:79:b6:d2:7a:5e:c9:7f:e9:fc:7f:74:56:75:
30:c4:03:df:c3:40:1f:ff:e0:b7:08:dc:f0:4a:3b:
b5:56:a2:b6:44:0b:8c:f5:be:84:7d:d4:e3:fd:ea:
f3:b4:70:86:f2:74:98:34:f8:c7:c0:f5:b0:9e:df:
d3:5b:2b:a0:40:b4:1e:1b:12:df:1a:49:4d:b0:56:
58:be:54:b8:f3:69:5b:a6:d6:82:e8:04:7f:20:38:
95:ac:83:6a:1a:6d:ae:1c:ea:03:d1:c2:6f:6a:be:
96:61:4b:29:01:ca:0b:68:68:ff:dc:c3:80:a7:a0:
a3:d2:69:eb:18:af:b9:a8:21:98:44:c8:5a:31:17:
00:17:03:20:78:12:cd:d8:7b:7c:ee:82:d6:14:f6:
9b:f5:0b:d0:18:49:c7:34:cb:cb:f6:c4:8b:4a:5c:
30:4d:c9:74:cf:f9:c0:f1:18:72:bc:0b:1d:e2:af:
3e:11:b0:cf:44:cb:6e:18:fa:3a:78:e7:c7:63:09:
2a:2d:22:b2:80:62:44:f6:67:39:8a:13:ca:f9:df:
f2:31:e5:fc:2a:55:f2:e0:54:c4:83:e6:47:cb:b5:
46:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:35:E6:10:E1:88:22:98:87:0A:0F:2B:3E:1F:4E:BE:0C:CF:21:2B
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/tjXmEOGIIpiHCg8rPh9OvgzPISs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.236.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:49:26:a3:42:84:47:21:e2:82:d4:58:65:eb:81:87:1d:8d:
32:ac:88:c4:e0:6a:cc:bf:e9:c6:ca:77:be:18:99:09:7b:ef:
e4:58:36:a6:0a:0d:17:db:f9:0e:46:90:08:8c:f7:67:db:77:
7f:36:4b:19:c2:de:e2:1c:53:fa:85:7e:a2:7f:26:b9:a4:aa:
57:b6:80:35:04:53:03:9d:a0:ea:48:10:79:06:b1:ad:bb:20:
bd:83:8e:32:ea:7c:77:f1:12:9b:d8:ed:66:87:c1:e0:d9:22:
19:78:9a:19:b0:31:bc:1b:91:7f:1c:a6:b8:5f:52:0b:a6:8d:
62:c5:58:1a:10:65:9d:2d:a4:9f:85:fd:50:c2:c6:c8:78:82:
cc:20:23:a2:38:71:ca:a0:e0:68:dd:93:05:73:84:44:30:18:
c5:a9:f8:35:9d:0e:fd:14:76:49:fd:cc:a2:ed:ae:3c:49:21:
bf:b4:30:7c:12:6a:b8:dc:c1:1b:9f:8a:74:6c:b8:7e:03:06:
12:83:c1:4d:8b:31:f5:48:dd:e3:d0:c7:da:8a:79:1c:a7:e2:
9f:21:70:83:a6:39:bf:a6:a2:50:72:8d:3a:fc:e8:c4:f1:af:
63:74:ac:11:06:72:54:8b:70:a6:6c:6d:95:ab:04:d7:d1:6e:
9b:17:40:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org