Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/vKq7VfHRTdeWS8wE4uYO4Y2WSlg.roa
File: vKq7VfHRTdeWS8wE4uYO4Y2WSlg.roa (raw, json)
Hash identifier: Fkowg0Locpt8qexkPSxPuRtfBK7sXVkPrW9hUsiBmU8=
Subject key identifier: BC:AA:BB:55:F1:D1:4D:D7:96:4B:CC:04:E2:E6:0E:E1:8D:96:4A:58
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DD4C7EFE4E5DF254B7AD7213048BD
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/vKq7VfHRTdeWS8wE4uYO4Y2WSlg.roa
Signing time: Sun 01 Jan 2023 23:14:52 +0000
ROA not before: Sun 01 Jan 2023 23:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209490
IP address blocks: 176.235.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d4:c7:ef:e4:e5:df:25:4b:7a:d7:21:30:48:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcaabb55f1d14dd7964bcc04e2e60ee18d964a58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6b:b4:f1:45:8c:75:24:3f:72:52:27:ea:b2:
26:ff:04:56:1a:06:23:79:ae:78:69:4e:de:20:9a:
24:38:f3:cd:1b:ca:38:4b:34:40:75:0e:4e:f7:6c:
fd:c5:b1:0b:c0:6b:f6:90:c0:a6:df:09:5c:48:f7:
16:d4:75:a0:05:bd:c8:5b:a4:d3:83:0b:77:6c:5e:
36:d0:3c:94:9a:44:1b:86:67:c7:54:e3:34:15:77:
32:45:d7:ed:d8:41:0d:b9:2a:10:3c:04:22:1a:e5:
de:42:1b:0b:b6:43:83:d1:ab:56:37:56:6f:46:e2:
80:30:36:ff:a9:f1:40:31:41:94:c7:29:a3:cc:3d:
ca:57:23:97:dc:1a:db:64:85:4a:b1:c1:5f:5d:d3:
34:42:9e:cc:7b:8f:0e:d0:61:a3:c9:60:9f:40:b8:
01:b3:72:8b:1b:0d:23:6d:87:33:ff:d8:c8:de:6b:
f4:70:42:c6:6f:cc:5c:ee:ef:73:56:96:d5:5a:0b:
05:af:72:36:34:f9:52:ba:fe:03:03:0c:10:16:e1:
71:48:29:fc:c7:d8:ef:c7:36:66:12:8d:50:94:72:
de:0d:7d:71:86:95:10:47:a3:0c:89:a1:b0:0b:d4:
7b:d1:82:16:ff:e4:22:68:ec:84:cd:1a:5e:45:bc:
e7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AA:BB:55:F1:D1:4D:D7:96:4B:CC:04:E2:E6:0E:E1:8D:96:4A:58
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/vKq7VfHRTdeWS8wE4uYO4Y2WSlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.235.119.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:7d:fa:4f:be:74:18:03:fa:01:c0:72:39:08:81:89:3d:30:
3c:67:3b:74:69:2b:dc:80:ca:14:1f:10:35:f2:b8:82:33:29:
ab:88:21:9d:25:56:5e:d7:9e:d7:fc:a5:10:7c:7b:2e:ec:65:
89:7a:46:2e:ee:19:8c:d7:03:ca:a0:29:24:d7:24:79:f7:16:
bc:5b:02:4f:02:fb:c9:ac:9c:76:81:80:18:41:3d:4b:d8:38:
dd:09:4c:80:59:3a:cc:85:18:85:cf:4c:04:34:41:b6:b3:36:
5c:21:7e:90:3e:04:c0:db:91:c0:32:83:c7:b5:10:c3:a7:10:
32:f9:18:8e:63:09:2a:08:47:e6:b2:d9:9c:31:1d:3b:db:de:
0d:1e:2e:76:7a:bd:9d:3d:81:09:05:6e:eb:d1:33:c5:65:89:
48:3c:fa:3b:ed:13:77:2f:d5:b3:2e:3d:d3:68:4e:98:bc:57:
7b:e8:6f:11:0c:65:3a:a6:d9:92:c1:18:40:05:29:b8:f0:b8:
da:f6:26:e1:1e:90:d3:10:68:99:67:cc:77:0a:c1:58:f6:8e:
94:35:4c:98:db:6b:ef:a5:ac:cd:af:ce:ea:72:e6:11:6d:69:
23:53:d7:72:02:8c:4c:78:84:d0:fc:89:8a:af:82:7e:65:25:
50:22:62:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org