Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/0ksx6yIA6vyouk_k6QY4xwaXDE4.roa
File: 0ksx6yIA6vyouk_k6QY4xwaXDE4.roa (raw, json)
Hash identifier: AmFnbjSvREznDFYvf+nz9tTi9dUsjikAyOo0JrGUxi0=
Subject key identifier: D2:4B:31:EB:22:00:EA:FC:A8:BA:4F:E4:E9:06:38:C7:06:97:0C:4E
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0B5060B6F15687D764497918DC213
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/0ksx6yIA6vyouk_k6QY4xwaXDE4.roa
Signing time: Mon 02 Jan 2023 05:25:01 +0000
ROA not before: Mon 02 Jan 2023 05:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197903
IP address blocks: 82.177.190.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b5:06:0b:6f:15:68:7d:76:44:97:91:8d:c2:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d24b31eb2200eafca8ba4fe4e90638c706970c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:08:61:95:56:fa:d5:de:15:27:f5:72:db:c4:
29:6a:6e:30:58:52:e5:c1:62:6f:45:2f:a8:2a:bd:
5d:2f:e6:91:1c:00:ff:78:11:74:1d:45:fb:e9:b5:
d9:1b:b8:66:46:7e:e3:30:e2:92:9e:29:07:2e:da:
a7:a2:02:20:7a:be:58:55:55:db:04:6a:79:84:5d:
77:6f:b2:f9:02:4e:77:6f:51:cb:6b:2c:92:b8:f4:
dc:df:52:20:6a:5a:39:53:09:58:61:8c:4e:0a:26:
2e:44:68:2c:07:f7:a4:48:0f:e7:32:93:fb:1d:dc:
b7:9d:88:04:50:4a:49:f4:94:83:6c:50:9d:c9:25:
41:80:37:fa:e3:ff:c3:6b:33:c0:c4:39:0b:3a:ae:
5c:48:06:da:1d:7d:25:16:34:28:6d:90:c5:6a:83:
19:0e:b5:f1:9c:94:cb:cc:a4:74:a5:bb:0c:7f:12:
b4:d6:f0:d4:2e:c2:b4:cd:66:a9:a5:59:44:63:a9:
1f:d8:ae:72:3b:08:ab:3d:97:df:28:1b:a2:2f:35:
3e:ef:9d:76:f4:39:a8:cf:e4:9f:6f:69:e3:b3:3b:
aa:10:c5:72:b5:dd:d3:34:34:e9:db:a0:1b:06:98:
72:68:0b:34:d4:8f:67:01:1f:84:80:69:ca:5e:40:
38:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4B:31:EB:22:00:EA:FC:A8:BA:4F:E4:E9:06:38:C7:06:97:0C:4E
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/0ksx6yIA6vyouk_k6QY4xwaXDE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.190.0/24
Signature Algorithm: sha256WithRSAEncryption
97:64:02:5e:a8:38:24:a8:3a:dd:44:a6:76:6e:4f:78:2b:d7:
82:a0:08:7e:02:3f:2b:8a:89:59:bd:f0:20:9e:e4:6c:74:b2:
be:a4:02:b3:87:0e:36:ad:ed:f0:51:a6:96:9b:c5:b6:c1:34:
78:60:19:a5:ef:16:f3:c1:8e:cc:9d:71:0a:9b:70:3b:9f:59:
90:4e:62:d8:1b:ed:29:b5:d5:10:c5:f2:10:b6:d6:ca:25:f7:
a8:54:68:90:71:23:c9:df:40:2c:37:44:13:69:40:7d:41:39:
b2:aa:42:b2:1e:ab:ea:52:11:ed:c3:5c:fc:d7:89:3c:d2:72:
a1:9d:a7:f6:7b:e4:02:fe:b3:98:3b:5d:66:1d:fd:a2:3f:7e:
2d:ca:6b:f5:45:47:30:54:89:1b:d5:43:83:92:a2:60:23:7f:
b9:c8:20:8d:0a:01:c4:87:dc:50:e5:df:65:36:7a:23:8e:2b:
e5:60:67:fd:86:a0:d5:15:6d:3e:74:4a:7c:56:3b:9c:14:f2:
8e:cc:58:26:c6:8c:78:ae:d7:09:a6:55:ca:6f:2b:3c:c4:ca:
e0:87:a4:67:51:ec:2b:2e:b0:82:44:e0:fe:9e:04:de:b2:d5:
e3:ab:bb:9b:4f:57:9a:8f:e9:8a:e9:fa:4d:a4:76:61:1e:7b:
34:33:b3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:20 2024 by rpki-client on console-ams.rpki-client.org