Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/r8IIC9zhekNVXpkkGN6m1IzQF40.roa
File: r8IIC9zhekNVXpkkGN6m1IzQF40.roa (raw, json)
Hash identifier: BplMi1KsMnrB859ORd/cpTYskfHEbrvMMqN9hgCduIU=
Subject key identifier: AF:C2:08:0B:DC:E1:7A:43:55:5E:99:24:18:DE:A6:D4:8C:D0:17:8D
Certificate issuer: /CN=64d4e8723450d0a710c32d90ffea18529104e538
Certificate serial: 018794C79616263B3C1BC29D433DCF33B37D
Authority key identifier: 64:D4:E8:72:34:50:D0:A7:10:C3:2D:90:FF:EA:18:52:91:04:E5:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNTocjRQ0KcQwy2Q_-oYUpEE5Tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/r8IIC9zhekNVXpkkGN6m1IzQF40.roa
Signing time: Tue 18 Apr 2023 14:32:00 +0000
ROA not before: Tue 18 Apr 2023 14:32:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59729
IP address blocks: 176.103.62.0/23 maxlen: 23
2a13:f580:2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:94:c7:96:16:26:3b:3c:1b:c2:9d:43:3d:cf:33:b3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d4e8723450d0a710c32d90ffea18529104e538
Validity
Not Before: Apr 18 14:32:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afc2080bdce17a43555e992418dea6d48cd0178d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:45:fb:06:7d:e5:4c:15:58:46:a0:7a:85:ae:
c8:19:40:c0:ea:5d:89:66:10:9b:3d:f0:60:cf:d3:
b4:af:c0:05:08:ff:e6:3d:0a:33:fc:5c:83:f0:7a:
19:85:75:72:ed:32:46:97:39:f8:b8:ab:d8:e9:c6:
1f:c5:3a:4a:f0:bd:24:eb:19:82:f8:d8:20:2f:26:
26:8b:be:a1:d0:f8:7d:ea:2d:90:ad:08:7d:87:18:
42:38:b9:39:0f:70:3e:14:e7:b0:3f:5a:bc:3f:cf:
37:1f:d1:a2:f7:45:7c:7e:60:d7:59:6b:82:7e:19:
b3:fc:9b:5c:8e:46:ac:0c:7e:47:83:30:e9:8e:d0:
06:aa:25:b1:27:40:79:ec:8c:f7:23:1b:ef:c0:0a:
20:24:80:e8:95:f6:a8:e7:a0:f1:a8:4b:6e:84:22:
5a:c2:1a:d4:c1:9e:ab:12:fd:b9:bc:db:75:28:e1:
84:a9:71:e8:c1:a6:f2:15:13:a2:cb:06:47:28:6d:
af:62:78:ee:58:19:32:f4:58:1b:33:1c:48:2b:4c:
01:b3:6f:9f:76:32:7a:9a:1f:31:e8:33:4d:b5:d7:
66:2b:f5:2e:81:1b:bc:bc:5f:42:e7:17:d0:3f:de:
f1:76:55:85:35:b2:92:7e:27:43:c9:0a:80:5e:c6:
69:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C2:08:0B:DC:E1:7A:43:55:5E:99:24:18:DE:A6:D4:8C:D0:17:8D
X509v3 Authority Key Identifier:
keyid:64:D4:E8:72:34:50:D0:A7:10:C3:2D:90:FF:EA:18:52:91:04:E5:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNTocjRQ0KcQwy2Q_-oYUpEE5Tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/r8IIC9zhekNVXpkkGN6m1IzQF40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2310b1-96a1-48e4-aa72-422aed3a7702/1/ZNTocjRQ0KcQwy2Q_-oYUpEE5Tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.103.62.0/23
IPv6:
2a13:f580:2::/48
Signature Algorithm: sha256WithRSAEncryption
0c:a0:30:d8:a7:e9:08:91:9f:1c:b4:32:8c:78:12:d7:b8:d6:
ae:c2:fe:28:08:2d:f8:b7:c7:26:9d:bc:a7:20:e8:c7:14:cf:
69:db:86:01:84:eb:65:e1:03:ce:69:0e:66:8c:c4:7a:b8:af:
18:12:51:78:b0:26:0e:52:cb:36:33:dd:71:d2:7b:22:fd:6d:
44:98:fa:c0:f1:b8:a5:57:ea:cd:a4:2b:68:83:db:7b:fa:a3:
17:7c:e0:03:37:c5:87:9a:f1:29:89:02:fb:59:d0:cd:83:c7:
c3:15:69:6e:35:56:c6:ff:bb:af:6b:de:9b:d9:3c:6c:3f:f1:
7d:ba:cc:76:29:7d:26:e2:b4:b6:ad:a8:f2:cc:c9:c0:8b:14:
c6:1d:d1:b5:72:75:d8:42:7f:10:06:4b:15:29:3f:c5:9e:67:
ce:3e:dc:81:b8:60:c6:7b:a4:29:01:66:6b:d0:a4:8a:2e:92:
b5:cc:d2:0a:1b:5a:cc:b7:21:1d:ff:93:b7:8b:f2:62:70:dd:
3b:ff:92:bd:5c:82:63:6b:0c:09:7d:c7:14:30:85:d6:cb:c3:
09:f7:f7:ee:34:e9:83:93:73:1b:73:85:5a:4a:ad:66:a4:53:
2e:94:ca:96:9f:a3:22:00:d9:1e:0c:29:c7:6e:45:30:f0:4d:
08:06:71:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:09 2024 by rpki-client on console-fra.rpki-client.org