Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/564bd0-7b52-44dd-b56b-8eaa6bf40357/1/s3m50ZyCE_mK_O8uV1JithExI_A.roa
File: s3m50ZyCE_mK_O8uV1JithExI_A.roa (raw, json)
Hash identifier: jDfszqRTnoc6NzRWf5ChGFKf7yZXvW1eiRoVnGshiAA=
Subject key identifier: B3:79:B9:D1:9C:82:13:F9:8A:FC:EF:2E:57:52:62:B6:11:31:23:F0
Certificate issuer: /CN=e1856c3082ab2fc8dd1b359a7b3991368538b4d0
Certificate serial: 018BC7F66BDA1EC0A3210B48DC7BB1A9AF98
Authority key identifier: E1:85:6C:30:82:AB:2F:C8:DD:1B:35:9A:7B:39:91:36:85:38:B4:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4YVsMIKrL8jdGzWaezmRNoU4tNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/564bd0-7b52-44dd-b56b-8eaa6bf40357/1/s3m50ZyCE_mK_O8uV1JithExI_A.roa
Signing time: Mon 13 Nov 2023 09:14:57 +0000
ROA not before: Mon 13 Nov 2023 09:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 176.116.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c7:f6:6b:da:1e:c0:a3:21:0b:48:dc:7b:b1:a9:af:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1856c3082ab2fc8dd1b359a7b3991368538b4d0
Validity
Not Before: Nov 13 09:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b379b9d19c8213f98afcef2e575262b6113123f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:08:32:ed:8c:cc:36:3b:b4:19:d8:ac:61:73:
58:b3:42:9b:80:50:78:d9:9e:84:c5:d3:60:c8:54:
6d:d7:3e:38:b5:cf:1f:f9:bd:dc:1f:46:b8:f1:1d:
5a:4d:63:64:84:0a:14:b5:14:b7:13:71:74:7e:a7:
ed:96:b3:1a:6f:88:6b:3f:34:b5:98:78:80:ca:40:
d9:7b:c2:0b:4d:1f:b0:a9:35:64:02:26:78:c6:ec:
64:39:93:9f:6d:bf:53:a4:a9:e4:50:2c:d3:74:50:
13:cb:45:0e:00:9e:47:3f:3b:07:eb:34:b2:1e:1f:
cd:8d:39:34:b2:31:59:a5:4a:61:09:90:23:99:bb:
a4:0a:31:28:27:45:63:2c:cc:f6:e1:1d:b3:8a:21:
6f:8c:bb:6f:9e:c5:28:46:04:a2:c0:4d:1d:99:d4:
f3:a0:3d:60:cc:53:38:28:f9:ad:7a:9c:1d:ba:3e:
21:35:07:75:92:a0:f9:48:bc:97:4a:a2:94:9f:f4:
3a:ab:11:15:d4:09:39:8a:77:6d:e4:4e:94:03:93:
10:1f:62:42:fa:37:6f:1b:6f:93:66:04:ba:b1:bf:
1d:2c:ab:44:6f:26:b4:1a:39:5a:12:78:5a:ad:f1:
3e:e0:96:51:a9:33:5d:05:b0:fa:e1:a9:e4:2c:a1:
e4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:79:B9:D1:9C:82:13:F9:8A:FC:EF:2E:57:52:62:B6:11:31:23:F0
X509v3 Authority Key Identifier:
keyid:E1:85:6C:30:82:AB:2F:C8:DD:1B:35:9A:7B:39:91:36:85:38:B4:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4YVsMIKrL8jdGzWaezmRNoU4tNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/564bd0-7b52-44dd-b56b-8eaa6bf40357/1/s3m50ZyCE_mK_O8uV1JithExI_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/564bd0-7b52-44dd-b56b-8eaa6bf40357/1/4YVsMIKrL8jdGzWaezmRNoU4tNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.18.0/24
Signature Algorithm: sha256WithRSAEncryption
25:68:8a:e2:25:47:c4:85:eb:90:7a:0d:1d:a8:eb:6e:e1:51:
de:eb:f2:94:27:0a:0f:e5:14:b8:3e:2e:7d:76:3c:11:24:0d:
26:3f:7f:f8:ab:0e:d8:82:59:07:5d:f4:ec:1d:31:e2:37:a6:
28:97:58:dc:69:89:9b:5a:a8:24:c6:58:b7:a7:53:29:af:fc:
28:f4:6a:ee:9c:ba:c4:4a:b9:a4:d9:3d:0c:a5:db:52:91:56:
51:44:72:b1:4d:8c:c8:92:51:95:65:04:5d:30:47:a8:4f:37:
1d:5a:79:61:6b:6f:39:5b:9c:95:3a:e6:b3:e5:56:24:f0:fc:
7f:58:12:a9:11:6c:e2:72:76:24:48:fb:13:4c:eb:37:0d:5e:
f4:9c:cf:d6:28:01:a9:9b:06:e7:83:cc:20:67:a0:a4:05:f3:
91:cc:b8:c5:ab:68:fe:c6:b9:d8:5f:70:a6:4d:2e:91:1a:39:
f7:8c:06:8c:80:88:4d:33:56:90:3a:75:15:6f:f9:40:4a:5a:
79:a8:37:a0:11:5b:ab:94:17:12:bf:d6:22:ad:cb:03:22:40:
df:67:29:77:0f:04:3d:5d:ae:9b:bb:eb:6e:48:fe:a6:c1:fd:
1b:3e:9e:3a:cc:cf:d2:31:16:54:bf:a9:6b:59:f8:f8:4a:53:
59:19:64:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 16 09:46:43 2023 by rpki-client on console-fra.rpki-client.org