Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/bH1qiMbC37Ui2r-H0aoqCzhOoxY.roa
File: bH1qiMbC37Ui2r-H0aoqCzhOoxY.roa (raw, json)
Hash identifier: cthOgErnxIRpc8mFG7/EZQXWK+ShGe30FDxFrm0vlmg=
Subject key identifier: 6C:7D:6A:88:C6:C2:DF:B5:22:DA:BF:87:D1:AA:2A:0B:38:4E:A3:16
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 018A3CA3737A460D321E820EE512AC600C70
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/bH1qiMbC37Ui2r-H0aoqCzhOoxY.roa
Signing time: Mon 28 Aug 2023 14:54:19 +0000
ROA not before: Mon 28 Aug 2023 14:54:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46562
IP address blocks: 176.113.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:a3:73:7a:46:0d:32:1e:82:0e:e5:12:ac:60:0c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Aug 28 14:54:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c7d6a88c6c2dfb522dabf87d1aa2a0b384ea316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ce:46:a6:f5:60:00:10:fe:16:3c:f1:e1:1a:
20:49:2c:b4:4a:05:5b:d4:b0:31:46:ce:88:f0:88:
f0:65:00:2a:2d:fd:3e:b5:4a:9c:64:32:ba:f4:05:
72:f9:6d:7e:78:a0:4a:37:12:e3:d5:69:7d:fc:1a:
fc:0b:a7:f7:11:e6:9b:23:5a:a7:05:1d:a3:d0:37:
11:6e:7d:fb:5b:39:ab:ed:8d:fc:85:85:7e:46:d7:
ac:9a:4e:b8:09:8d:eb:db:a8:78:36:26:49:38:11:
8c:87:cb:d0:e8:26:bf:cb:7a:52:f8:28:45:07:f8:
9b:d9:08:b2:56:a6:d6:dd:00:0f:b7:6e:d0:f6:ad:
5e:71:53:59:7a:58:f8:92:b3:64:53:29:e4:c1:1b:
49:c7:d1:f3:36:36:8a:d3:0f:c0:9a:a0:c2:e9:c0:
5d:a9:17:ee:66:78:9c:15:37:21:4c:39:05:93:43:
9d:fa:c9:3a:ef:a3:74:37:29:1e:ea:de:cf:5d:9f:
a1:26:a8:7e:f9:82:c2:5c:36:27:43:b1:86:9c:9c:
b0:59:91:f0:42:dd:85:dd:91:6a:4d:10:85:93:19:
97:70:a1:aa:4b:81:f7:34:c7:b0:70:7c:78:94:b3:
5c:eb:85:17:33:4a:bd:1e:9a:ac:9d:0d:93:f0:96:
12:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7D:6A:88:C6:C2:DF:B5:22:DA:BF:87:D1:AA:2A:0B:38:4E:A3:16
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/bH1qiMbC37Ui2r-H0aoqCzhOoxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.98.0/24
Signature Algorithm: sha256WithRSAEncryption
59:56:1c:91:4d:61:af:66:ae:75:8e:09:f8:81:12:fc:cb:63:
97:9a:fb:af:9e:ba:1e:98:7b:37:9d:4b:2b:8d:da:84:e7:97:
95:bf:58:94:9e:31:06:75:1f:f1:b0:a6:8e:ed:8d:cf:9e:eb:
4d:e5:90:4b:b0:af:d8:c4:48:58:9e:68:5c:bb:22:4f:7a:be:
f4:06:54:7f:ff:59:0b:26:64:0f:15:ef:17:be:7b:99:a0:32:
8d:21:e4:6e:73:e9:52:d5:57:db:48:64:58:a6:de:97:0e:9f:
b2:75:79:a4:34:2f:0d:93:18:11:7d:bd:de:84:0c:f0:a7:8e:
b7:8e:7d:61:62:b5:61:92:d6:19:97:46:8a:4b:81:0a:b2:04:
e1:b4:fc:ef:fd:24:d0:fc:09:56:d2:6f:ae:8d:f3:df:d8:fb:
14:f3:8b:89:e3:1c:0a:0c:f6:a2:9e:96:8a:53:ab:c7:a9:8c:
28:83:37:75:17:35:35:c9:ec:3b:b2:25:0f:96:a0:13:19:23:
a6:e4:3d:0e:4c:a0:1b:3a:be:83:5d:15:74:41:8a:b7:ba:23:
e2:89:8a:0d:f9:56:50:c9:61:ad:de:db:84:cb:0f:07:80:62:
15:59:96:00:c1:78:ad:59:34:68:83:30:f8:64:5b:1f:80:43:
44:bc:ea:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:29 2024 by rpki-client on console-ams.rpki-client.org