Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/nGytgv_xwH8MlWn0jqALfaJvht0.roa
File: nGytgv_xwH8MlWn0jqALfaJvht0.roa (raw, json)
Hash identifier: p6NYDLKiAKBc/gnU/odh2IHIH6/236mnfiHX3Qwq3cw=
Subject key identifier: 9C:6C:AD:82:FF:F1:C0:7F:0C:95:69:F4:8E:A0:0B:7D:A2:6F:86:DD
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 018A3CA37454A88A64D6DF29DAF52FAF2417
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/nGytgv_xwH8MlWn0jqALfaJvht0.roa
Signing time: Mon 28 Aug 2023 14:54:19 +0000
ROA not before: Mon 28 Aug 2023 14:54:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 176.113.99.0/24 maxlen: 24
178.212.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:a3:74:54:a8:8a:64:d6:df:29:da:f5:2f:af:24:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Aug 28 14:54:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c6cad82fff1c07f0c9569f48ea00b7da26f86dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:87:70:f3:d4:3d:84:fd:1d:22:08:2b:01:
b6:a5:83:c1:ab:bc:74:92:0c:c5:d6:49:6c:f1:0e:
6d:84:0d:59:d0:86:da:98:bb:36:7d:30:79:cc:b5:
e3:0a:9b:04:53:7f:0e:01:04:27:a2:9a:e9:e6:9d:
85:60:02:2e:88:95:63:f2:85:3c:33:e1:e2:cc:3f:
80:ca:c5:c5:2f:9b:ee:32:40:99:79:d0:53:b4:7d:
b9:dd:d0:89:be:31:e6:0c:51:a0:c3:dd:26:fe:7e:
6f:3c:a6:28:97:6a:0c:8e:f4:f3:99:85:a3:62:b7:
c6:5b:24:cc:02:80:9a:d7:f0:e3:34:03:c6:02:e7:
45:4f:b7:47:d2:02:1b:84:d5:4f:ed:bd:21:be:d0:
91:5b:10:00:4d:51:60:0a:9a:cf:75:40:6d:eb:42:
df:ed:41:bf:80:85:0e:74:53:ae:14:82:01:6a:1e:
13:c3:78:5e:33:98:22:97:d0:78:c6:69:e3:64:ec:
c3:f0:d3:b6:54:90:09:ac:55:79:1b:3c:b3:1d:fd:
2e:29:fd:6d:a2:85:67:b8:76:52:c6:3a:8d:3b:5f:
0c:13:4b:52:96:6d:90:f8:60:fd:5b:d9:62:b3:04:
78:52:97:24:e5:5d:5b:7d:9a:29:90:e6:f2:89:1f:
8d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6C:AD:82:FF:F1:C0:7F:0C:95:69:F4:8E:A0:0B:7D:A2:6F:86:DD
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/nGytgv_xwH8MlWn0jqALfaJvht0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.99.0/24
178.212.202.0/24
Signature Algorithm: sha256WithRSAEncryption
65:42:af:cd:db:79:d1:d3:40:dc:f4:a3:91:1f:10:f5:6e:d7:
ad:3e:f5:f2:bc:0f:c2:8c:8e:fe:02:6b:6f:f0:61:52:6d:fa:
37:47:c6:b3:d5:ea:5c:cb:f4:92:8d:1f:6f:28:74:81:94:43:
51:5b:d7:05:b6:28:ae:ac:4e:8c:34:6e:ff:43:8b:1a:1f:1a:
b0:b8:7a:10:0d:7b:24:9b:41:b2:a5:25:1e:8c:7f:3c:8d:43:
23:71:32:02:d2:4d:e5:db:c9:10:f9:bb:8f:74:df:95:81:1e:
93:f1:b2:cb:f5:cf:8c:fa:32:a1:95:f7:b9:8d:3c:1c:0b:a9:
48:d5:fe:73:f8:cf:34:a1:5e:ed:1d:88:d1:52:e0:92:0c:f0:
4d:78:e2:cd:05:6e:6a:0a:42:71:9f:a2:e6:3d:8a:bf:54:90:
88:c1:f8:c6:bd:35:96:4a:00:a9:eb:12:92:6c:be:4e:c1:32:
04:58:59:f8:f7:34:e1:99:22:ba:64:47:2b:48:6f:da:e3:2a:
42:c4:aa:f4:a5:31:3b:18:91:96:4b:cd:90:77:86:71:dd:5c:
90:ea:ac:da:7a:e1:e2:4c:18:aa:ba:14:bb:dc:a5:8c:ca:26:
70:7f:e6:49:2d:81:b7:31:b8:4a:9a:5b:be:9c:42:38:18:06:
fa:e5:b4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:29 2024 by rpki-client on console-ams.rpki-client.org