Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Jc0sF4_TTWo4FC7pz9JL-QoppDI.roa
File: Jc0sF4_TTWo4FC7pz9JL-QoppDI.roa (raw, json)
Hash identifier: YT6667Hglyp+WQbBWJnIwA8dENN3XJ4i+tyhHJOHhVE=
Subject key identifier: 25:CD:2C:17:8F:D3:4D:6A:38:14:2E:E9:CF:D2:4B:F9:0A:29:A4:32
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 018570706082E65F1899164F5E06A1BCA1B7
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Jc0sF4_TTWo4FC7pz9JL-QoppDI.roa
Signing time: Mon 02 Jan 2023 03:04:50 +0000
ROA not before: Mon 02 Jan 2023 03:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59476
IP address blocks: 176.99.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:60:82:e6:5f:18:99:16:4f:5e:06:a1:bc:a1:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 2 03:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25cd2c178fd34d6a38142ee9cfd24bf90a29a432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d9:06:51:ba:b4:b4:9a:fb:71:ea:8e:87:6a:
de:65:30:c2:91:9c:d3:1b:b1:3a:a8:38:b0:bf:ba:
c0:a9:23:d9:94:6b:e2:7a:c3:1d:0f:f2:4c:d2:af:
e0:7b:9a:c8:83:5e:20:76:6d:f9:e0:e0:d1:8c:2b:
4f:6c:ca:4d:d8:58:d6:f3:fb:14:7a:8a:5c:bb:bb:
40:12:01:e4:80:a4:e4:c1:9c:04:93:5e:48:ee:17:
4b:85:a7:f7:77:c5:5c:33:33:66:bf:24:25:39:0a:
78:06:b4:89:4b:60:d2:8c:a3:b6:38:b6:31:3d:2c:
06:86:5a:45:5e:17:de:ad:3f:f0:bd:4d:51:79:89:
ec:a5:a1:8f:09:03:12:e0:13:de:e3:e6:2e:27:1d:
fb:60:38:2a:a2:a8:5d:ac:bc:92:66:e3:e8:b0:e2:
6a:87:ed:03:7a:ea:8a:33:16:88:4c:d1:55:08:7a:
22:fc:83:e8:56:c6:09:71:d0:5f:2b:47:d6:c4:71:
4a:46:37:b8:de:41:d9:eb:80:c6:a0:3b:9f:b5:79:
72:57:2a:88:a8:ed:ea:c1:db:5c:42:2e:f0:5e:6f:
54:2a:c4:68:d3:f5:b7:9b:e3:66:b4:a5:61:db:77:
18:9c:bd:56:39:e2:8b:34:b2:f9:e2:7c:fb:56:e9:
66:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:CD:2C:17:8F:D3:4D:6A:38:14:2E:E9:CF:D2:4B:F9:0A:29:A4:32
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/Jc0sF4_TTWo4FC7pz9JL-QoppDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.99.56.0/21
Signature Algorithm: sha256WithRSAEncryption
22:6e:60:34:be:58:c8:3a:e1:0a:b2:64:88:7a:c1:16:c1:29:
5a:5e:8e:b8:30:62:05:f5:f0:74:84:db:f4:69:38:b2:4c:91:
ab:ed:72:2c:7a:68:8e:37:11:fa:65:d0:ef:17:76:63:41:9b:
dd:39:8a:20:c3:56:19:85:49:af:96:a7:f3:5a:f4:8e:95:2e:
03:7b:77:7b:bc:63:df:b8:f3:c4:54:9b:a6:79:c7:44:ab:63:
cb:9a:11:54:9e:75:50:2f:d4:e1:62:89:26:b1:06:1a:cf:95:
b0:90:55:c5:70:aa:f6:e1:02:03:d9:7c:91:40:13:19:85:c3:
0c:30:3a:e2:58:74:0c:2e:56:b4:d4:a8:1b:6a:31:f3:ba:f6:
7c:cf:90:ff:eb:db:87:83:f1:19:a2:23:43:3c:3e:a2:4b:ea:
3a:a0:d9:0b:9b:a1:04:68:49:07:b5:26:d5:50:d5:9d:ea:b2:
5b:dc:91:76:91:0e:55:b0:d3:4e:f1:4d:27:14:f2:59:7c:d5:
de:f8:00:e1:3f:98:01:86:68:9a:97:6d:17:c8:3e:98:1c:8c:
92:0a:9c:d1:cc:cc:41:dd:01:a4:9d:4d:1e:a9:3f:d2:30:66:
c5:aa:3f:2c:62:1a:23:94:d5:77:1d:4e:68:67:d3:9e:85:40:
d8:ad:cc:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:51 2024 by rpki-client on console-ams.rpki-client.org