Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/h9HHKJ3K9bcb_xxvfknarhS8PoE.roa
File: h9HHKJ3K9bcb_xxvfknarhS8PoE.roa (raw, json)
Hash identifier: XYEbWqjhvpqDqY7tyjk+0EDnbgBjwHYwJ874SuH3Sm8=
Subject key identifier: 87:D1:C7:28:9D:CA:F5:B7:1B:FF:1C:6F:7E:49:DA:AE:14:BC:3E:81
Certificate issuer: /CN=17be827a580de61538ddefa28239468c4e901b40
Certificate serial: 01876A74F3E54E1880CFED08B933A3AA2869
Authority key identifier: 17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/h9HHKJ3K9bcb_xxvfknarhS8PoE.roa
Signing time: Mon 10 Apr 2023 09:17:42 +0000
ROA not before: Mon 10 Apr 2023 09:17:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48775
IP address blocks: 176.120.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6a:74:f3:e5:4e:18:80:cf:ed:08:b9:33:a3:aa:28:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17be827a580de61538ddefa28239468c4e901b40
Validity
Not Before: Apr 10 09:17:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87d1c7289dcaf5b71bff1c6f7e49daae14bc3e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4b:75:06:78:32:fc:d7:dd:bd:fe:6f:f1:3d:
aa:88:09:1b:31:f0:38:d5:35:2e:24:cc:9d:dd:a9:
ce:31:9c:18:01:67:26:34:e4:08:dd:f6:fd:ff:e9:
d7:36:f7:7d:9c:b5:c7:10:e9:81:9d:8e:b3:65:20:
86:e6:a5:76:96:63:be:fe:9d:68:7a:69:3d:38:2a:
d1:91:92:73:de:73:22:4a:ca:e1:d9:39:83:29:50:
97:4d:8e:c0:2f:09:ae:77:0f:89:ce:66:6b:bd:41:
f9:20:e6:3a:b0:c6:b4:d8:74:d7:d2:3d:18:cd:61:
c7:47:e2:2b:76:ca:4e:87:54:8c:da:73:e6:b0:61:
47:1b:c5:cb:67:96:65:29:94:61:cf:7c:93:d5:4d:
f4:12:8b:e1:6c:22:3b:32:fc:a6:c6:5f:49:32:c7:
d6:65:27:45:ca:de:8c:66:f2:09:5a:a4:0d:d4:b9:
8c:60:6d:3b:84:46:23:f7:68:3a:54:a0:dd:90:6e:
7b:a4:d0:99:b0:cb:5a:05:90:99:c2:64:f3:75:ef:
5e:09:9c:6d:46:ff:5c:2e:46:a3:03:d1:36:73:af:
86:9e:5b:b5:f1:1e:5b:1d:d0:58:2a:23:05:2e:76:
3a:20:72:82:86:f2:61:60:64:10:39:2e:62:61:08:
4e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D1:C7:28:9D:CA:F5:B7:1B:FF:1C:6F:7E:49:DA:AE:14:BC:3E:81
X509v3 Authority Key Identifier:
keyid:17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/h9HHKJ3K9bcb_xxvfknarhS8PoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/F76CelgN5hU43e-igjlGjE6QG0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.96.0/24
Signature Algorithm: sha256WithRSAEncryption
09:91:16:40:47:ab:a5:6e:62:49:5f:f7:3f:6b:6c:cc:97:27:
13:6a:11:ca:ac:97:7d:c8:77:56:4d:44:81:e6:37:dc:ee:32:
ba:92:3b:14:2b:e1:db:a5:19:2d:51:ff:79:7f:79:3d:9d:5f:
f9:21:da:9d:cd:a9:a2:09:b2:d5:d7:74:44:8e:bf:1c:a6:5f:
59:74:5d:b7:7b:d3:2a:9f:97:94:9e:0a:27:f4:91:61:8c:62:
45:74:a6:7a:ea:82:eb:5a:1e:fd:52:4a:7e:ae:9c:38:4b:a7:
af:57:a4:8d:a9:55:98:17:8e:21:54:c1:8f:3b:11:9b:cd:d8:
5d:f6:b0:e7:d8:53:29:68:05:5a:dc:0e:d5:32:fc:8d:c3:d2:
45:47:ed:bb:02:33:ac:f2:a3:22:04:26:66:2c:f4:bd:95:48:
a1:d5:6e:ab:fc:e5:c3:f5:61:ab:b8:7b:0f:f1:36:c4:ed:af:
b1:ec:03:a1:8f:27:97:86:1e:2a:26:d5:20:a9:57:68:71:2c:
fc:a2:75:73:c7:dc:1c:b8:7e:4a:93:65:63:f6:0d:24:61:b1:
9d:5a:e6:35:95:a2:7b:96:f3:c7:aa:ce:d4:a0:0f:c1:e9:c4:
0a:45:48:a4:ca:87:33:36:08:f2:f9:d0:7f:ce:90:3a:9e:ca:
2c:bc:38:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:40 2024 by rpki-client on console-ams.rpki-client.org