Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/s4LgdkIm7LZgrFcQjFym_Pt2Dl0.roa
File: s4LgdkIm7LZgrFcQjFym_Pt2Dl0.roa (raw, json)
Hash identifier: Ekdhcte0tmiswnxxoerCcq4KYBk1XSWEl7an5L48JM4=
Subject key identifier: B3:82:E0:76:42:26:EC:B6:60:AC:57:10:8C:5C:A6:FC:FB:76:0E:5D
Certificate issuer: /CN=17be827a580de61538ddefa28239468c4e901b40
Certificate serial: 01856CC16D2916684319CA1B7F51D652CEF0
Authority key identifier: 17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/s4LgdkIm7LZgrFcQjFym_Pt2Dl0.roa
Signing time: Sun 01 Jan 2023 09:54:53 +0000
ROA not before: Sun 01 Jan 2023 09:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212641
IP address blocks: 176.120.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:6d:29:16:68:43:19:ca:1b:7f:51:d6:52:ce:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17be827a580de61538ddefa28239468c4e901b40
Validity
Not Before: Jan 1 09:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b382e0764226ecb660ac57108c5ca6fcfb760e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d7:1f:36:65:4e:0a:a8:39:e1:a2:a1:36:0c:
4e:a8:a6:08:14:ef:59:46:77:e7:ff:f9:61:cc:41:
d9:7f:51:c2:3f:68:1e:86:ac:dc:25:01:83:73:85:
04:3b:9f:60:eb:8d:79:a5:79:5c:52:f4:98:51:f6:
88:f0:86:e5:70:6c:fe:b3:ff:ee:c0:10:24:0b:15:
f8:f7:b6:ae:18:5a:7c:3b:e3:97:b7:31:18:bc:37:
34:0f:d8:cb:ba:36:07:fa:11:58:d2:7d:26:c9:95:
fd:70:65:71:8c:3c:d7:a9:74:0c:1d:bb:0c:d2:72:
2c:51:8f:da:57:98:26:7d:00:20:69:d6:bf:e2:0d:
f7:f5:73:69:90:cb:a1:0a:3a:c7:f4:30:4b:a8:9b:
6e:da:25:f9:37:2d:6b:9e:cb:c2:c1:c5:63:96:b6:
16:2c:61:6d:92:f6:78:97:57:fb:bb:1e:4d:02:1f:
bc:2f:16:b2:ba:ef:95:6c:7f:06:bc:08:7d:8a:b7:
24:ce:7a:81:96:a4:ee:73:4f:49:5f:59:42:f4:e2:
ee:93:5d:cf:c5:65:20:d4:04:46:60:95:47:b6:a8:
10:14:a9:3d:6f:b7:ba:f4:b4:3f:7a:7c:41:4c:8b:
93:8e:e5:ab:37:db:18:5f:e0:a9:6c:4e:4e:8f:2b:
ec:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:82:E0:76:42:26:EC:B6:60:AC:57:10:8C:5C:A6:FC:FB:76:0E:5D
X509v3 Authority Key Identifier:
keyid:17:BE:82:7A:58:0D:E6:15:38:DD:EF:A2:82:39:46:8C:4E:90:1B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F76CelgN5hU43e-igjlGjE6QG0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/s4LgdkIm7LZgrFcQjFym_Pt2Dl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/490e01-caf9-4d44-8f57-a1d9d0f88629/1/F76CelgN5hU43e-igjlGjE6QG0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.120.108.0/24
Signature Algorithm: sha256WithRSAEncryption
21:d1:fa:f8:b4:0f:ac:4b:62:8b:29:da:7d:1c:29:03:99:22:
5e:50:67:8e:b5:c6:95:89:93:80:ba:fe:61:20:0c:72:ed:78:
f6:45:12:3f:13:3e:0d:37:31:3c:4d:8c:37:25:fd:49:31:82:
00:c6:e4:46:2c:17:72:af:ab:49:47:e6:c9:e0:92:df:40:59:
c2:4e:16:44:fe:14:8b:a5:26:64:cc:7f:bc:d0:19:42:89:93:
5a:be:32:5b:15:f3:5c:2b:5a:83:44:55:25:48:5e:ea:8f:78:
72:49:f8:c4:d0:c9:54:46:32:9a:2a:e1:75:0b:2e:b0:de:81:
94:a6:32:35:1e:a8:9f:f1:d4:cb:2a:aa:6c:c3:80:6e:dc:a4:
d2:d0:70:a5:93:04:68:30:f8:e2:70:fd:8d:2f:91:a1:cf:34:
9b:d8:7e:20:35:68:2f:3a:df:b3:b9:a1:fb:4b:d8:28:8a:72:
09:b5:f7:1b:40:e0:57:b9:b5:87:c3:76:21:89:36:61:fb:25:
22:5d:fd:ed:a5:6d:5a:dd:b6:61:e9:11:da:c2:fe:b2:02:b6:
7c:94:72:22:1c:68:8c:74:ae:c7:01:c6:36:9b:b8:83:dd:97:
e3:23:b5:74:5e:bf:ce:99:e9:4a:01:01:3f:04:7d:48:e7:91:
c0:67:3d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:40 2024 by rpki-client on console-ams.rpki-client.org