Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/appt3HIph1MKfcON2gYfZXfYyRc.roa
File: appt3HIph1MKfcON2gYfZXfYyRc.roa (raw, json)
Hash identifier: /0HJRjRceWZrngcoXipTDFyaFSs6oE7GT0Vb7OQpxRQ=
Subject key identifier: 6A:9A:6D:DC:72:29:87:53:0A:7D:C3:8D:DA:06:1F:65:77:D8:C9:17
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A341311C6FA2B33A6553B9A152044
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/appt3HIph1MKfcON2gYfZXfYyRc.roa
Signing time: Sun 01 Jan 2023 03:05:03 +0000
ROA not before: Sun 01 Jan 2023 03:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60005
IP address blocks: 141.101.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:34:13:11:c6:fa:2b:33:a6:55:3b:9a:15:20:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a9a6ddc722987530a7dc38dda061f6577d8c917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e1:ee:f0:6e:e4:5e:1a:1a:93:6c:0d:b1:52:
df:c6:5b:39:fb:d7:e4:2c:7d:07:b8:f6:bb:ef:a6:
75:5b:2d:14:1d:76:4e:13:c8:bf:7a:77:b4:a9:8b:
74:c4:d0:a8:64:59:bf:a0:69:58:f2:96:bb:56:93:
30:19:d0:1f:8c:bd:75:d7:36:98:bc:25:e3:f4:88:
28:e7:d6:f5:0f:34:a7:66:a8:dc:a2:cf:b1:2f:a5:
94:a2:6a:7e:3e:fa:1c:48:c4:77:61:8b:60:c4:f2:
e1:ec:91:e2:58:b7:46:ff:49:59:6a:2c:44:f3:0b:
f6:d1:db:5e:06:f5:6b:14:25:2d:fd:8b:e7:ec:cc:
6f:15:7d:a1:fd:e1:4f:f3:f8:1a:10:c8:92:8a:35:
27:99:4b:60:ee:27:ed:18:9e:6d:5a:f7:34:44:75:
ce:db:26:a7:1b:c4:55:87:46:05:55:d2:d0:bf:65:
5f:8c:32:35:5f:a2:9f:8a:89:7b:25:93:69:7a:3b:
32:1b:7a:ff:cc:cf:78:56:f8:66:45:8a:37:69:e1:
b6:09:87:b0:95:5a:b7:0a:dc:23:77:88:76:23:e8:
66:86:7d:96:37:c4:96:ee:2f:e4:ff:fd:9e:9d:e2:
f3:0b:b5:d0:bf:68:79:c7:d0:8e:56:7d:79:6a:30:
94:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:9A:6D:DC:72:29:87:53:0A:7D:C3:8D:DA:06:1F:65:77:D8:C9:17
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/appt3HIph1MKfcON2gYfZXfYyRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.176.0/24
Signature Algorithm: sha256WithRSAEncryption
44:b9:6e:d6:37:6f:68:94:02:4d:80:af:57:a7:9c:29:c1:a3:
a7:02:1f:b7:38:cb:55:ce:c0:c4:e2:db:2c:54:40:23:de:a8:
10:da:40:db:87:aa:00:ad:3c:ea:94:ef:24:c4:dd:df:63:9c:
83:7d:fd:30:da:26:b1:ba:28:76:40:24:39:bb:39:f6:ae:1f:
66:3b:7f:01:f2:61:cc:a7:d2:14:27:b9:03:49:4d:1f:be:c9:
4c:5c:84:16:c1:4c:10:ae:2b:8b:bf:36:65:5d:f5:9b:f1:e9:
c4:8c:1d:c7:99:a5:94:b9:be:f2:9d:88:00:99:8e:db:7d:84:
a7:b4:ad:77:53:0c:c6:d6:d6:85:31:dd:82:d2:69:55:38:5d:
ed:73:d8:b8:b9:1c:14:50:6b:15:7b:01:ba:e9:b0:28:94:36:
93:31:40:7c:33:33:ab:d8:9f:be:62:be:0b:4d:fa:4d:ec:cb:
09:c4:81:91:be:ca:6b:d8:90:3d:c4:43:c4:98:22:60:88:46:
ae:28:f0:75:c6:b1:91:1a:3b:2f:d8:6d:39:b4:45:d5:54:73:
13:0b:5c:81:c2:1f:fc:e2:a0:1c:07:52:12:48:aa:1b:65:0c:
d6:bf:e4:2c:8e:f2:f2:03:9e:3d:07:12:8c:92:ec:e9:be:e0:
83:6e:6c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org