Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/Z6xYDDe0nVa3bmJjKevPyXQ-uy0.roa
File: Z6xYDDe0nVa3bmJjKevPyXQ-uy0.roa (raw, json)
Hash identifier: kxiH3zh8Gp5A3Mr7y+xJaXcuTsyRINzpw0H04c2TDvM=
Subject key identifier: 67:AC:58:0C:37:B4:9D:56:B7:6E:62:63:29:EB:CF:C9:74:3E:BB:2D
Certificate issuer: /CN=a52fc60d36e28bb8df145c84acab19cfa53b025a
Certificate serial: 01867EC79ED758D82E70B4E02252DD2277C8
Authority key identifier: A5:2F:C6:0D:36:E2:8B:B8:DF:14:5C:84:AC:AB:19:CF:A5:3B:02:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pS_GDTbii7jfFFyErKsZz6U7Alo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/Z6xYDDe0nVa3bmJjKevPyXQ-uy0.roa
Signing time: Thu 23 Feb 2023 14:57:36 +0000
ROA not before: Thu 23 Feb 2023 14:57:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1921
IP address blocks: 176.97.158.0/24 maxlen: 24
2001:67c:10b8::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Apr 2023 13:11:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:c7:9e:d7:58:d8:2e:70:b4:e0:22:52:dd:22:77:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a52fc60d36e28bb8df145c84acab19cfa53b025a
Validity
Not Before: Feb 23 14:57:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67ac580c37b49d56b76e626329ebcfc9743ebb2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b1:ee:20:ad:9b:60:32:4b:75:2f:e8:c9:88:
56:50:5c:b9:98:2c:b4:44:ee:be:7b:01:ac:20:e2:
06:f6:a5:fc:7c:99:db:6c:67:80:16:78:b0:21:73:
2a:af:fb:25:e0:e0:26:ae:a2:bb:35:ce:9e:5c:3a:
f4:45:ce:74:03:0c:ce:57:b1:eb:f0:5c:c1:71:e2:
14:1f:80:c3:1b:e8:83:00:16:50:80:21:be:5e:30:
fd:b5:3b:65:16:d6:63:ef:ff:5f:90:a7:e1:d9:f9:
77:c2:88:af:f9:16:50:ab:d0:95:9c:0f:ba:19:80:
75:53:2c:eb:29:8b:53:f6:0d:1d:74:52:08:ca:e7:
1b:ac:b2:a5:c4:c9:6a:1e:b5:34:b3:58:1e:dd:4b:
38:3c:d0:06:7d:4a:53:fe:29:34:01:d7:ea:71:f9:
ce:9b:86:8a:71:30:c9:fa:a1:63:e9:14:03:7d:75:
32:2d:c9:1d:ed:b3:7f:a4:f8:df:03:62:90:bd:e5:
88:2f:98:b7:21:5a:ea:7f:5e:e0:9a:18:d8:e2:fe:
e7:13:15:33:3d:e4:12:06:5a:85:90:34:ea:65:65:
67:93:2c:78:7a:de:60:2d:60:15:f9:39:48:69:7d:
3d:c8:db:42:d2:f0:a6:3d:5e:d0:f4:55:4a:d2:e8:
5c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AC:58:0C:37:B4:9D:56:B7:6E:62:63:29:EB:CF:C9:74:3E:BB:2D
X509v3 Authority Key Identifier:
keyid:A5:2F:C6:0D:36:E2:8B:B8:DF:14:5C:84:AC:AB:19:CF:A5:3B:02:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pS_GDTbii7jfFFyErKsZz6U7Alo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/Z6xYDDe0nVa3bmJjKevPyXQ-uy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f0b960-86d8-4062-a597-9b4a2d5f3a76/1/pS_GDTbii7jfFFyErKsZz6U7Alo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.158.0/24
IPv6:
2001:67c:10b8::/48
Signature Algorithm: sha256WithRSAEncryption
89:ae:e8:0d:12:23:8c:16:16:c7:97:62:bf:48:3b:b6:9d:b7:
75:b7:78:32:31:ed:05:7e:ca:94:31:1e:01:ea:d5:89:64:7b:
e5:60:20:f6:ab:2e:10:7e:f2:8b:49:56:0b:48:e1:7e:86:90:
e3:af:bd:ab:69:53:9b:86:61:b9:59:b7:9d:0d:05:9f:43:4f:
97:3f:08:57:9a:85:f7:0c:78:bf:db:ef:49:30:dd:62:7c:a5:
c9:de:8b:32:ee:13:cd:f0:94:73:cd:e5:46:3b:ea:b3:6a:80:
79:bb:fa:7d:11:bd:c8:28:19:b0:90:c9:44:e2:8f:ef:30:be:
3f:1d:ed:03:3d:dd:f0:7b:c0:fd:f9:2a:0b:04:82:fd:3d:50:
52:67:c3:06:e3:57:96:7f:75:72:57:07:a7:3d:d6:7d:9c:ac:
5d:cf:f5:a1:b9:c3:6c:fb:ed:5e:dc:21:57:a7:14:5d:89:e1:
ad:7d:2e:c1:d6:f7:4f:a1:ff:95:86:eb:3d:fb:4c:c3:3f:45:
7b:08:9e:47:44:eb:3b:94:68:01:8a:57:b2:45:55:42:93:2e:
f7:1f:d3:c0:0a:18:4d:d4:e6:15:67:6c:50:69:b3:ab:50:02:
a1:15:ca:13:4a:86:e3:e6:48:4b:63:f0:ac:60:64:b1:69:11:
a1:5e:1d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:39 2024 by rpki-client on console-ams.rpki-client.org