Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/DW8tprx5iSw2rxMT2EX5lN5jEsw.roa
File: DW8tprx5iSw2rxMT2EX5lN5jEsw.roa (raw, json)
Hash identifier: 9yhITUjV3/rs8jEJ8YIg7XUOToQHnYv6BszTfdxO01c=
Subject key identifier: 0D:6F:2D:A6:BC:79:89:2C:36:AF:13:13:D8:45:F9:94:DE:63:12:CC
Certificate issuer: /CN=9c3cfcde13b660b5c831dafbe1bfbf68df9fbe39
Certificate serial: 018F1F3A524929ED5C9484E20311BF371ED1
Authority key identifier: 9C:3C:FC:DE:13:B6:60:B5:C8:31:DA:FB:E1:BF:BF:68:DF:9F:BE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDz83hO2YLXIMdr74b-_aN-fvjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/DW8tprx5iSw2rxMT2EX5lN5jEsw.roa
Signing time: Sat 27 Apr 2024 11:04:26 +0000
ROA not before: Sat 27 Apr 2024 11:04:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 176.97.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 19:14:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1f:3a:52:49:29:ed:5c:94:84:e2:03:11:bf:37:1e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c3cfcde13b660b5c831dafbe1bfbf68df9fbe39
Validity
Not Before: Apr 27 11:04:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d6f2da6bc79892c36af1313d845f994de6312cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:35:2d:2e:7e:53:9f:5a:a3:47:04:2f:67:56:
38:75:fb:a5:45:b2:1e:ec:69:d6:45:db:1e:03:b4:
0f:c1:ec:e1:9f:13:04:fb:f7:b5:5f:42:2e:df:53:
f5:a5:72:77:d7:78:5e:ad:2d:44:15:ae:d4:5c:27:
dc:f5:df:95:91:e8:81:94:9f:bc:70:b2:49:e5:8f:
a5:08:6f:6c:75:43:e7:d2:d3:cc:3b:5d:00:97:ce:
03:80:30:03:47:44:ae:df:a7:38:24:9a:1a:ed:75:
33:99:37:71:ef:19:d5:c9:93:91:27:50:ed:cd:82:
c0:c7:b3:17:55:af:28:dc:20:95:de:fb:87:e3:49:
a0:fb:c6:37:59:05:23:61:e5:01:7b:47:0a:04:6b:
7f:f0:ee:9c:1b:88:4e:ce:a5:6b:1f:2b:3c:ab:dc:
7c:21:d3:1f:35:59:d3:e6:44:dd:87:1c:b1:3a:1e:
9f:e1:9f:ba:1c:3b:ed:f6:c3:17:72:1f:77:80:1b:
fd:ee:66:83:29:ec:3e:00:c7:db:03:d3:49:dc:23:
c9:df:4c:1e:a3:93:6b:1b:2b:8c:87:8f:5e:eb:9b:
b7:29:d4:12:0a:6e:67:9a:af:c0:61:9b:bf:fe:e9:
eb:7a:de:6d:ff:74:38:0d:12:fa:2a:e2:d0:a8:95:
bd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6F:2D:A6:BC:79:89:2C:36:AF:13:13:D8:45:F9:94:DE:63:12:CC
X509v3 Authority Key Identifier:
keyid:9C:3C:FC:DE:13:B6:60:B5:C8:31:DA:FB:E1:BF:BF:68:DF:9F:BE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDz83hO2YLXIMdr74b-_aN-fvjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/DW8tprx5iSw2rxMT2EX5lN5jEsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3c034f-c243-4a88-9070-6879cc26d7b6/1/nDz83hO2YLXIMdr74b-_aN-fvjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.212.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:5f:c5:a2:49:30:23:45:0a:61:01:c4:bf:1b:32:eb:6f:ff:
41:d9:97:b3:c0:8d:c7:eb:17:14:ed:02:19:02:aa:84:6f:f3:
1a:33:05:48:65:d8:f1:a7:b8:59:32:da:e7:93:6c:21:2c:e6:
e0:2f:89:ba:7d:e0:af:d1:c2:a4:59:8a:c9:99:49:6b:69:d7:
f1:4e:2c:01:80:ea:f2:3e:ba:b4:f7:26:35:15:14:e4:b9:a5:
0e:56:ad:20:b6:d5:db:cc:b1:2c:61:c6:60:10:1f:cb:ec:d9:
a0:f6:5c:b4:19:ba:12:87:6c:b9:7b:52:63:c8:8c:2c:7b:11:
58:10:a3:f4:17:ff:e5:19:aa:90:61:c7:fe:ca:33:59:2c:6c:
eb:d6:81:3b:10:a7:32:99:50:0c:f7:f1:0e:6e:bf:e3:1a:e0:
c8:a9:69:d3:08:6b:d7:fb:7f:d9:a5:a4:02:9f:f3:5f:a4:07:
54:04:43:94:02:c5:02:67:a8:e6:e5:31:c4:a3:42:31:2c:f8:
f3:ce:08:23:4a:3f:1b:f3:e7:19:66:4e:e6:e4:e2:47:cb:34:
b3:15:43:00:24:dd:1c:8f:4f:4b:94:ca:64:2b:a7:d4:b1:fc:
8b:26:19:ca:84:8e:bf:0c:bd:bb:39:16:cc:b9:10:4f:a1:b7:
45:78:d7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org