Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/9YfEt5dLdblvsFrvqaEZZaXS4UI.roa
File: 9YfEt5dLdblvsFrvqaEZZaXS4UI.roa (raw, json)
Hash identifier: UAfz0q7HH90bzM5UfpNtwck5b7M3Jw6RvdV3d+H6E+E=
Subject key identifier: F5:87:C4:B7:97:4B:75:B9:6F:B0:5A:EF:A9:A1:19:65:A5:D2:E1:42
Certificate issuer: /CN=de7c82b2276cbdf130ccad046b65feab2c27ed49
Certificate serial: 018572BA55E41F19936A142E5A97D2AA1010
Authority key identifier: DE:7C:82:B2:27:6C:BD:F1:30:CC:AD:04:6B:65:FE:AB:2C:27:ED:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3nyCsidsvfEwzK0Ea2X-qywn7Uk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/9YfEt5dLdblvsFrvqaEZZaXS4UI.roa
Signing time: Mon 02 Jan 2023 13:44:52 +0000
ROA not before: Mon 02 Jan 2023 13:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52204
IP address blocks: 176.118.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:55:e4:1f:19:93:6a:14:2e:5a:97:d2:aa:10:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de7c82b2276cbdf130ccad046b65feab2c27ed49
Validity
Not Before: Jan 2 13:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f587c4b7974b75b96fb05aefa9a11965a5d2e142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:79:03:f2:22:e3:8b:b8:de:11:38:30:65:84:
15:37:19:89:2c:54:f8:c6:3a:41:58:50:0c:f6:30:
66:e1:d1:76:01:62:68:46:23:dd:44:ad:47:6b:b2:
ac:d5:d4:35:9b:4f:40:05:b8:d6:94:d6:8d:28:b5:
e4:39:90:16:b5:3e:b4:83:c2:4d:ad:a6:4a:0b:5a:
e1:2f:80:05:e1:93:42:d7:ed:09:da:a9:09:0c:d1:
e8:5f:7c:85:8c:82:9e:7c:8f:bd:b9:46:f1:72:61:
6c:9f:94:6c:b8:89:e8:24:8c:51:24:2d:6a:de:db:
95:c0:98:59:73:08:74:f1:d6:1e:26:d1:f2:23:74:
ca:a3:b6:d4:e0:52:3a:68:9d:45:35:a1:37:76:2e:
3f:a9:7d:81:1a:eb:2c:93:35:01:60:1c:35:e9:39:
53:f1:0d:f7:11:7c:74:8b:76:80:f6:ef:66:9a:f2:
08:bf:39:00:82:24:be:b5:b6:0d:37:a9:e1:27:ad:
b1:12:b6:f9:ff:9e:d1:d8:96:c1:4b:63:6d:95:e1:
39:b1:a1:f7:bc:e7:5f:47:d5:03:c5:1b:57:ff:e2:
e8:41:e3:38:42:84:db:71:39:66:e3:7a:3a:e6:a4:
3c:b5:c1:af:24:bf:82:6b:2f:3e:60:31:02:fe:57:
a4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:87:C4:B7:97:4B:75:B9:6F:B0:5A:EF:A9:A1:19:65:A5:D2:E1:42
X509v3 Authority Key Identifier:
keyid:DE:7C:82:B2:27:6C:BD:F1:30:CC:AD:04:6B:65:FE:AB:2C:27:ED:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3nyCsidsvfEwzK0Ea2X-qywn7Uk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/9YfEt5dLdblvsFrvqaEZZaXS4UI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/6fa5df-fb9f-4ae5-ba89-7faf7c1de7b0/1/3nyCsidsvfEwzK0Ea2X-qywn7Uk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.184.0/24
Signature Algorithm: sha256WithRSAEncryption
75:d2:d3:fc:f4:7a:8a:28:a3:8b:98:fe:ad:89:2f:f9:41:31:
a5:fc:34:0e:c8:69:10:27:b8:53:34:59:fb:70:79:16:63:4a:
f3:1e:20:a0:ed:dc:f0:12:f9:86:2a:08:56:0e:e0:9c:48:ac:
0d:38:19:73:23:75:7a:72:8f:41:de:0c:b5:de:f1:f3:a7:b2:
95:3c:67:1a:36:d7:53:6c:33:4d:94:9d:f7:fd:b6:f0:c6:92:
f5:d9:68:70:ec:6d:92:c8:dc:16:33:03:ff:2d:85:50:02:0b:
85:27:ec:c9:f7:f9:da:42:c6:14:84:52:78:41:d2:38:80:cc:
7f:34:10:a2:28:40:89:c1:5d:48:94:7b:f7:dc:dd:ea:a8:0b:
82:2e:6d:00:6f:6d:bb:41:52:04:bb:1b:30:a2:15:17:fa:b4:
b4:9e:14:32:34:2f:59:6b:dd:3c:50:e7:20:fa:4a:7b:5f:de:
9e:e3:e4:3c:97:ad:50:36:09:55:c3:a2:9c:d9:1f:2a:86:ef:
b7:ec:44:7a:dc:42:49:e8:59:4e:a7:e9:08:36:40:29:7b:4d:
e6:2c:3d:a7:07:e5:d3:dc:23:aa:5c:37:1e:61:06:01:4a:28:
2c:29:9d:75:ca:88:f8:e3:d9:6b:9b:e0:01:43:f7:47:35:fa:
22:66:ce:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:10 2024 by rpki-client on console-ams.rpki-client.org