Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/KvOpVDwvNTJY1xJnwJMF-kIY-Sw.roa
File: KvOpVDwvNTJY1xJnwJMF-kIY-Sw.roa (raw, json)
Hash identifier: 49m2GmO3fq5l+SKWrgFTTHo+6WWdFHw8UGdkV4fj9r4=
Subject key identifier: 2A:F3:A9:54:3C:2F:35:32:58:D7:12:67:C0:93:05:FA:42:18:F9:2C
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01856C785D23F9C05FC3C33A79CB714AA6A7
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/KvOpVDwvNTJY1xJnwJMF-kIY-Sw.roa
Signing time: Sun 01 Jan 2023 08:35:05 +0000
ROA not before: Sun 01 Jan 2023 08:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142111
IP address blocks: 176.105.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 17:20:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:5d:23:f9:c0:5f:c3:c3:3a:79:cb:71:4a:a6:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 08:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2af3a9543c2f353258d71267c09305fa4218f92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:64:e4:3a:35:c3:1a:b0:f4:5d:ca:ac:41:ab:
1d:d6:5d:f9:de:19:91:93:72:21:2b:38:a4:d0:d4:
f6:e0:f6:07:ab:2b:fe:5a:57:05:39:13:3c:f6:a1:
cb:e1:60:47:ac:3c:77:9d:f8:0c:9b:58:85:7b:bc:
2c:ab:3c:01:70:0b:72:5e:a1:42:6b:6e:67:1d:87:
64:ee:92:0b:4e:03:2f:46:25:7a:0f:01:8d:12:bb:
87:d3:be:13:73:01:83:ae:7a:4c:30:7e:b9:71:9e:
67:a0:06:65:fb:b4:38:ac:dd:be:e2:af:84:b0:d6:
0a:47:e2:ab:1a:50:fc:72:88:77:c0:50:19:58:4c:
77:00:e6:2e:25:4d:89:a4:20:89:a4:e9:4c:06:ea:
fe:04:2a:bf:b6:e7:12:f5:b5:de:69:b6:6a:03:be:
5a:7d:9d:9b:ea:67:aa:d9:f4:d1:6d:1c:3c:17:87:
4c:ec:c4:65:f2:c6:ef:98:de:22:e6:c8:a4:6c:60:
3a:72:b8:84:07:15:be:d5:55:d8:8f:3e:20:63:f9:
a6:f4:c2:eb:ee:60:19:e0:15:29:85:c2:3d:13:12:
3e:ab:11:f4:4b:c2:6b:43:cf:9e:fb:70:15:6d:0b:
6d:f8:ae:0a:77:19:08:cd:00:ea:6a:9d:30:c6:f1:
9b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F3:A9:54:3C:2F:35:32:58:D7:12:67:C0:93:05:FA:42:18:F9:2C
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/KvOpVDwvNTJY1xJnwJMF-kIY-Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.231.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:85:87:e0:bc:7e:68:65:c0:da:5a:10:3d:be:fe:4d:66:7f:
7b:3e:7e:86:e1:73:1b:51:5b:c2:e2:ca:b8:0b:87:db:25:ea:
6c:9d:4b:78:db:f6:e2:1c:e7:3b:e3:46:a2:e9:b6:fe:f1:6c:
03:f9:8b:bc:96:f0:0a:ad:04:78:ac:10:42:dc:d7:db:1f:98:
56:42:aa:1b:59:39:a8:25:a1:57:57:32:c2:35:e0:17:7a:a6:
ce:fd:a0:e6:87:73:da:60:57:44:4d:cd:05:a8:7e:ff:36:7d:
bf:c7:d8:8b:34:65:64:be:40:ab:be:88:c0:c0:47:af:0b:d9:
4b:30:cb:01:58:5d:9d:59:52:f8:82:b8:f7:81:5e:66:b3:b1:
0f:14:c9:b9:78:2d:d1:cb:7c:2b:eb:db:a1:a2:9a:15:6f:ee:
c6:a6:d6:53:1e:7f:f8:6d:ef:89:53:0f:30:fc:96:5b:42:bb:
43:26:de:92:d2:a4:4f:d5:3d:77:2f:66:c2:62:36:5b:b9:1a:
1c:82:74:28:da:38:8d:83:bc:02:ae:42:b4:9d:00:d7:39:d3:
11:f1:d6:88:12:e4:ed:d4:a3:97:e7:a5:45:e8:20:c9:03:2b:
15:d4:a9:ed:99:1e:49:e2:f3:a8:86:09:93:ec:27:38:10:1f:
f8:96:52:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org