Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/tcIRfANXXI2iR46qfCEaTQWFtmc.roa
File: tcIRfANXXI2iR46qfCEaTQWFtmc.roa (raw, json)
Hash identifier: UJ+xSS7Xs05XmgBRWMfMOj6nMAy4vkSGiSJyejFW38c=
Subject key identifier: B5:C2:11:7C:03:57:5C:8D:A2:47:8E:AA:7C:21:1A:4D:05:85:B6:67
Certificate issuer: /CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f
Certificate serial: 0189E3AE4E55B58F2EE63DF48990390CCA79
Authority key identifier: 0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/tcIRfANXXI2iR46qfCEaTQWFtmc.roa
Signing time: Fri 11 Aug 2023 08:19:58 +0000
ROA not before: Fri 11 Aug 2023 08:19:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205478
IP address blocks: 176.113.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e3:ae:4e:55:b5:8f:2e:e6:3d:f4:89:90:39:0c:ca:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b78b2d3f62700fe67e593b5a33d1cf91789252f
Validity
Not Before: Aug 11 08:19:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5c2117c03575c8da2478eaa7c211a4d0585b667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2d:f4:fe:a7:e2:72:8a:db:6d:e6:42:58:d2:
54:bb:bd:3c:fc:0a:41:77:1a:c7:9e:ff:3b:18:ed:
a3:b5:07:91:d5:a3:e3:6d:3c:2f:12:37:60:b3:04:
3b:85:3a:75:2c:ae:32:55:92:3e:d4:45:16:e3:a0:
28:62:4e:ef:a9:72:6a:1c:b0:c8:a4:ba:25:44:62:
a8:26:53:2d:f1:21:f0:b9:ff:f4:18:51:02:38:35:
a2:36:28:95:73:39:c0:be:5f:5e:7e:3f:79:08:f3:
de:a0:c4:03:f9:38:26:d7:38:a7:ce:bc:aa:9f:64:
0c:50:27:83:d4:6a:6f:07:c3:28:6b:72:52:4b:3f:
e3:be:22:70:54:1b:70:0b:f1:f6:a0:35:f0:2c:c2:
fb:f0:ef:64:c1:3e:f2:eb:42:58:ce:02:b6:9c:a7:
36:2f:9e:9c:45:d9:c8:cb:97:72:dc:ae:74:95:7b:
54:56:40:b1:ff:92:84:0c:7b:43:f8:3b:13:7d:08:
b2:45:ec:e8:e8:55:07:ba:2c:a1:1c:40:b0:66:37:
d7:ca:7e:c7:ee:82:00:e8:d3:90:b8:9b:42:9e:68:
49:2a:6f:3a:fc:a6:5f:9e:c9:96:ad:85:28:9a:31:
7c:fa:9e:97:07:c3:13:ff:9d:ac:3c:9c:02:4a:4b:
dd:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C2:11:7C:03:57:5C:8D:A2:47:8E:AA:7C:21:1A:4D:05:85:B6:67
X509v3 Authority Key Identifier:
keyid:0B:78:B2:D3:F6:27:00:FE:67:E5:93:B5:A3:3D:1C:F9:17:89:25:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/tcIRfANXXI2iR46qfCEaTQWFtmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd7047-0816-4821-8dea-6078efd0785e/1/C3iy0_YnAP5n5ZO1oz0c-ReJJS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.113.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:45:4f:33:64:0b:7a:8f:9c:df:da:49:6d:30:b9:87:26:af:
24:7d:09:72:c6:bc:30:c5:58:49:7f:eb:85:21:1b:55:3f:9c:
41:f3:dd:4f:6a:32:e4:be:96:a6:82:e7:1b:67:86:6c:68:b1:
42:99:97:2d:d1:bc:a6:f0:4d:80:d6:b7:41:d7:b5:73:34:48:
e9:fc:5c:d5:7f:87:59:ec:11:fc:b7:1e:63:c2:85:9c:7c:99:
41:f1:64:59:aa:a4:c9:ae:5f:a7:3a:64:5c:49:a4:c3:46:89:
4e:6d:83:f4:b0:14:9a:39:4d:22:21:17:14:51:b1:8f:b5:7e:
38:b4:51:38:84:40:b3:ed:c4:b3:79:e7:00:d5:11:08:38:ed:
5d:2a:db:61:c2:4a:0d:39:8e:73:bd:dd:8e:a4:b2:53:d4:cd:
ea:9d:54:8e:6d:c6:44:f5:bc:5e:ea:a4:08:8a:02:6f:6b:b8:
be:ce:80:18:d5:84:cc:65:42:8e:94:9a:59:38:76:cd:ac:5f:
1f:5c:d0:d1:24:f6:4c:e7:53:a9:df:75:37:ef:05:86:52:89:
f8:10:1f:cc:67:28:44:6a:97:3c:c1:66:8f:ca:e3:1e:a6:a4:
95:a4:c8:4a:09:14:43:14:d9:7c:1c:e8:8d:41:3a:ef:54:e7:
9b:bd:0e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:41 2024 by rpki-client on console-ams.rpki-client.org