Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/dVME4zn0pTdaCNCBSFcS4UUNycA.roa
File: dVME4zn0pTdaCNCBSFcS4UUNycA.roa (raw, json)
Hash identifier: /FL+BMpTCZVPrMjwpXvVRetsnwUti5Va44JnIq3CtAs=
Subject key identifier: 75:53:04:E3:39:F4:A5:37:5A:08:D0:81:48:57:12:E1:45:0D:C9:C0
Certificate issuer: /CN=a41870fc1854a3b093938c09cf60651ba993ffc6
Certificate serial: 01856F9DE762AE79592156B909C91166F86A
Authority key identifier: A4:18:70:FC:18:54:A3:B0:93:93:8C:09:CF:60:65:1B:A9:93:FF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/dVME4zn0pTdaCNCBSFcS4UUNycA.roa
Signing time: Sun 01 Jan 2023 23:14:57 +0000
ROA not before: Sun 01 Jan 2023 23:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57460
IP address blocks: 176.100.56.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:e7:62:ae:79:59:21:56:b9:09:c9:11:66:f8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a41870fc1854a3b093938c09cf60651ba993ffc6
Validity
Not Before: Jan 1 23:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=755304e339f4a5375a08d081485712e1450dc9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d4:9a:e0:32:dc:95:d2:1f:4d:50:22:f6:ce:
ae:50:1d:96:28:d6:e4:7e:50:6f:f6:62:bf:10:d4:
e9:a7:bf:b7:c0:6a:e6:c6:cb:19:18:a1:f8:5d:a3:
f2:a3:05:2a:02:74:f7:b3:49:5e:16:5a:d8:51:c2:
ae:31:b3:25:68:73:c0:80:a1:15:5c:8b:1d:e6:e1:
7e:0d:4e:7e:ea:55:8f:d3:5d:0e:36:f0:73:b0:58:
90:e3:bf:a5:22:c7:33:d0:08:7c:b2:83:53:ea:a3:
a3:00:01:35:ee:cd:17:89:b9:61:ad:17:7b:ce:03:
e6:46:29:d4:1a:ac:91:43:50:aa:ec:6d:c6:ee:0e:
06:35:78:53:ae:52:54:f7:93:e3:94:e6:7a:8b:b3:
60:24:16:59:6e:46:d8:e0:3f:81:df:03:57:42:47:
74:9b:49:78:0b:65:21:17:5c:54:49:5c:2b:2b:12:
f1:60:be:40:c7:b5:58:63:d8:1f:aa:1e:8a:d0:07:
82:9d:64:57:f8:fb:d2:da:c8:9a:13:36:0f:fd:5c:
aa:4d:16:86:17:87:a3:49:a0:05:57:84:65:b4:48:
d6:5c:f8:97:2b:9a:c5:aa:bd:9c:d3:00:78:00:91:
18:a9:7e:ce:5f:34:bf:a5:bf:c8:16:1c:79:31:58:
9b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:53:04:E3:39:F4:A5:37:5A:08:D0:81:48:57:12:E1:45:0D:C9:C0
X509v3 Authority Key Identifier:
keyid:A4:18:70:FC:18:54:A3:B0:93:93:8C:09:CF:60:65:1B:A9:93:FF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/dVME4zn0pTdaCNCBSFcS4UUNycA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/778c47-4609-43d3-aeef-79c8a2472a0c/1/pBhw_BhUo7CTk4wJz2BlG6mT_8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.56.0/21
Signature Algorithm: sha256WithRSAEncryption
30:e7:2e:31:69:15:bf:bd:46:03:5e:22:f6:7d:7f:27:e4:95:
e9:65:18:4a:c4:fa:72:1c:d1:87:82:f0:47:1f:a9:70:43:bf:
cf:3c:ce:55:01:3c:18:b5:7a:54:32:b5:dc:51:51:16:46:bc:
4a:bc:28:25:ee:fa:cd:46:f7:be:43:6f:94:38:2d:af:db:c5:
f3:01:57:db:72:2e:4d:de:6a:17:32:fb:f6:7b:38:29:7d:de:
63:cd:97:aa:72:86:07:d8:48:c2:40:4a:db:5a:83:6c:cc:fa:
7a:bc:64:32:63:05:ee:2c:d2:52:b1:0e:28:a9:be:f3:a4:f3:
33:cc:f7:65:3a:c6:b1:a9:e1:c0:ea:fc:5d:c7:b3:c1:81:43:
2d:94:32:9f:d9:3d:97:54:c3:ae:fc:6b:93:58:8b:65:0f:41:
91:8f:d4:ca:96:9a:96:a0:52:c4:df:e9:5f:da:bb:a7:7d:ea:
2d:ea:ba:85:9b:58:7e:d2:4f:3a:68:17:d6:9e:03:27:1f:21:
83:0c:dd:ba:05:fd:f8:11:ca:6e:42:32:80:ed:a4:be:24:62:
09:0c:5c:23:c9:51:8f:c7:83:29:86:72:bd:fd:3e:b5:53:b6:
aa:90:50:1e:3b:8c:ad:d3:dc:4d:54:7a:3a:25:ad:39:3d:72:
02:ad:f1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:05 2024 by rpki-client on console-ams.rpki-client.org