Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/7DUTmlUq04mu1MwukJZi1mIFGnE.roa
File: 7DUTmlUq04mu1MwukJZi1mIFGnE.roa (raw, json)
Hash identifier: MuvBFlFjjRpnQIJdSjwVgFoSh4OxUHMcv7kGW6tLiWI=
Subject key identifier: EC:35:13:9A:55:2A:D3:89:AE:D4:CC:2E:90:96:62:D6:62:05:1A:71
Certificate issuer: /CN=0d04913d043dbb117cf6b9323c8ab247cb52e251
Certificate serial: 01856CEF4E5103548D1F1654A987BA55C79E
Authority key identifier: 0D:04:91:3D:04:3D:BB:11:7C:F6:B9:32:3C:8A:B2:47:CB:52:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DQSRPQQ9uxF89rkyPIqyR8tS4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/7DUTmlUq04mu1MwukJZi1mIFGnE.roa
Signing time: Sun 01 Jan 2023 10:45:00 +0000
ROA not before: Sun 01 Jan 2023 10:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12757
IP address blocks: 176.124.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:4e:51:03:54:8d:1f:16:54:a9:87:ba:55:c7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d04913d043dbb117cf6b9323c8ab247cb52e251
Validity
Not Before: Jan 1 10:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec35139a552ad389aed4cc2e909662d662051a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:82:e7:a1:43:bb:46:2e:a1:ad:07:55:d5:81:
fd:96:c9:11:5b:ec:4d:7f:0f:2b:bb:f2:8e:a3:e2:
6c:07:54:65:ce:7d:b0:94:60:bb:83:a0:9e:db:04:
6d:cc:c7:26:81:8f:a7:5b:c7:e9:5a:e3:4a:9e:bf:
95:4d:ba:61:fa:40:21:13:ce:17:b3:8e:19:df:d0:
cf:1b:bc:48:14:bb:e8:44:c8:78:ca:55:46:0a:49:
ee:db:9f:1d:73:e8:b8:ff:2c:b3:7e:ba:93:7e:d6:
f3:42:7a:aa:1f:88:9d:dd:21:c0:16:3c:50:10:43:
f2:95:b7:b3:ef:48:e6:41:15:7a:a0:3f:50:26:5d:
65:5a:f5:35:0c:44:7e:cb:84:09:23:7e:85:72:5d:
59:6a:71:ec:2c:75:81:0a:8b:83:0d:58:ec:53:3b:
3d:a8:18:87:0d:76:55:60:b5:39:8a:5b:7a:94:57:
41:40:c1:d4:30:94:9c:81:ff:bb:b9:36:f1:e8:8c:
ec:57:3c:e3:3d:41:2e:b0:9a:05:f1:50:b9:b4:29:
8a:c0:85:4a:5e:ec:0a:b9:9b:bc:53:35:c8:7a:0a:
1b:82:0f:5f:53:bd:3d:6a:f0:07:71:41:2e:ad:2b:
79:7d:3e:c3:d0:15:69:48:df:15:f8:74:c5:f7:9f:
fc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:35:13:9A:55:2A:D3:89:AE:D4:CC:2E:90:96:62:D6:62:05:1A:71
X509v3 Authority Key Identifier:
keyid:0D:04:91:3D:04:3D:BB:11:7C:F6:B9:32:3C:8A:B2:47:CB:52:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DQSRPQQ9uxF89rkyPIqyR8tS4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/7DUTmlUq04mu1MwukJZi1mIFGnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/47dff0-2b11-44bc-b721-96c81fb651a0/1/DQSRPQQ9uxF89rkyPIqyR8tS4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.247.0/24
Signature Algorithm: sha256WithRSAEncryption
49:42:0d:62:75:bf:2a:cc:5f:4d:35:e6:79:6c:50:31:0d:1a:
c3:2d:1d:d1:0b:72:52:6d:70:58:8f:c5:61:de:c2:4a:b4:47:
ff:9d:13:14:70:1b:3f:9d:f0:50:b3:6b:a5:d4:56:bd:ba:fb:
b9:77:31:7e:fc:aa:91:8c:df:16:56:8b:e6:f8:64:49:64:07:
55:5f:a2:92:4d:c9:e6:bb:f8:91:90:20:94:2d:dc:c5:ca:1f:
06:d6:ae:81:30:6f:90:0a:0f:38:bb:74:f1:63:43:a4:17:98:
cd:1f:b4:01:fb:40:ec:35:52:1e:fd:b2:f7:63:b1:05:28:18:
fd:1c:ab:4e:7a:51:b6:63:5d:86:32:25:d1:cf:35:e7:0b:de:
0d:0e:d0:fb:4d:7c:32:6b:c5:7d:26:0a:18:33:d0:42:9e:78:
49:43:0c:6e:89:ef:ed:8a:be:3e:a8:5c:cd:69:67:86:26:8c:
0a:95:28:15:d6:02:86:e3:6a:0e:df:7a:d4:8d:e3:e2:1c:01:
59:91:ca:e2:c3:33:c5:01:85:4b:cf:d4:b1:e4:66:90:01:11:
86:f4:db:d6:9e:61:fd:2f:32:ca:ef:b0:10:5a:75:49:2e:d4:
f8:36:a1:57:44:6c:de:24:fd:f7:5f:44:a6:ba:11:63:99:23:
96:22:68:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:30 2024 by rpki-client on console-fra.rpki-client.org