Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/_4YOJMEsbrAJ8kLkVekCr-jWPyY.roa
File: _4YOJMEsbrAJ8kLkVekCr-jWPyY.roa (raw, json)
Hash identifier: 7CDVU3opRVXJAL2RB1hcrWpy1e6X2MzvUtRQsETRD10=
Subject key identifier: FF:86:0E:24:C1:2C:6E:B0:09:F2:42:E4:55:E9:02:AF:E8:D6:3F:26
Certificate issuer: /CN=f15cb9afc8a8670e1f116cbd21499c9f71215bc0
Certificate serial: 0185711528BFCD1D0CD4980EF2FA12647709
Authority key identifier: F1:5C:B9:AF:C8:A8:67:0E:1F:11:6C:BD:21:49:9C:9F:71:21:5B:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Vy5r8ioZw4fEWy9IUmcn3EhW8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/_4YOJMEsbrAJ8kLkVekCr-jWPyY.roa
Signing time: Mon 02 Jan 2023 06:04:49 +0000
ROA not before: Mon 02 Jan 2023 06:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207718
IP address blocks: 176.32.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 08:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:28:bf:cd:1d:0c:d4:98:0e:f2:fa:12:64:77:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f15cb9afc8a8670e1f116cbd21499c9f71215bc0
Validity
Not Before: Jan 2 06:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff860e24c12c6eb009f242e455e902afe8d63f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bf:6b:7a:a1:5f:ba:44:79:c9:4f:9f:11:d0:
16:14:93:ab:94:e5:98:17:ae:78:a6:3c:73:8b:37:
b2:5c:3a:1c:29:7d:0e:f4:91:57:c2:5f:2a:9b:db:
40:4e:28:88:3e:40:a4:ec:24:57:1f:ac:4b:17:b2:
f2:17:2c:45:f8:c1:08:78:04:42:50:1e:a7:af:b7:
f8:df:0c:ee:fc:f3:6d:c9:b4:f2:b2:ac:70:1b:9b:
8a:bc:7e:ff:08:9e:41:39:9d:40:86:87:3f:ca:f3:
ad:2d:24:d7:8c:6e:2a:98:81:2e:16:48:ad:94:f5:
a5:a7:73:1a:6d:4c:eb:2e:ea:e5:18:4e:3b:41:c2:
d3:b6:ef:e0:69:41:34:42:9c:19:bf:d4:7c:23:2b:
e2:5c:ba:32:75:49:70:bb:5b:55:83:ad:a5:54:c9:
77:52:7f:80:99:1b:66:d6:5b:27:b5:60:80:92:1f:
bf:9f:b4:7b:be:f2:ac:4f:bf:f2:50:0f:b1:73:d8:
86:c1:91:09:91:ce:79:d4:ff:92:61:79:88:18:3c:
b8:d0:ae:75:6a:f5:13:1f:93:d3:f8:34:f4:d4:e8:
c6:66:36:d9:ab:9a:61:cb:54:04:fe:04:7f:68:7d:
8e:b7:d2:8f:15:c7:63:ae:cf:f6:f6:20:a7:e3:3e:
be:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:86:0E:24:C1:2C:6E:B0:09:F2:42:E4:55:E9:02:AF:E8:D6:3F:26
X509v3 Authority Key Identifier:
keyid:F1:5C:B9:AF:C8:A8:67:0E:1F:11:6C:BD:21:49:9C:9F:71:21:5B:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Vy5r8ioZw4fEWy9IUmcn3EhW8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/_4YOJMEsbrAJ8kLkVekCr-jWPyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/8Vy5r8ioZw4fEWy9IUmcn3EhW8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.36.0/22
Signature Algorithm: sha256WithRSAEncryption
70:e5:1e:af:0d:da:b8:a0:8c:6d:4d:0a:9e:6b:b4:25:e7:43:
86:ae:1f:f0:e6:7b:74:a8:8e:45:8b:45:ca:60:42:2e:a3:59:
99:ed:7c:07:ba:fa:bd:d9:02:14:d7:bb:7d:c5:98:c1:8f:d9:
d2:4f:2d:1e:bd:a7:66:65:cc:e1:62:84:47:13:d4:9a:e0:0a:
11:65:09:c9:26:a0:55:33:b4:07:1d:e9:89:d9:ab:ca:08:f9:
bf:46:6e:dd:92:20:5a:78:96:ad:a3:ac:6e:7c:46:0f:48:b0:
5b:2e:05:60:4b:2d:6b:29:40:68:aa:08:c9:61:8d:81:e0:5d:
66:6b:f2:ed:f3:82:0f:88:18:7e:58:25:32:57:21:a6:7c:61:
f9:ee:93:26:2c:4a:1e:32:df:89:3a:fb:e6:5e:dc:87:6e:61:
1a:0a:ce:18:9d:5f:b7:bc:12:25:54:71:6c:ab:9f:f4:ee:f8:
19:c6:e8:c6:71:ee:e9:d5:1b:d2:9a:df:ac:56:41:91:ae:ba:
2e:e8:91:0a:61:69:c1:11:99:c6:4e:7c:d1:67:99:af:1f:d1:
6f:54:4b:af:8a:e1:63:ad:38:4a:65:87:39:e4:ef:20:1e:9b:
8f:ac:c6:81:a4:4d:a9:11:d7:56:99:1a:ec:a7:7b:22:f5:f1:
81:b7:6d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:34 2024 by rpki-client on console-ams.rpki-client.org