Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/kd_tFyTSxjYLF0rm-CrZgQE1PgE.roa
File: kd_tFyTSxjYLF0rm-CrZgQE1PgE.roa (raw, json)
Hash identifier: arW/VfNSz229zX92qmK6n0qdmPmb1qcQf0+NN8fW3+M=
Subject key identifier: 91:DF:ED:17:24:D2:C6:36:0B:17:4A:E6:F8:2A:D9:81:01:35:3E:01
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C3E14CF89B3398B28DFCD4906B052
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/kd_tFyTSxjYLF0rm-CrZgQE1PgE.roa
Signing time: Mon 02 Jan 2023 05:55:05 +0000
ROA not before: Mon 02 Jan 2023 05:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209657
IP address blocks: 176.118.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:3e:14:cf:89:b3:39:8b:28:df:cd:49:06:b0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91dfed1724d2c6360b174ae6f82ad98101353e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c5:f9:87:1c:07:f1:99:25:cf:a0:3c:a7:43:
50:c0:6f:37:f5:80:0f:0b:13:ac:24:4a:07:4d:23:
b0:b3:d7:f9:4e:22:5d:36:be:1a:07:17:96:99:aa:
88:b1:a5:a9:4c:8d:5e:47:e0:88:a4:eb:0e:6d:80:
4a:a7:96:ee:8a:00:a3:f8:44:eb:39:9e:a4:c0:06:
ba:2f:47:2f:e7:2b:19:a9:40:b2:72:3f:76:2c:ea:
e0:0f:fd:7a:25:7d:13:57:23:8b:d0:3f:bf:34:18:
53:56:53:a1:fb:6b:ba:d8:73:b1:bf:c7:8a:db:2e:
3d:eb:8e:54:06:88:5d:6b:2f:54:41:1f:5b:d8:90:
a4:9b:c4:d9:97:32:37:25:7a:f3:1b:31:24:e4:48:
38:52:34:b9:2e:57:4c:43:50:ce:87:24:23:0d:84:
39:ad:1a:6d:34:b6:8e:c8:64:d3:b6:27:12:96:65:
62:fd:e8:ea:f8:7e:70:fc:9d:34:be:cf:62:2b:36:
54:f3:09:24:5a:cb:a3:98:1f:85:ec:b7:e8:23:80:
a8:fe:f6:c6:80:1e:57:1e:e0:ce:91:cd:f6:1b:54:
23:a2:22:a0:78:b3:27:d0:34:52:3f:7a:e4:af:75:
d6:af:71:ba:10:77:87:c0:15:d1:20:1c:f7:07:d7:
6f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:DF:ED:17:24:D2:C6:36:0B:17:4A:E6:F8:2A:D9:81:01:35:3E:01
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/kd_tFyTSxjYLF0rm-CrZgQE1PgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.196.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7a:cc:08:73:1f:5d:56:a8:c6:58:7d:9e:af:e5:fa:aa:4f:
51:ac:53:a2:ea:dd:a1:16:d7:9c:d2:e8:ae:9c:2b:94:b4:5e:
e7:59:28:23:c6:dd:19:3c:63:a1:78:c6:aa:a7:b5:d7:9b:f4:
6c:1e:c2:2c:f0:8d:76:f3:98:a3:f9:aa:1b:4b:84:81:28:63:
11:f1:0a:ca:61:7e:45:50:f4:d6:3f:24:9e:48:28:c6:5d:82:
fd:a1:fd:22:33:eb:9a:15:14:c5:9c:da:06:73:ac:eb:5d:be:
22:2b:8e:2d:b0:df:b7:07:e6:60:59:9a:24:bc:4b:67:0c:d3:
dd:23:98:22:79:54:34:d9:0d:fe:b1:82:0a:89:d4:9c:48:38:
eb:dc:9e:83:6d:59:7a:e7:11:55:f6:1e:c7:34:7f:e1:8d:0b:
04:db:31:90:20:94:0d:4c:69:68:71:05:64:28:12:4d:69:8a:
46:c8:00:35:7b:93:de:5f:6c:62:64:61:f3:f1:00:06:fb:a6:
b1:82:3b:6d:99:d3:f2:45:0b:22:a8:31:6b:77:a6:fc:71:1d:
61:d7:e5:cc:69:a5:d9:27:cb:28:36:ae:6f:bb:57:9f:3a:ff:
3d:61:1e:1f:1c:24:ae:93:45:e1:6a:b2:15:ed:51:ee:48:58:
ed:4e:e7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org