Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/9i5dLtz_UpVDtp0xMAjkw89BUaI.roa
File: 9i5dLtz_UpVDtp0xMAjkw89BUaI.roa (raw, json)
Hash identifier: D3cxryVCosUHaVmgAwIllR9Is+ZjqCzdWW627TleLV0=
Subject key identifier: F6:2E:5D:2E:DC:FF:52:95:43:B6:9D:31:30:08:E4:C3:CF:41:51:A2
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0186DA243BD0AF564FAAC660E957B56F2E32
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/9i5dLtz_UpVDtp0xMAjkw89BUaI.roa
Signing time: Mon 13 Mar 2023 08:44:13 +0000
ROA not before: Mon 13 Mar 2023 08:44:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 176.114.94.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:24:3b:d0:af:56:4f:aa:c6:60:e9:57:b5:6f:2e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Mar 13 08:44:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f62e5d2edcff529543b69d313008e4c3cf4151a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:22:be:d0:c6:fa:ee:b8:d1:ed:cf:72:66:18:
66:e3:f4:87:7a:51:dc:50:85:37:b1:e5:e3:58:3a:
54:99:a3:09:34:77:34:de:93:88:f6:91:5c:7f:e8:
a1:c0:ed:b0:39:3c:2d:23:53:e2:d5:a2:f3:db:d3:
89:c5:4b:50:5c:15:c6:4c:a2:af:fb:21:6f:3c:10:
35:c0:af:66:29:90:12:e0:db:68:00:bc:f8:1c:7e:
31:c0:8d:0d:e8:66:56:a5:e0:d7:d0:ab:e0:54:e9:
30:f9:85:35:cc:bd:d6:43:f3:87:f6:a0:b8:db:91:
d6:2b:fb:74:27:19:cd:0d:07:14:da:e8:9c:73:e9:
a4:23:2f:9d:b5:1b:f6:9a:e9:bb:60:ff:57:e5:07:
3e:16:fe:94:71:3c:0e:17:52:d7:7a:f0:52:90:ec:
6a:43:79:70:97:f0:18:8e:da:83:a1:fc:d7:0b:61:
87:6e:13:81:e9:da:d7:ef:3c:35:a5:15:9d:c9:1b:
ec:21:97:5b:f8:41:7b:76:7f:eb:5e:33:31:ba:83:
5a:ba:f2:91:95:de:b8:57:6c:6d:a1:53:c5:08:1e:
de:15:dc:c2:3a:ab:72:8f:53:29:8f:c7:23:ab:40:
51:5a:f4:45:50:55:3d:15:dd:c9:21:75:f4:b0:74:
59:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2E:5D:2E:DC:FF:52:95:43:B6:9D:31:30:08:E4:C3:CF:41:51:A2
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/9i5dLtz_UpVDtp0xMAjkw89BUaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.114.94.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:f2:10:a0:d3:10:a6:66:e1:18:62:4f:00:b9:8b:25:22:e6:
82:d7:5f:92:8c:3f:f8:c2:e9:f1:34:19:21:df:c5:7d:1b:49:
70:be:16:62:da:e0:db:6b:57:77:a2:e1:73:a1:7c:f7:99:9d:
95:b7:b9:c0:20:54:46:d7:cb:27:83:aa:c9:0c:2e:4a:da:74:
96:6b:81:5f:2d:8e:fd:0d:0e:f4:cb:01:91:a6:db:e5:70:09:
44:05:ac:3c:a2:c0:d6:5a:0a:d1:0c:10:36:81:40:fd:52:6c:
d2:13:4c:a5:f6:1c:a5:4b:c0:07:f6:7d:c5:a4:39:93:93:77:
b3:da:9b:63:9a:84:e0:7b:23:45:5d:7e:b4:59:2d:83:6f:5d:
b7:8e:28:80:49:31:2b:00:f3:01:ea:5b:5e:c6:67:9d:09:ce:
05:61:d1:51:2b:7b:42:d9:72:2d:53:c3:a8:6d:7f:6d:13:3c:
df:41:c8:e0:75:7a:27:02:0e:2f:91:83:75:55:b2:95:87:3a:
c1:5e:1a:81:58:eb:f5:62:17:80:b8:57:02:87:f5:f6:8e:38:
da:63:df:ae:75:9d:9b:6c:bd:eb:fb:6b:00:7c:5f:f9:82:ad:
8e:c2:40:3b:a7:bd:64:5e:4f:68:92:f9:65:b9:50:84:f2:c7:
cf:f8:d2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-ams.rpki-client.org