Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/zYhagA3Y_sSYXpjwzfJ9webWfg8.roa
File: zYhagA3Y_sSYXpjwzfJ9webWfg8.roa (raw, json)
Hash identifier: VvHqyZ+1on7pbVX54YN8lJbm10pherifbkyKERTDGNI=
Subject key identifier: CD:88:5A:80:0D:D8:FE:C4:98:5E:98:F0:CD:F2:7D:C1:E6:D6:7E:0F
Certificate issuer: /CN=a608db43964b6986ec740f0b5e33f627589ac560
Certificate serial: 0188B93D9FD52C20709F77CE9CDA3AAFC635
Authority key identifier: A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/zYhagA3Y_sSYXpjwzfJ9webWfg8.roa
Signing time: Wed 14 Jun 2023 09:30:03 +0000
ROA not before: Wed 14 Jun 2023 09:30:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198483
IP address blocks: 176.96.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:3d:9f:d5:2c:20:70:9f:77:ce:9c:da:3a:af:c6:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a608db43964b6986ec740f0b5e33f627589ac560
Validity
Not Before: Jun 14 09:30:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd885a800dd8fec4985e98f0cdf27dc1e6d67e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:82:07:55:cd:6b:79:61:0c:1e:c1:34:dc:c3:
9a:8f:ac:f6:04:09:30:ff:ae:44:a9:77:e0:f3:2e:
69:76:bd:d1:03:cc:1b:14:24:72:4b:3e:d6:1f:3a:
e9:90:5a:5c:7d:46:be:90:1a:3d:56:91:45:24:56:
07:ec:5f:1f:32:5d:45:8e:51:8c:b4:6b:77:86:bf:
2d:5f:2c:bd:cd:ca:7e:00:a6:4a:88:f3:7f:31:de:
ee:1b:b9:06:a9:39:e9:0d:8d:95:4f:e2:ac:58:ae:
1d:06:34:3e:df:da:1d:8a:a1:a9:89:13:b8:3a:df:
88:7a:fb:b0:0e:6c:57:06:2a:1b:ab:03:8d:1a:64:
26:f7:36:b4:3a:bb:29:d2:71:c0:91:35:f5:31:9e:
3c:a4:25:7c:dd:cf:8c:73:11:d7:4b:c8:73:4d:33:
ea:21:af:d5:15:62:b0:be:b8:86:c3:c9:00:84:04:
14:e4:17:4b:ef:52:9f:34:34:a5:4e:f9:5c:30:cc:
4d:2d:7e:c2:c6:f5:d0:98:e7:91:41:9e:79:9b:fd:
d7:13:17:e2:85:f5:7c:cc:82:96:d2:d6:47:ee:ef:
55:e9:1a:c1:a8:bd:60:e8:9f:87:b7:69:16:bf:45:
40:e8:99:1b:e9:e0:89:1e:6c:b0:d6:5d:d9:75:dd:
66:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:88:5A:80:0D:D8:FE:C4:98:5E:98:F0:CD:F2:7D:C1:E6:D6:7E:0F
X509v3 Authority Key Identifier:
keyid:A6:08:DB:43:96:4B:69:86:EC:74:0F:0B:5E:33:F6:27:58:9A:C5:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/zYhagA3Y_sSYXpjwzfJ9webWfg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/500150-1551-47de-b504-d64683cee16f/1/pgjbQ5ZLaYbsdA8LXjP2J1iaxWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.227.0/24
Signature Algorithm: sha256WithRSAEncryption
40:18:d7:58:01:db:c1:b6:f8:b1:cc:18:1c:14:58:0c:69:f2:
ee:5b:ca:d2:25:94:7c:4a:09:30:d9:bc:32:42:1f:03:5b:fd:
7d:ac:36:3e:a0:7b:b6:8e:89:a0:8e:39:f6:36:03:fb:a3:35:
ad:18:d4:d8:27:e9:ea:e3:33:b9:9a:70:ef:77:66:18:80:ae:
ab:03:3a:59:bc:74:fb:9e:24:81:f3:8b:eb:d5:c7:e3:74:d5:
0e:cf:43:f2:f8:c3:97:6b:94:4d:d5:a4:d8:c4:41:1d:b9:cf:
0a:5a:85:19:09:a7:5b:c7:35:7f:12:85:4f:d3:14:c6:c0:bc:
3a:d6:bc:aa:96:01:47:75:04:ff:49:b5:38:6a:ae:41:cc:cb:
03:09:75:5a:3d:e7:92:23:f5:ac:ef:05:b4:f8:cc:98:ea:46:
73:12:8c:83:ef:d4:88:54:b1:54:ac:04:bc:18:ea:5a:4a:07:
1d:38:7f:d4:e6:21:fa:aa:9d:0e:1b:10:24:bf:37:bb:c1:d4:
20:ab:d8:b0:a7:73:74:ea:c5:38:33:2a:72:54:a8:34:27:ea:
38:b2:92:a7:71:b2:77:ec:54:dc:60:f3:6d:b6:4c:b9:da:d7:
7c:90:f3:de:48:50:c3:8b:40:2b:ec:96:d0:d2:5f:cc:95:98:
92:67:43:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:46 2024 by rpki-client on console-ams.rpki-client.org