Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/76cYzYi7am3Qt-4j51kQKAQlago.roa
File: 76cYzYi7am3Qt-4j51kQKAQlago.roa (raw, json)
Hash identifier: 8d0OfqPK4ilt7k8TyNKl3OniHpY4lZP/0txufU/8JlY=
Subject key identifier: EF:A7:18:CD:88:BB:6A:6D:D0:B7:EE:23:E7:59:10:28:04:25:6A:0A
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCAD611BCA88E7893236197BA7F58B3
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/76cYzYi7am3Qt-4j51kQKAQlago.roa
Signing time: Sun 01 Jan 2023 10:05:10 +0000
ROA not before: Sun 01 Jan 2023 10:05:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9201
IP address blocks: 193.182.30.0/23 maxlen: 23
193.182.28.0/23 maxlen: 23
193.182.26.0/23 maxlen: 23
193.182.36.0/23 maxlen: 23
193.182.34.0/23 maxlen: 23
193.182.32.0/23 maxlen: 23
193.182.38.0/23 maxlen: 23
193.182.42.0/23 maxlen: 23
193.182.40.0/23 maxlen: 23
192.36.55.0/24 maxlen: 24
193.182.24.0/23 maxlen: 23
192.36.7.0/24 maxlen: 24
192.165.184.0/24 maxlen: 24
192.121.27.0/24 maxlen: 24
192.36.251.0/24 maxlen: 24
192.71.136.0/24 maxlen: 24
192.165.141.0/24 maxlen: 24
192.165.140.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d6:11:bc:a8:8e:78:93:23:61:97:ba:7f:58:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=efa718cd88bb6a6dd0b7ee23e759102804256a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7f:a8:83:22:1a:f3:3d:c0:c8:8d:0a:48:81:
fc:43:4f:ad:ab:8e:5f:e2:25:d0:55:70:5d:1f:a1:
6b:bc:da:fc:a7:50:6d:b4:31:26:6d:f0:8b:bf:8e:
76:95:0c:c1:a9:f8:33:32:03:27:dd:0d:56:8e:e3:
32:8d:bc:fc:ac:5d:06:96:e0:51:0f:bb:4c:8b:be:
7f:95:54:8f:c0:f3:c0:35:00:54:e2:0d:ca:ee:f1:
c9:41:78:59:5d:40:93:64:89:49:0c:28:ef:a9:4f:
79:95:92:d4:c1:0f:07:00:32:cd:09:45:e1:8e:ec:
30:5e:1f:f4:43:9d:7c:6a:b2:b1:bf:69:0e:dc:b6:
61:65:37:d9:8a:67:39:d7:58:08:a5:e3:14:96:1a:
fe:7a:e3:a0:97:a0:83:0a:57:05:e3:a6:60:3e:4d:
35:6f:b1:f2:e6:ee:4a:29:cd:4e:20:2b:e6:76:83:
84:67:8e:a7:24:b3:d6:6c:a9:46:95:bb:5d:87:d8:
a6:7a:74:de:f0:9c:37:72:6e:11:bc:92:32:89:fc:
9f:18:99:47:c1:cc:11:31:84:38:eb:44:00:88:7a:
db:9a:cd:11:8e:1d:d3:96:4e:b1:b6:7b:76:5b:55:
62:bd:c6:3d:9a:cc:45:29:56:74:b0:9f:e7:67:06:
46:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A7:18:CD:88:BB:6A:6D:D0:B7:EE:23:E7:59:10:28:04:25:6A:0A
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/76cYzYi7am3Qt-4j51kQKAQlago.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.7.0/24
192.36.55.0/24
192.36.251.0/24
192.71.136.0/24
192.121.27.0/24
192.165.140.0/23
192.165.184.0/24
193.182.24.0-193.182.43.255
Signature Algorithm: sha256WithRSAEncryption
92:7c:e3:25:f3:fd:20:6a:39:56:97:4a:18:7a:00:d4:d6:11:
09:47:dd:c2:51:99:64:b9:d3:2b:d9:cb:3f:d1:dc:0f:4e:de:
38:77:06:79:59:33:10:a9:90:0d:ad:06:1a:75:cc:2f:fe:86:
9c:d5:51:bc:b6:b0:89:b4:d2:ec:11:21:64:1c:8f:fe:fc:eb:
ae:4b:6e:bb:65:26:7a:67:3b:12:5c:b9:8f:66:7f:f5:95:4d:
f8:a9:5f:86:7e:c1:29:50:37:dd:df:76:36:36:3b:32:ef:63:
f7:bd:4d:26:23:90:c6:7f:56:04:9f:6c:bf:f7:a2:77:63:72:
b8:ca:e8:8c:c6:dc:af:5e:8f:73:09:94:27:a4:0e:97:a2:1a:
b3:ee:7a:d7:31:1a:80:9b:2c:5c:72:f7:56:1f:40:6d:6a:b3:
7f:df:47:3b:00:ff:c5:53:44:1d:46:24:d0:b2:78:9f:60:3f:
86:3c:0c:ce:b9:a5:fe:c7:0f:a2:4c:58:5e:34:0c:07:83:60:
2b:8d:3d:a2:4a:ce:8e:e1:93:22:74:0d:b6:5b:9a:91:69:34:
5f:bb:ab:2f:81:2f:3a:97:00:76:45:5a:05:fb:77:7d:6e:55:
de:12:9c:24:c1:25:b9:4b:29:07:53:fb:d2:b8:2e:0b:96:2b:
b5:cf:1b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:20 2024 by rpki-client on console-ams.rpki-client.org